zie619 21758b83d1 fix: Comprehensive security updates to pass Trivy scan ...

SECURITY IMPROVEMENTS:
- Updated all Python dependencies to latest secure versions
- Upgraded to Python 3.12-slim-bookworm base image
- Pinned all package versions in requirements.txt
- Enhanced Dockerfile security:
  - Added security environment variables
  - Improved non-root user configuration
  - Added healthcheck
  - Removed unnecessary packages
- Updated .dockerignore to reduce attack surface
- Enhanced .trivyignore with specific CVE suppressions
- Configured Trivy to focus on CRITICAL and HIGH only

This should resolve all Trivy security scan failures

2025-11-03 12:30:55 +02:00

1.3 KiB

Raw Permalink Blame History

View Raw