From 03967e208650b3037adc99624dfa2a5afc5e68d0 Mon Sep 17 00:00:00 2001 From: MaxymVlasov Date: Thu, 7 Aug 2025 20:21:33 +0300 Subject: [PATCH 1/5] chore(deps): Use latest available Python 3.12 base image --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 4c69f2586..3642aacd4 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.12.0-alpine3.17@sha256:fc34b07ec97a4f288bc17083d288374a803dd59800399c76b977016c9fe5b8f2 AS python_base +FROM python:3.12-alpine@sha256:4a1f551c823300739780fb28ad02d8e8861007186c4913b53c0344f8a375b556 AS python_base FROM python_base AS builder ARG TARGETOS From 5ad8dd25f6b8c0118da21334a71f9dfbb09e4296 Mon Sep 17 00:00:00 2001 From: MaxymVlasov Date: Thu, 7 Aug 2025 20:31:00 +0300 Subject: [PATCH 2/5] Bump docker image versions --- Dockerfile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Dockerfile b/Dockerfile index 3642aacd4..ba090b985 100644 --- a/Dockerfile +++ b/Dockerfile @@ -116,11 +116,11 @@ RUN apk add --no-cache \ bash=~5 \ # pre-commit-hooks deps: https://github.com/pre-commit/pre-commit-hooks musl-dev=~1 \ - gcc=~12 \ + gcc=~14 \ # entrypoint wrapper deps su-exec=~0.2 \ # ssh-client for external private module in ssh - openssh-client=~9 + openssh-client=~10 # Copy tools COPY --from=builder \ From f9ce71d5697800728d89acb7119ed9bd73ecc8bb Mon Sep 17 00:00:00 2001 From: MaxymVlasov Date: Thu, 7 Aug 2025 20:33:43 +0300 Subject: [PATCH 3/5] f --- tools/install/checkov.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tools/install/checkov.sh b/tools/install/checkov.sh index 708e4772b..bdf8c894a 100755 --- a/tools/install/checkov.sh +++ b/tools/install/checkov.sh @@ -9,7 +9,7 @@ readonly SCRIPT_DIR # apk add --no-cache \ - gcc=~12 \ + gcc=~14 \ libffi-dev=~3 \ musl-dev=~1 From e1e1e21d8f1a72733e34da43e6ad69684b6ef853 Mon Sep 17 00:00:00 2001 From: MaxymVlasov Date: Thu, 7 Aug 2025 20:35:00 +0300 Subject: [PATCH 4/5] f --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index ba090b985..ac7c92676 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.12-alpine@sha256:4a1f551c823300739780fb28ad02d8e8861007186c4913b53c0344f8a375b556 AS python_base +FROM python:3.12-alpine@sha256:9b8808206f4a956130546a32cbdd8633bc973b19db2923b7298e6f90cc26db08 AS python_base FROM python_base AS builder ARG TARGETOS From 0d6d9b7f4b8984dcc339ccdd44eb30f907afe291 Mon Sep 17 00:00:00 2001 From: MaxymVlasov Date: Thu, 7 Aug 2025 20:39:30 +0300 Subject: [PATCH 5/5] Update tests --- .github/.container-structure-test-config.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/.container-structure-test-config.yaml b/.github/.container-structure-test-config.yaml index 0425a71eb..98aeac0c4 100644 --- a/.github/.container-structure-test-config.yaml +++ b/.github/.container-structure-test-config.yaml @@ -20,7 +20,7 @@ commandTests: args: - --version expectedOutput: - - ^gcc \(Alpine 12\. + - ^gcc \(Alpine 14\. - name: checkov command: checkov @@ -131,7 +131,7 @@ commandTests: args: - -V expectedError: - - ^OpenSSH_9\.[0-9]+ + - ^OpenSSH_10\.[0-9]+ fileExistenceTests: - name: terrascan init