From 7c3cd4fcd2327850c0cf330a1e912aff334aaaea Mon Sep 17 00:00:00 2001 From: spwoodcock Date: Thu, 19 Dec 2024 20:48:11 +0000 Subject: [PATCH] build: update minio versions to avoid CVE-2024-45337 --- chart/values.yaml | 2 +- compose.development.yaml | 2 +- compose.main.yaml | 2 +- compose.yaml | 2 +- src/backend/Dockerfile | 3 +-- 5 files changed, 5 insertions(+), 6 deletions(-) diff --git a/chart/values.yaml b/chart/values.yaml index e3492754d1..e875999b94 100644 --- a/chart/values.yaml +++ b/chart/values.yaml @@ -114,7 +114,7 @@ s3: replicas: 1 image: repository: quay.io/minio/minio - tag: RELEASE.2024-10-13T13-34-11Z + tag: RELEASE.2024-12-18T13-15-44Z environment: MINIO_BROWSER: "off" mountPath: /mnt/data diff --git a/compose.development.yaml b/compose.development.yaml index 5035e31b97..850af11f72 100644 --- a/compose.development.yaml +++ b/compose.development.yaml @@ -178,7 +178,7 @@ services: restart: "on-failure:2" s3: - image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-10-13T13-34-11Z}" + image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-12-18T13-15-44Z}" environment: MINIO_ROOT_USER: ${S3_ACCESS_KEY} MINIO_ROOT_PASSWORD: ${S3_SECRET_KEY} diff --git a/compose.main.yaml b/compose.main.yaml index 475f9f88b0..f9e949f993 100644 --- a/compose.main.yaml +++ b/compose.main.yaml @@ -119,7 +119,7 @@ services: restart: "on-failure:2" s3: - image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-10-13T13-34-11Z}" + image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-12-18T13-15-44Z}" environment: MINIO_ROOT_USER: ${S3_ACCESS_KEY} MINIO_ROOT_PASSWORD: ${S3_SECRET_KEY} diff --git a/compose.yaml b/compose.yaml index 2085cf21ca..4093f941c5 100644 --- a/compose.yaml +++ b/compose.yaml @@ -225,7 +225,7 @@ services: restart: "on-failure:2" s3: - image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-10-13T13-34-11Z}" + image: "docker.io/minio/minio:${MINIO_TAG:-RELEASE.2024-12-18T13-15-44Z}" environment: MINIO_ROOT_USER: ${S3_ACCESS_KEY:-fmtm} MINIO_ROOT_PASSWORD: ${S3_SECRET_KEY:-somelongpassword} diff --git a/src/backend/Dockerfile b/src/backend/Dockerfile index 3c1bb99b46..f9e76a20bd 100644 --- a/src/backend/Dockerfile +++ b/src/backend/Dockerfile @@ -16,7 +16,7 @@ # ARG PYTHON_IMG_TAG=3.12 ARG UV_IMG_TAG=0.5.2 -ARG MINIO_TAG=${MINIO_TAG:-RELEASE.2024-10-13T13-34-11Z} +ARG MINIO_TAG=${MINIO_TAG:-RELEASE.2024-12-18T13-15-44Z} FROM ghcr.io/astral-sh/uv:${UV_IMG_TAG} AS uv FROM docker.io/minio/minio:${MINIO_TAG} AS minio @@ -159,7 +159,6 @@ RUN --mount=type=cache,target=/root/.cache <