Skip to content
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions Dockerfile
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,7 @@ RUN apt-get update && apt-get install -y \
curl \
gcc \
g++ \
&& apt-get install -y --only-upgrade libssh2-1t64 \
&& rm -rf /var/lib/apt/lists/*

# Disable strict host key checking for container
Expand Down
7 changes: 6 additions & 1 deletion Dockerfile.gpu
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,12 @@ RUN uv sync --python 3.12 --no-dev --group code-search --no-install-workspace
FROM debian:bookworm-slim
COPY --from=ghcr.io/astral-sh/uv:0.9.6 /uv /uvx /bin/

RUN apt-get update && apt-get install -y git curl libgomp1 && rm -rf /var/lib/apt/lists/*
# Deterministically clear libssh2 CVE-2026-55200 (PLAT-1259). Final stage is
# debian:bookworm-slim (Debian 12), where the package is libssh2-1 (not the
# trixie t64 name used in Dockerfile/Dockerfile.slim).
RUN apt-get update && apt-get install -y git curl libgomp1 \
&& apt-get install -y --only-upgrade libssh2-1 \

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Verified live against debian:bookworm-slim: apt-cache policy libssh2-1 resolves to candidate 1.10.0-3+b1 from bookworm/main, and the Debian security tracker marks bookworm libssh2 (1.10.0-3) vulnerable with no fixed build in bookworm or bookworm-security (the fix is in trixie-security 1.11.1-1+deb13u1, DSA-6365-1). curl already pulls 1.10.0-3+b1 via libcurl4, so --only-upgrade libssh2-1 re-resolves to that same vulnerable build and changes nothing. This stage does not clear CVE-2026-55200, so the "deterministically clear" comment is not accurate here, and the public plainsightai/openfilter-mcp:latest full image built from this Dockerfile stays exposed. Real options: move this final stage to a trixie base (package becomes libssh2-1t64, fixed at 1.11.1-1+deb13u1, matching Dockerfile and Dockerfile.slim), build or pin a fixed libssh2 from source, or add a Trivy/grype gate that fails the build if the CVE persists.

&& rm -rf /var/lib/apt/lists/*
RUN uv python install 3.12

# Copy CUDA runtime libs from the builder (only what llama-cpp needs at runtime)
Expand Down
7 changes: 6 additions & 1 deletion Dockerfile.slim
Original file line number Diff line number Diff line change
@@ -1,7 +1,12 @@
FROM python:3.12-slim
COPY --from=ghcr.io/astral-sh/uv:0.9.6 /uv /uvx /bin/

RUN apt-get update && apt-get install -y git curl && rm -rf /var/lib/apt/lists/*
# Explicitly upgrade libssh2 (trixie t64 package) so CVE-2026-55200 is cleared
# deterministically, not only when the floating base already happens to carry the
# patched package (PLAT-1259).
RUN apt-get update && apt-get install -y git curl \
&& apt-get install -y --only-upgrade libssh2-1t64 \
&& rm -rf /var/lib/apt/lists/*

WORKDIR /app

Expand Down
11 changes: 11 additions & 0 deletions RELEASE.md
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,17 @@ rename the `[Unreleased]` heading to the new `## vX.Y.Z` and bump

## [Unreleased]

## v0.2.4

### Security

- Clear a CRITICAL container-image vulnerability flagged by Security Command Center —
`libssh2` CVE-2026-55200 (CVSS 8.1, exploit available), an OS base-layer package.
Rebuilds on `python:3.12-slim` and **explicitly upgrades `libssh2`** so the fix is
deterministic rather than dependent on the floating base snapshot. Also bumps
`uv.lock` to `0.2.4` so `uv sync --locked` stays reproducible. No application changes.
(PLAT-1259)

### Fixed

- Startup no longer silently degrades to a token-tools-only catalog when the
Expand Down
2 changes: 1 addition & 1 deletion pyproject.toml
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[project]
name = "openfilter-mcp"
version = "0.2.3"
version = "0.2.4"
requires-python = ">=3.10,<3.13"
dependencies = [
"fastmcp>=2.13.1",
Expand Down
2 changes: 1 addition & 1 deletion uv.lock

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading