From 7251e266ed25bc1841b833d79c92df33adf51310 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 8 Feb 2026 03:04:16 +0000
Subject: [PATCH] fix: Dockerfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN13-OPENSSL-15123186
- https://snyk.io/vuln/SNYK-DEBIAN13-OPENSSL-15123158
- https://snyk.io/vuln/SNYK-DEBIAN13-OPENSSL-15123166
- https://snyk.io/vuln/SNYK-DEBIAN13-OPENSSL-15123178
- https://snyk.io/vuln/SNYK-DEBIAN13-OPENSSL-15123183
---
 Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 299c290..2c05873 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM debian:13.1 AS stage
+FROM debian:13.3 AS stage
 SHELL ["/bin/bash", "-o", "pipefail", "-c"]
 ENV DEBIAN_FRONTEND=noninteractive
 ARG PACKAGE_BASEURL=https://download.zerotier.com/debian/trixie/pool/main/z/zerotier-one
@@ -19,7 +19,7 @@ RUN set -e; \
     echo "Downloading ZeroTier: arch=$ARCH_MAPPING version=$VERSION"; \
     curl -fsSL -o zerotier-one.deb "${PACKAGE_BASEURL}/zerotier-one_${VERSION}_${ARCH_MAPPING}.deb"
 
-FROM debian:13.1
+FROM debian:13.3
 SHELL ["/bin/bash", "-o", "pipefail", "-c"]
 ENV DEBIAN_FRONTEND=noninteractive
 ARG VERSION