mirror of
https://github.com/fleetdm/fleet
synced 2026-05-20 23:48:52 +00:00
d849e01add
Ran ``` make update-go version=1.24.6 ``` And then updated the `sha256`s manually in the Dockerfiles. Fixes https://nvd.nist.gov/vuln/detail/CVE-2025-47907 ``` Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the expected results with those of another query, causing the call to Scan to return either unexpected results from the other query or an error. ```
17 lines
792 B
Docker
17 lines
792 B
Docker
FROM golang:1.24.6-alpine3.21@sha256:50f8a10a46c0c26b5b816a80314f1999196c44c3e3571f41026b061339c29db6
|
|
ARG TAG
|
|
RUN apk update && apk add --no-cache git
|
|
RUN git clone -b $TAG --depth=1 --no-tags --progress --no-recurse-submodules https://github.com/fleetdm/fleet.git && cd /go/fleet/tools/mdm/migration/mdmproxy && go build .
|
|
|
|
FROM alpine:3.21.3@sha256:a8560b36e8b8210634f77d9f7f9efd7ffa463e380b75e2e74aff4511df3ef88c
|
|
LABEL maintainer="Fleet Developers"
|
|
|
|
RUN apk update && apk add --no-cache tini
|
|
COPY --from=0 /go/fleet/tools/mdm/migration/mdmproxy/mdmproxy /usr/bin/mdmproxy
|
|
ADD --chmod=0755 ./entrypoint.sh /usr/bin/entrypoint.sh
|
|
|
|
# Create mdmproxy group and user
|
|
RUN addgroup -S mdmproxy && adduser -S mdmproxy -G mdmproxy
|
|
USER mdmproxy
|
|
|
|
ENTRYPOINT ["/sbin/tini", "/usr/bin/entrypoint.sh"]
|