test

2025-08-26 14:19:24 +00:00 · 2025-08-05 14:51:27 +01:00 · 2025-08-05 14:51:27 +01:00 · e284f818b7
commit e284f818b7
parent 662389d897
3 changed files with 16 additions and 8 deletions
--- a/9
+++ b/9
@ -56,8 +56,10 @@ RUN echo "@main https://dl-cdn.alpinelinux.org/alpine/edge/main" | tee -a /etc/a
    openssl-dev \
    openjdk21-jre \
    # Security updates - remove when Alpine base image updates these
-    libjxl@community \  # CVE-2024-11403, CVE-2024-11498 - libjxl vulnerabilities
-    rav1e@community \   # CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g - Rust crossbeam-channel/anstream via rav1e
+    # libjxl@community fixes CVE-2024-11403, CVE-2024-11498
+    # rav1e@community fixes CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g
+    libjxl@community \
+    rav1e@community \
    # Doc conversion
    gcompat \
    libc6-compat \
@ -76,7 +78,8 @@ RUN echo "@main https://dl-cdn.alpinelinux.org/alpine/edge/main" | tee -a /etc/a
    python3 \
    ocrmypdf \
    py3-pip \
-    py3-pillow@community \  # CVE-2025-48379 - ensure Pillow 11.3.0+ instead of 11.2.1
+    # py3-pillow@community fixes CVE-2025-48379 - ensure Pillow 11.3.0+ instead of 11.2.1
+    py3-pillow@community \
    py3-pdf2image@testing \
    # URW Base 35 fonts for better PDF rendering
    font-urw-base35 && \
--- a/Dockerfile.fat
+++ b/Dockerfile.fat
@ -70,8 +70,10 @@ RUN echo "@main https://dl-cdn.alpinelinux.org/alpine/edge/main" | tee -a /etc/a
    openssl-dev \
    openjdk21-jre \
    # Security updates - remove when Alpine base image updates these
-    libjxl@community \  # CVE-2024-11403, CVE-2024-11498 - libjxl vulnerabilities
-    rav1e@community \   # CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g - Rust crossbeam-channel/anstream via rav1e
+    # libjxl@community fixes CVE-2024-11403, CVE-2024-11498
+    # rav1e@community fixes CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g
+    libjxl@community \
+    rav1e@community \
    # Doc conversion
    gcompat \
    libc6-compat \
@ -91,7 +93,8 @@ RUN echo "@main https://dl-cdn.alpinelinux.org/alpine/edge/main" | tee -a /etc/a
    python3 \
    ocrmypdf \
    py3-pip \
-    py3-pillow@community \  # CVE-2025-48379 - ensure Pillow 11.3.0+ instead of 11.2.1
+    # py3-pillow@community fixes CVE-2025-48379 - ensure Pillow 11.3.0+ instead of 11.2.1
+    py3-pillow@community \
    py3-pdf2image@testing && \
    python3 -m venv /opt/venv && \
    /opt/venv/bin/pip install --no-cache-dir --upgrade pip setuptools && \
--- a/Dockerfile.ultra-lite
+++ b/Dockerfile.ultra-lite
@ -38,8 +38,10 @@ RUN echo "@testing https://dl-cdn.alpinelinux.org/alpine/edge/main" | tee -a /et
        su-exec \
        openjdk21-jre \
        # Security updates - remove when Alpine base image updates these
-        libjxl@community \  # CVE-2024-11403, CVE-2024-11498 - libjxl vulnerabilities
-        rav1e@community && \ # CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g - Rust crossbeam-channel/anstream via rav1e
+        # libjxl@community fixes CVE-2024-11403, CVE-2024-11498
+        # rav1e@community fixes CVE-2025-4574, GHSA-2rxc-gjrp-vjhx, RUSTSEC-2024-0404, GHSA-pg9f-39pc-qf8g
+        libjxl@community \
+        rav1e@community && \
    # User permissions
    mkdir -p /configs /logs /customFiles /usr/share/fonts/opentype/noto /tmp/stirling-pdf /pipeline/watchedFolders /pipeline/finishedFolders && \
    chmod +x /scripts/*.sh && \