From 1e3d61c0802c19e5f0f9cebb61ad059601e9b2cf Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 10 Oct 2025 12:35:44 +0000
Subject: [PATCH] fix: scripts/Dockerfile.alpine-base to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-ALPINE316-BUSYBOX-6913410
- https://snyk.io/vuln/SNYK-ALPINE316-BUSYBOX-6913410
- https://snyk.io/vuln/SNYK-ALPINE316-MUSL-8720632
- https://snyk.io/vuln/SNYK-ALPINE316-MUSL-8720632
---
 scripts/Dockerfile.alpine-base | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 mode change 100755 => 100644 scripts/Dockerfile.alpine-base

diff --git a/scripts/Dockerfile.alpine-base b/scripts/Dockerfile.alpine-base
old mode 100755
new mode 100644
index 3aa4e36..979b3d0
--- a/scripts/Dockerfile.alpine-base
+++ b/scripts/Dockerfile.alpine-base
@@ -18,7 +18,7 @@
 # The execinfo library is required by the current implementation of the handle_sig function in device-can.c.
 # If switching to a newer alpine version, modifications to the handle_sig function will be necessary
 # to eliminate the dependency on execinfo (e.g., by replacing it with libunwind or similar).
-ARG BASE_TEMPORARY=alpine:3.16
+ARG BASE_TEMPORARY=alpine:3.22.2
 FROM ${BASE_TEMPORARY}
 RUN wget https://iotech.jfrog.io/artifactory/api/security/keypair/public/repositories/alpine-release -O /etc/apk/keys/alpine.dev.rsa.pub
 RUN echo 'https://iotech.jfrog.io/artifactory/alpine-release/v3.16/main' >> /etc/apk/repositories