Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade Alpine to 3.19 and fix Vulnerabilities #52

Merged
merged 1 commit into from
Oct 12, 2024
Merged

Upgrade Alpine to 3.19 and fix Vulnerabilities #52

merged 1 commit into from
Oct 12, 2024

Conversation

vs0uz4
Copy link
Contributor

@vs0uz4 vs0uz4 commented Oct 10, 2024
edited
Loading

This pull request includes updates to the Dockerfile for the PHP 8.2 Alpine image to ensure compatibility with newer versions of PHP and dependencies.

Updates to Dockerfile:

  • dockerfiles/4.8.13/php8.2/alpine/Dockerfile: Updated the base image from php:8.2.3-cli-alpine3.16 to php:8.2.24-cli-alpine3.19 to use the latest PHP and Alpine versions.
  • dockerfiles/4.8.13/php8.2/alpine/Dockerfile: Updated Composer to version 2.8.1 for improved stability and features.
  • dockerfiles/4.8.13/php8.2/alpine/Dockerfile: Updated the Redis extension from version 5.3.7 to 6.1.0 to include the latest enhancements and bug fixes.This pull request upgrades the Alpine version from 3.16 to 3.19. The PHP version is also updated to 8.2.24. Additionally, Composer is updated to version 2.8.1. The Redis extension is upgraded to version 6.1.0.

Vulnerabilities found in the Alpine base image (php:8.2.3-cli-alpine3.16) used in the phpswoole/swoole:4.8-php8.2-alpine image
image

@liulyn
Copy link

liulyn commented Oct 10, 2024 via email

@vs0uz4 vs0uz4 mentioned this pull request Oct 10, 2024
Closed
@vs0uz4 vs0uz4 changed the title Upgrade Alpine to 3.19 Upgrade Alpine to 3.19 and fix Vulnerabilities Oct 10, 2024
@deminy deminy merged commit 616f429 into swoole:master Oct 12, 2024
1 check passed
deminy added a commit that referenced this pull request Oct 12, 2024
@deminy
upgrades to Swoole 4.8.13 images
9b35672 
List of upgrades:

* Upgraded Composer to 2.8.1.
* Upgraded to latest PHP 8.1 and 8.2 releases.
* Alpine images are built with Alpine Linux 3.20 for PHP 8.1 and PHP 8.2.

credit: PR #52 by vs0uz4
@deminy
Copy link
Member

deminy commented Oct 12, 2024

Thanks for the MR. I'm rebuilding 4.8.13 images with updates from this PR. The only thing I didn't include from this MR is the upgrade of Redis. The reason is that we build images not only for PHP 8.2, but for some legacy versions all the way back to PHP 7.2.

The other change I made was to use Alpine 3.20 instead of 3.19 for PHP 8.1/8.2 images. For more details, please check https://github.com/swoole/docker-swoole/tree/4.8.13/dockerfiles/4.8.13

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@vs0uz4 @liulyn @deminy