[🐛 Bug]: Address security Vulnerabilities in Base and Video Images

[amardeep2006]

What happened?

Sysdig has flagged vulnerabilities in :

1. Multiple jars present in /root/.cache folder

   commons-compress-1.23.0.jar
   org.codehaus.plexus:plexus-archiver

2. Video container has very old setuptools and wheels which are vulnerable

I can raise PR with following changes in Dockerfile:

1. Delete /root/.cache folder . This is used by coursier but I think it serves no real purpose afterwards in Docker Images. It will also reduce the docker image size. Please comment if you think otherwise.
2. Update following packages io.opentelemetry:opentelemetry-exporter-otlp:1.30.1 io.opentelemetry:opentelemetry-exporter-jaeger:1.30.1 io.grpc:grpc-netty:1.58.0
3. upgrade pip, setuptools and wheel in Video Dockerfile

Command used to start Selenium Grid with Docker

NA

Relevant log output

NA

Operating System

Ubuntu

Docker Selenium version (tag)

4.13.0

[github-actions]

@amardeep2006, thank you for creating this issue. We will troubleshoot it as soon as we can.

---

Info for maintainers

Triage this issue by using labels.

If information is missing, add a helpful comment and then I-issue-template label.

If the issue is a question, add the I-question label.

If the issue is valid but there is no time to troubleshoot it, consider adding the help wanted label.

If the issue requires changes or fixes from an external project (e.g., ChromeDriver, GeckoDriver, MSEdgeDriver, W3C), add the applicable G-* label, and it will provide the correct link and auto-close the issue.

After troubleshooting the issue, please add the R-awaiting answer label.

Thank you!

[amardeep2006]

PR #1961 merged

[github-actions]

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.