From 4d5d0ebc98d5ced6164e0b10433858aa12d1d6f3 Mon Sep 17 00:00:00 2001
From: "Mahadik, Mukul Chandrakant" <MukulChandrakant.Mahadik@nrel.gov>
Date: Thu, 12 Oct 2023 17:29:02 -0700
Subject: [PATCH] Fixing latest Docker image vulnerabilities

Found additional vulnerabilities after recently fixing previous ones.

Two HIGH level issues found:
- urllib3 - Python package's old versions found in directories. Newer version exists as well. Hence cleaning up older versions.

- libc6
- Buffer overflow issue in a system library.
- No remediation suggested by AWS Inspector.
---
 .docker/setup_config.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.docker/setup_config.sh b/.docker/setup_config.sh
index 785d7f91d..63f034406 100644
--- a/.docker/setup_config.sh
+++ b/.docker/setup_config.sh
@@ -21,6 +21,9 @@ rm -rf /root/miniconda-23.1.0/pkgs/wheel-0.37.1-pyhd3eb1b0_0
 rm -rf /root/miniconda-23.5.2/pkgs/cryptography-39.0.1-py39h9ce1e76_2
 rm -rf /root/miniconda-23.5.2/pkgs/certifi-2023.5.7-py39h06a4308_0
 rm -rf /root/miniconda-23.5.2/pkgs/conda-23.5.2-py39h06a4308_0/lib/python3.9/site-packages/tests/
+rm -rf /root/miniconda-23.5.2/pkgs/urllib3-1.26.16-py39h06a4308_0
+rm -rf /root/miniconda-23.5.2/pkgs/urllib3-1.26.17-pyhd8ed1ab_0
+rm -rf /root/miniconda-23.5.2/envs/emission/lib/python3.9/site-packages/urllib3-1.26.17.dist-info
 
 # Clean up the conda install
 conda clean -t