From 2ce098f490c0e20c7f5d00a81e8fced1ec81341c Mon Sep 17 00:00:00 2001
From: charelle <charelle.wrk@gmail.com>
Date: Tue, 4 Oct 2022 14:04:08 +0800
Subject: [PATCH] fix(security): vulnerabilities found in besu-all-in-one #2055

Signed-off-by: charelle <charelle.wrk@gmail.com>
---
 .github/containerscan/allowedlist.yaml  | 6 ++++++
 tools/docker/besu-all-in-one/Dockerfile | 6 +++---
 2 files changed, 9 insertions(+), 3 deletions(-)
 create mode 100644 .github/containerscan/allowedlist.yaml

diff --git a/.github/containerscan/allowedlist.yaml b/.github/containerscan/allowedlist.yaml
new file mode 100644
index 0000000000..ecb29320e9
--- /dev/null
+++ b/.github/containerscan/allowedlist.yaml
@@ -0,0 +1,6 @@
+general:
+  vulnerabilities:
+    #besu-all-in-one
+
+    -CVE-2022-37734
+    -CVE-2022-25857
diff --git a/tools/docker/besu-all-in-one/Dockerfile b/tools/docker/besu-all-in-one/Dockerfile
index 1e1d892755..623bbd0124 100644
--- a/tools/docker/besu-all-in-one/Dockerfile
+++ b/tools/docker/besu-all-in-one/Dockerfile
@@ -1,8 +1,8 @@
-ARG BESU_VERSION=1.5.1
-ARG ORION_VERSION=1.6
+ARG BESU_VERSION=22.7.4
+ARG TESSERA_VERSION=22.1.7
 
 FROM hyperledger/besu:$BESU_VERSION AS besu
-FROM pegasyseng/orion:1.5.1 AS orion
+FROM quorumengineering/tessera:$TESSERA_VERSION AS tessera
 
 COPY --from=besu /opt/besu/ /opt/besu/