From 4d12fcc596385410d302d14be06e77b60e60012d Mon Sep 17 00:00:00 2001
From: kyle <kyle@verhoog.ca>
Date: Fri, 24 May 2024 15:09:46 -0400
Subject: [PATCH 1/2] chore(lib-injection): update base image to alpine 3.18.6

3.18.3 has a known vulnerability, CVE-2023-5363 that can trigger warnings even though this image is not used to run any applications.
---
 lib-injection/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib-injection/Dockerfile b/lib-injection/Dockerfile
index cf4135f54f39..b1bc4ae1d38e 100644
--- a/lib-injection/Dockerfile
+++ b/lib-injection/Dockerfile
@@ -4,7 +4,7 @@ ARG LINUX_PACKAGE
 # The ADD command does more than COPY, so it can directly copy a local directory or it can copy over a `tar.gz` file and automatically extract its contents into the destination
 ADD ${LINUX_PACKAGE} /
 
-FROM alpine:3.18.3
+FROM alpine:3.18.6
 
 ARG UID=10000
 RUN addgroup -g 10000 -S datadog && \

From d38e5ad5a0f8ccdcff1a4e89cb21da19ab4e055e Mon Sep 17 00:00:00 2001
From: kyle <kyle@verhoog.ca>
Date: Tue, 28 May 2024 11:43:08 -0400
Subject: [PATCH 2/2] Update to 3.20

don't pin a minor version
---
 lib-injection/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib-injection/Dockerfile b/lib-injection/Dockerfile
index b1bc4ae1d38e..dce3e377dadd 100644
--- a/lib-injection/Dockerfile
+++ b/lib-injection/Dockerfile
@@ -4,7 +4,7 @@ ARG LINUX_PACKAGE
 # The ADD command does more than COPY, so it can directly copy a local directory or it can copy over a `tar.gz` file and automatically extract its contents into the destination
 ADD ${LINUX_PACKAGE} /
 
-FROM alpine:3.18.6
+FROM alpine:3.20
 
 ARG UID=10000
 RUN addgroup -g 10000 -S datadog && \