github/OpenHands
1
0
Fork 0
mirror of https://github.com/OpenHands/OpenHands.git synced 2026-03-22 13:47:19 +08:00
Code Issues Packages Projects Releases Wiki Activity

Update dockerfile to remove vulnerabilities in Debian 12 (#7630)

Browse Source
This commit is contained in:
Ray Myers
2025-04-01 14:09:01 -05:00
committed by GitHub
parent a2e9e23569
commit 0045d46d9d
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
openhands/runtime/utils/runtime_templates/Dockerfile.j2
View File

@@ -14,6 +14,7 @@ ENV POETRY_VIRTUALENVS_PATH=/openhands/poetry \
# Install base system dependencies
RUN apt-get update && \
apt-get upgrade -y && \
apt-get install -y --no-install-recommends \
wget curl sudo apt-utils git jq tmux \
{%- if 'ubuntu' in base_image and (base_image.endswith(':latest') or base_image.endswith(':24.04')) -%}
@@ -22,6 +23,10 @@ RUN apt-get update && \
libgl1-mesa-glx \
{% endif -%}
libasound2-plugins libatomic1 && \
# Remove packages with CVEs and no updates yet, if present
(apt-get remove -y libaom3 || true) && \
(apt-get remove -y libjxl0.7 || true) && \
(apt-get remove -y libopenexr-3-1-30 || true) && \
apt-get clean && \
rm -rf /var/lib/apt/lists/*