From 4d2319b1c6a038174cfb19c911fa5a672015dff1 Mon Sep 17 00:00:00 2001
From: Ravi Khadiwala <ravi@signal.org>
Date: Mon, 12 Aug 2024 10:26:00 -0500
Subject: [PATCH] Pin nginx:alpine-stable version with a SHA

---
 docker-nginx/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-nginx/Dockerfile b/docker-nginx/Dockerfile
index ce1da4d..9126a40 100644
--- a/docker-nginx/Dockerfile
+++ b/docker-nginx/Dockerfile
@@ -1,4 +1,4 @@
 # This wraps the upstream nginx image so dependabot can watch it for changes.
 # If https://github.com/dependabot/dependabot-core/issues/390 is addressed, we
 # can just inline this into docker-compose.yml
-FROM nginx:1.26.1-alpine
+FROM nginx:stable-alpine@sha256:33001975a6ea5a2b78d108b64bdc89b434e31f523d3bc641ca2a3136d9024df8