Add libxss (#20)

* Add libxss * Bump openjdk-11-jre-headless patch version * Bump Trivy patch version
Food-X-Technologies · Apr 25, 2022 · 71b184a · 71b184a
1 parent 0f68862
commit 71b184a
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -20,9 +20,10 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
     libcurl4 \
     libssl1.0 \
     libunwind8 \
+    libxss1 \
     lsb-release \
     netcat \
-    openjdk-11-jre-headless=11.0.13\* \
+    openjdk-11-jre-headless=11.0.14\* \
     python3 \
     python3-pip \
     python3-venv \
@@ -83,7 +84,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
 && apt-get install wget apt-transport-https gnupg lsb-release \
 && wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | apt-key add - \
 && echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main | tee -a /etc/apt/sources.list.d/trivy.list \
-&& apt-get update && apt-get install trivy=0.24.\* \
+&& apt-get update && apt-get install trivy=0.27.\* \
 # Give Vault the ability to use the mlock syscall without running the process as root. The mlock syscall prevents memory from being swapped to disk.
 # Explanation: https://github.com/hashicorp/vault/issues/10048#issuecomment-700779263
 && setcap cap_ipc_lock= /usr/bin/vault \