From 737a22a62d006fcb7019778ddec08b8a230fc74c Mon Sep 17 00:00:00 2001
From: Ashish Solanki <54136699+ashishsarout@users.noreply.github.com>
Date: Tue, 24 Aug 2021 13:18:46 +0530
Subject: [PATCH] Security upgrade nginx from stable-alpine to mainline-alpine
 (#3563)

* fix: Dockerfile.ui to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE313-CURL-1533455
- https://snyk.io/vuln/SNYK-ALPINE313-CURL-1533456
- https://snyk.io/vuln/SNYK-ALPINE313-LIBGCRYPT-1315676
- https://snyk.io/vuln/SNYK-ALPINE313-LIBXML2-1300261
- https://snyk.io/vuln/SNYK-ALPINE313-LIBXML2-1300262

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 Dockerfile.ui | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Dockerfile.ui b/Dockerfile.ui
index 3bf5b66b..0dc9a44a 100644
--- a/Dockerfile.ui
+++ b/Dockerfile.ui
@@ -50,7 +50,7 @@ COPY cvat-canvas/ /tmp/cvat-canvas/
 COPY cvat-ui/ /tmp/cvat-ui/
 RUN npm run build
 
-FROM nginx:stable-alpine
+FROM nginx:mainline-alpine
 # Replace default.conf configuration to remove unnecessary rules
 RUN sed -i "s/}/application\/wasm wasm;\n}/g" /etc/nginx/mime.types
 COPY cvat-ui/react_nginx.conf /etc/nginx/conf.d/default.conf