From 37c734a563b378ff800f8292efb6c1794cd27b8e Mon Sep 17 00:00:00 2001
From: ImreSamu <ImreSamu@users.noreply.github.com>
Date: Thu, 9 Oct 2025 23:18:01 +0200
Subject: [PATCH] chore(docker): bump gosu to 1.19

Update gosu from version 1.16 to 1.19 in Dockerfile-15, Dockerfile-17, and Dockerfile-orioledb-17.

This change aligns the Docker images with the official Docker Postgres image,
which recently upgraded to gosu 1.19. Staying consistent with the upstream
helps reduce potential security findings and maintain compatibility with
the official base images.

A Trivy scan on the previous image reported several medium to critical
issues in the older gosu binary. Updating to the latest version helps
minimize these potential risks.

No functional changes beyond the version update.
---
 Dockerfile-15          | 2 +-
 Dockerfile-17          | 2 +-
 Dockerfile-orioledb-17 | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Dockerfile-15 b/Dockerfile-15
index 3827deffb..2825e1940 100644
--- a/Dockerfile-15
+++ b/Dockerfile-15
@@ -134,7 +134,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
    ca-certificates \
    && rm -rf /var/lib/apt/lists/*
 # Download binary
-ARG GOSU_VERSION=1.16
+ARG GOSU_VERSION=1.19
 ARG GOSU_GPG_KEY=B42F6819007F00F88E364FD4036A9C25BF357DD4
 ADD https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$TARGETARCH \
     /usr/local/bin/gosu
diff --git a/Dockerfile-17 b/Dockerfile-17
index 23989c7b9..9667cd50b 100644
--- a/Dockerfile-17
+++ b/Dockerfile-17
@@ -138,7 +138,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
    ca-certificates \
    && rm -rf /var/lib/apt/lists/*
 # Download binary
-ARG GOSU_VERSION=1.16
+ARG GOSU_VERSION=1.19
 ARG GOSU_GPG_KEY=B42F6819007F00F88E364FD4036A9C25BF357DD4
 ADD https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$TARGETARCH \
     /usr/local/bin/gosu
diff --git a/Dockerfile-orioledb-17 b/Dockerfile-orioledb-17
index 1eb9400df..11a82ebba 100644
--- a/Dockerfile-orioledb-17
+++ b/Dockerfile-orioledb-17
@@ -138,7 +138,7 @@ RUN apt-get update && apt-get install -y --no-install-recommends \
    ca-certificates \
    && rm -rf /var/lib/apt/lists/*
 # Download binary
-ARG GOSU_VERSION=1.16
+ARG GOSU_VERSION=1.19
 ARG GOSU_GPG_KEY=B42F6819007F00F88E364FD4036A9C25BF357DD4
 ADD https://github.com/tianon/gosu/releases/download/$GOSU_VERSION/gosu-$TARGETARCH \
     /usr/local/bin/gosu