diff --git a/metro-ai-suite/image-based-video-search/src/app/Dockerfile b/metro-ai-suite/image-based-video-search/src/app/Dockerfile index 2ab34da73c..5a532ceb08 100644 --- a/metro-ai-suite/image-based-video-search/src/app/Dockerfile +++ b/metro-ai-suite/image-based-video-search/src/app/Dockerfile @@ -2,6 +2,13 @@ FROM docker.io/library/node:25 USER root +# Pull Debian security fixes (addresses libpng/libpq/linux-libc-dev CVEs when available in node security) +RUN apt-get update \ + && apt-get -y upgrade \ + && apt-get -y autoremove \ + && apt-get clean \ + && rm -rf /var/lib/apt/lists/* + # Set the working directory inside the container WORKDIR /usr/src/app diff --git a/metro-ai-suite/image-based-video-search/src/app/package.json b/metro-ai-suite/image-based-video-search/src/app/package.json index 8614407cfa..94c860bde1 100644 --- a/metro-ai-suite/image-based-video-search/src/app/package.json +++ b/metro-ai-suite/image-based-video-search/src/app/package.json @@ -24,6 +24,8 @@ "vue-tsc": "^2.1.10" }, "overrides": { - "form-data": "4.0.4" + "form-data": "4.0.4", + "tar": "^7.5.8", + "@isaacs/brace-expansion": "^5.0.1" } } diff --git a/metro-ai-suite/image-based-video-search/src/feature-matching/Dockerfile b/metro-ai-suite/image-based-video-search/src/feature-matching/Dockerfile index 6fdd3e33b2..ebbd230f5b 100644 --- a/metro-ai-suite/image-based-video-search/src/feature-matching/Dockerfile +++ b/metro-ai-suite/image-based-video-search/src/feature-matching/Dockerfile @@ -2,8 +2,19 @@ FROM docker.io/library/python:3.11 USER root +# Pull Debian security fixes (addresses libpng/libpq/linux-libc-dev CVEs when available in node security) +RUN apt-get update \ + && apt-get -y upgrade \ + && apt-get install --yes --no-install-recommends gstreamer1.0-plugins-ugly wget \ + && rm -rf /var/lib/apt/lists/* + WORKDIR /usr/src/app +RUN python -m pip install --upgrade \ + pip \ + setuptools \ + wheel + COPY ./requirements.txt . RUN pip install -r requirements.txt diff --git a/metro-ai-suite/image-based-video-search/src/feature-matching/requirements.txt b/metro-ai-suite/image-based-video-search/src/feature-matching/requirements.txt index c8b06cab66..1ad4040c4f 100644 --- a/metro-ai-suite/image-based-video-search/src/feature-matching/requirements.txt +++ b/metro-ai-suite/image-based-video-search/src/feature-matching/requirements.txt @@ -1,6 +1,6 @@ marshmallow==3.26.2 -pymilvus==2.5.0 -Pillow==11.0.0 +pymilvus==2.6.9 +Pillow==12.1.1 httpx==0.28.1 paho-mqtt==2.1.0 fastapi==0.121.0 diff --git a/metro-ai-suite/image-based-video-search/src/streaming-pipeline/Dockerfile b/metro-ai-suite/image-based-video-search/src/streaming-pipeline/Dockerfile index dba196abd3..e972f71bae 100644 --- a/metro-ai-suite/image-based-video-search/src/streaming-pipeline/Dockerfile +++ b/metro-ai-suite/image-based-video-search/src/streaming-pipeline/Dockerfile @@ -1,7 +1,11 @@ FROM docker.io/intel/dlstreamer:2025.2.0-ubuntu22 USER root -RUN apt-get update && apt-get install --yes --no-install-recommends gstreamer1.0-plugins-ugly wget && rm -rf /var/lib/apt/lists/* +# Pull Debian security fixes (addresses libpng/libpq/linux-libc-dev CVEs when available in node security) +RUN apt-get update \ + && apt-get -y upgrade \ + && apt-get install --yes --no-install-recommends gstreamer1.0-plugins-ugly wget \ + && rm -rf /var/lib/apt/lists/* USER dlstreamer