From 8b5c1cad87e72604e97debf97e42899edc8fff74 Mon Sep 17 00:00:00 2001
From: Shrikant Sharat Kandula <shrikant@appsmith.com>
Date: Mon, 4 Sep 2023 15:57:04 +0530
Subject: [PATCH] chore(deps): Fix for Python CVEs in Docker Scout report
 (#26894)

This addresses 3 more CVEs reported on Appsmith Docker image, on
`setuptools`, another `setuptools`, and `urllib3` packages.
---
 Dockerfile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 32888c4a7f..68be4a0798 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -23,7 +23,9 @@ RUN apt-get update \
   && python3 -m venv --prompt certbot /opt/certbot/venv \
   && /opt/certbot/venv/bin/pip install certbot \
   && ln -s /opt/certbot/venv/bin/certbot /usr/local/bin \
-  && apt-get remove --yes git python3-pip python3-venv
+  && rm -rf /opt/certbot/venv/lib/python3.*/site-packages/setuptools* \
+  && apt-get remove --yes git python3-pip python3-venv python-setuptools \
+  && apt-get autoremove --yes
 
 # Install MongoDB v5.0.14, Redis, NodeJS - Service Layer, PostgreSQL v13
 RUN curl --silent --show-error --location https://www.mongodb.org/static/pgp/server-6.0.asc | apt-key add - \