Removed libcurl dependency.

cURL is purged after usage inside the Dockerfile, but the libcurl dependency was left. Container security scanners find CVEs related to cURL (like CVE-2023-38545). By adding `--autoremove` option to the purge command, the dependencies will also get purged.
Kong · Oct 9, 2023 · 67cc29f · 67cc29f
1 parent dae5846
commit 67cc29f
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/ubuntu/Dockerfile b/ubuntu/Dockerfile
@@ -27,7 +27,7 @@ RUN set -ex; \
       apt-get install -y --no-install-recommends curl ca-certificates \
       && UBUNTU_CODENAME=$(cat /etc/os-release | grep UBUNTU_CODENAME | cut -d = -f 2) \
       && curl -fL https://download.konghq.com/gateway-${KONG_VERSION%%.*}.x-ubuntu-${UBUNTU_CODENAME}/pool/all/k/kong/kong_${KONG_VERSION}_$arch.deb -o /tmp/kong.deb \
-      && apt-get purge -y curl \
+      && apt-get purge --autoremove -y curl \
       && echo "$KONG_SHA256  /tmp/kong.deb" | sha256sum -c - \
       || exit 1; \
     else \