nginxinc · oseoin · May 30, 2024 · May 29, 2024 · May 30, 2024
@@ -1,6 +1,6 @@
 # syntax=docker/dockerfile:1.6
 ARG BUILD_OS=debian
-ARG NGINX_PLUS_VERSION=R31
+ARG NGINX_PLUS_VERSION=R32
 ARG DOWNLOAD_TAG=edge
 ARG DEBIAN_FRONTEND=noninteractive
 ARG PREBUILT_BASE_IMG=nginx/nginx-ingress:${DOWNLOAD_TAG}
@@ -150,7 +150,7 @@ RUN --mount=type=bind,from=alpine-fips-3.17,target=/tmp/fips/ \
  && cp -av /tmp/fips/etc/ssl/openssl.cnf /etc/ssl/openssl.cnf \
  && cp -av /tmp/ot/usr/local/lib/libjaegertracing*so* /tmp/ot/usr/local/lib/libzipkin*so* /tmp/ot/usr/local/lib/libdd*so* /tmp/ot/usr/local/lib/libyaml*so* /usr/local/lib/ \
  && ldconfig /usr/local/lib/ \
- && apk add --no-cache app-protect=~31.4.815 app-protect-attack-signatures app-protect-threat-campaigns \
+ && apk add --no-cache app-protect app-protect-attack-signatures app-protect-threat-campaigns \
  && sed -i -e '/nginx.com/d' /etc/apk/repositories
 
 
@@ -209,7 +209,7 @@ RUN --mount=type=secret,id=nginx-repo.crt,dst=/etc/ssl/nginx/nginx-repo.crt,mode
  ## end of duplicated code
  && if [ -z "${NGINX_AGENT##true}" ]; then apt-get install --no-install-recommends --no-install-suggests -y nginx-agent; fi \
  && if [ -z "${NAP_MODULES##*waf*}" ]; then \
- apt-get install --no-install-recommends --no-install-suggests -y app-protect=31+4.815* app-protect-engine=10.624* app-protect-common=10.624* app-protect-compiler=10.624* app-protect-plugin=5.24* nginx-plus-module-appprotect=31+4.815* app-protect-attack-signatures app-protect-threat-campaigns; \
+ apt-get install --no-install-recommends --no-install-suggests -y app-protect app-protect-engine app-protect-common app-protect-compiler app-protect-plugin nginx-plus-module-appprotect app-protect-attack-signatures app-protect-threat-campaigns; \
  fi \
  && if [ -z "${NAP_MODULES##*dos*}" ]; then \
  apt-get install --no-install-recommends --no-install-suggests -y app-protect-dos; \
@@ -283,7 +283,7 @@ RUN --mount=type=secret,id=nginx-repo.crt,dst=/etc/ssl/nginx/nginx-repo.crt,mode
  && dnf --nodocs install -y https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm \
  && rpm --import /tmp/app-protect-security-updates.key \
  && if [ -z "${NAP_MODULES##*waf*}" ]; then \
- dnf --nodocs install -y app-protect-31+4.815* app-protect-attack-signatures app-protect-threat-campaigns; \
+ dnf --nodocs install -y app-protect app-protect-attack-signatures app-protect-threat-campaigns; \
  fi \
  # fix for CVEs
  && dnf upgrade -y curl ncurses \
@@ -329,7 +329,7 @@ RUN --mount=type=secret,id=nginx-repo.crt,dst=/etc/ssl/nginx/nginx-repo.crt,mode
  && dnf --nodocs install -y https://dl.fedoraproject.org/pub/epel/epel-release-latest-8.noarch.rpm \
  && rpm --import /tmp/app-protect-security-updates.key \
  && if [ -z "${NAP_MODULES##*waf*}" ]; then \
- dnf --nodocs install -y app-protect-31+4.815* app-protect-attack-signatures app-protect-threat-campaigns; \
+ dnf --nodocs install -y app-protect app-protect-attack-signatures app-protect-threat-campaigns; \
  fi \
  && if [ -z "${NAP_MODULES##*dos*}" ]; then \
  dnf --nodocs install -y app-protect-dos; \