Add --proto-redir flag to enforce HTTPS on redirects
Fix Sonar warning by adding --proto-redir '=https' to ensure all redirects in the curl chain remain on HTTPS, not just the initial request. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
luojiyin
+1
-1
@@ -39,7 +39,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
|
|||||||
&& apt-get clean && rm -rf /var/lib/apt/lists/*
|
&& apt-get clean && rm -rf /var/lib/apt/lists/*
|
||||||
|
|
||||||
# Install the latest uv release and expose it on PATH
|
# Install the latest uv release and expose it on PATH
|
||||||
RUN curl -LsSf --retry 3 --retry-delay 2 --proto '=https' --tlsv1.2 https://astral.sh/uv/install.sh | sh
|
RUN curl -LsSf --retry 3 --retry-delay 2 --proto '=https' --proto-redir '=https' --tlsv1.2 https://astral.sh/uv/install.sh | sh
|
||||||
|
|
||||||
WORKDIR /app
|
WORKDIR /app
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user