CH-229 reduce base images vulnerabilities

Author: filippomc

applications/common/server/requirements.txt

@@ -4,4 +4,3 @@ python_dateutil>=2.9.0
 setuptools>=21.0.0
 uvicorn
 flask_sqlalchemy==3.0.2
-sqlalchemy<2.0.0

applications/samples/backend/requirements.txt

@@ -2,4 +2,8 @@ connexion[swagger-ui,flask,uvicorn]>=3.0.0,<4.0.0
 swagger-ui-bundle>=1.1.0
 python_dateutil>=2.9.0
 setuptools>=21.0.0
-uvicorn
+uvicorn
+# Following some unnecessary requirements to make sure they can be installed
+psycopg2-binary
+sqlalchemy<2.0.0
+scipy

infrastructure/base-images/cloudharness-base/Dockerfile

@@ -1,7 +1,12 @@
-ARG PARENT=python:3.12
+ARG PARENT=python:3.12-slim-trixie
 FROM ${PARENT}
 
-RUN apt-get update && apt-get install -y nfs-common && rm -rf /var/lib/apt/lists/*
+RUN apt update && apt install -y --no-install-recommends \
+    gcc \
+    python3-dev \
+    libpq-dev \
+    nfs-common \
+    && rm -rf /var/lib/apt/lists/*
 
 RUN --mount=type=cache,target=/root/.cache python -m pip install --upgrade pip &&\
     pip install pytest  --prefer-binary

infrastructure/base-images/cloudharness-frontend-build/Dockerfile

@@ -1,3 +1,3 @@
-FROM node:20
+FROM node:22-alpine
 
 

test/test-e2e/Dockerfile

@@ -1,4 +1,4 @@
-FROM ghcr.io/puppeteer/puppeteer:23
+FROM ghcr.io/puppeteer/puppeteer:24
 
 USER root
 RUN mkdir -p /home/test