Fix aquasec vulnerability in alpine:3.19.1 image
Hello MDO,
We’re getting a vulnerability hit for registry1.dso.mil/ironbank/opensource/alpinelinux/alpine:3.19.1 related to [Use Slash For Copy Args | Vulnerability Database | Aqua Security|https://avd.aquasec.com/misconfig/dockerfile/general/avd-ds-0011/]. Will you please modify the COPY command for ca-certs to have a trailing slash?
diff --git a/Dockerfile b/Dockerfile
index 7a11988..771ab3d 100644
— a/Dockerfile
+++ b/Dockerfile
@@ -51,7 +51,7 @@ RUN apk update &&
COPY --from=build /usr/lib/ossl-modules/fips.so /usr/lib/ossl-modules/fips.so
COPY --from=build /etc/ssl/fipsmodule.cnf /etc/ssl/fipsmodule.cnf
COPY etc/issue /etc/issue
-COPY certs/ /usr/local/share/ca-certificates
+COPY certs/ /usr/local/share/ca-certificates/
RUN update-ca-certificates &&
sed -i 's/^default\s=\sdefault_sect/# default = default_sect/' /etc/ssl/openssl.cnf && {noformat}