github/OpenHands
1
0
Fork 0
mirror of https://github.com/OpenHands/OpenHands.git synced 2026-03-22 05:37:20 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix(enterprise): use apt-get install --only-upgrade for targeted package updates

Browse Source 
apt-get upgrade does not accept package arguments - it upgrades all packages.
Changed to apt-get install --only-upgrade to correctly target specific
packages for security updates (GnuPG CVEs).

Co-authored-by: openhands <openhands@all-hands.dev>
This commit is contained in:
openhands
2026-03-20 21:55:55 -05:00
parent 53821e0a7d
commit 82b2e306d2
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
enterprise/Dockerfile
View File

@@ -14,7 +14,7 @@ RUN apt-get update && \
apt-get install -y nodejs && \ apt-get install -y nodejs && \
apt-get install -y jq gettext && \ apt-get install -y jq gettext && \
# Apply security updates for packages with available fixes # Apply security updates for packages with available fixes
apt-get upgrade -y \ apt-get install --only-upgrade -y \
libc-bin \ libc-bin \
libc6 \ libc6 \
libgnutls30 \ libgnutls30 \