Snyk warns Nginx Docker image vulnerable due to zlib

Question

Snyk warns Nginx Docker image vulnerable due to zlib

Closed this issue 6 months ago · 0 comments

Describe the bug

I'm using the Nginx Docker image in the Dockerfile FROM nginx:latest and Snyk is saying "Introduced through: nginx@latest › zlib/zlib1g@1:1.2.13.dfsg-1"
https://security.snyk.io/vuln/SNYK-DEBIAN12-NGINX-5953391

I'm new to all of this but it seems it's been fixed in the alpine image. So I'm wondering if updating this part of the code to use newer alpine images would fix this Snyk warning.

To reproduce

Steps to reproduce the behaviour:

Deploy the NGINX Docker image using FROM nginx:latest
Add the repo to Snyk and see the vulnerabilities

Thank you for your time.