Update Alpine OpenSSL and brace-expansion to address CVEs (#280)

Copilot · karpikpl · web-flow · commit 58bb2d2050c9 · 2025-11-21T19:27:55.000-06:00
* Initial plan

* Fix security vulnerabilities in Alpine and Node.js dependencies

Co-authored-by: karpikpl &lt;3539908+karpikpl@users.noreply.github.com&gt;

---------

Co-authored-by: copilot-swe-agent[bot] &lt;198982749+Copilot@users.noreply.github.com&gt;
Co-authored-by: karpikpl &lt;3539908+karpikpl@users.noreply.github.com&gt;
diff --git a/Dockerfile b/Dockerfile
@@ -17,7 +17,7 @@ COPY --chown=1000:1000 . .
 RUN npm run build
 
 # Stage 2: Prepare the Node.js API
-FROM node:23-alpine AS base-prod
+FROM node:24-alpine AS base-prod
 
 WORKDIR /app
 COPY --chown=1000:1000 --from=build-stage /app/.output /app
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -45,5 +45,8 @@
     "vitest": "^3.0.5",
     "vue-tsc": "^2.1.6",
     "vuetify-nuxt-module": "^0.18.3"
+  },
+  "overrides": {
+    "brace-expansion": "^2.0.2"
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -45,5 +45,8 @@`
`45`	`45`	`"vitest": "^3.0.5",`
`46`	`46`	`"vue-tsc": "^2.1.6",`
`47`	`47`	`"vuetify-nuxt-module": "^0.18.3"`
	`48`	`+ },`
	`49`	`+ "overrides": {`
	`50`	`+ "brace-expansion": "^2.0.2"`
`48`	`51`	`}`
`49`	`52`	`}`