Hi all, In the past, we received many feedback regarding critical CVEs in the apache/apisix Docker images. Due to the default use of Debian as the base image, we could not eliminate these vulnerabilities, even after removing unnecessary components.
After testing and investigating this issue further, we now offer APISIX images based on Ubuntu as the base image since 3.13.0. After using open-source scanning tools, we found no critical issues. Just for your information. Refer to https://github.com/apache/apisix/issues/12461#issuecomment-3113337061 Thank you for your trust and additional feedback! Best regards
