Elgato_dark/hyperdx
1
0
Fork 0
mirror of https://github.com/hyperdxio/hyperdx synced 2026-04-21 13:37:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 6

chore: resolve collector CVE-2025-15467 (#1761)

Browse source
This commit is contained in:
Warren Lee 2026-02-19 20:45:50 +01:00 committed by GitHub
parent 18e9690461
commit 36da6ff4d8
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
.changeset/young-lobsters-cheat.md Normal file
View file

@ -0,0 +1,5 @@
---
"@hyperdx/otel-collector": patch
---
chore: bump base alpine 3.23 to address CVE-2025-15467

2
docker/otel-collector/Dockerfile
View file

@ -14,7 +14,7 @@ COPY packages/otel-collector/ ./
RUN CGO_ENABLED=0 GOOS=linux go build -ldflags="-s -w" -o /migrate ./cmd/migrate
# From: https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/aa5c3aa4c7ec174361fcaf908de8eaca72263078/cmd/opampsupervisor/Dockerfile#L18
FROM alpine:3.21@sha256:c3f8e73fdb79deaebaa2037150150191b9dcbfba68b4a46d70103204c53f4709 AS base
FROM alpine:3.23@sha256:25109184c71bdad752c8312a8623239686a9a2071e8825f20acb8f2198c3f659 AS base
ARG USER_UID=10001
ARG USER_GID=10001