Add --proto-redir flag to enforce HTTPS on redirects
Fix Sonar warning by adding --proto-redir '=https' to ensure all redirects in the curl chain remain on HTTPS, not just the initial request. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
luojiyin
+1
-1
@@ -39,7 +39,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
|
||||
&& apt-get clean && rm -rf /var/lib/apt/lists/*
|
||||
|
||||
# Install the latest uv release and expose it on PATH
|
||||
RUN curl -LsSf --retry 3 --retry-delay 2 --proto '=https' --tlsv1.2 https://astral.sh/uv/install.sh | sh
|
||||
RUN curl -LsSf --retry 3 --retry-delay 2 --proto '=https' --proto-redir '=https' --tlsv1.2 https://astral.sh/uv/install.sh | sh
|
||||
|
||||
WORKDIR /app
|
||||
|
||||
|
||||
Reference in New Issue
Block a user