From 99f3f02cd197927fa7e06fef9deba6949a0ca1d8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 8 Feb 2026 11:40:17 +0000
Subject: [PATCH] fix: docker/build_and_push_base.Dockerfile to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN12-SYSTEMD-6277507
- https://snyk.io/vuln/SNYK-DEBIAN12-SYSTEMD-6277507
- https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-7411315
- https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-7411315
- https://snyk.io/vuln/SNYK-DEBIAN12-KRB5-7411315
---
 docker/build_and_push_base.Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker/build_and_push_base.Dockerfile b/docker/build_and_push_base.Dockerfile
index 1c46d2e4db0d..e407f231c15e 100644
--- a/docker/build_and_push_base.Dockerfile
+++ b/docker/build_and_push_base.Dockerfile
@@ -68,7 +68,7 @@ RUN --mount=type=cache,target=/root/.cache/uv \
 # RUNTIME
 # Setup user, utilities and copy the virtual environment only
 ################################
-FROM python:3.12.3-slim AS runtime
+FROM python:3.14.3-slim AS runtime
 
 RUN useradd user -u 1000 -g 0 --no-create-home --home-dir /app/data
 # and we use the venv at the root because workspaces