From c9531a25a35d454c77c74c7434f3544f5203f0a6 Mon Sep 17 00:00:00 2001
From: "renovate-pagopa[bot]"
 <164534245+renovate-pagopa[bot]@users.noreply.github.com>
Date: Tue, 30 Apr 2024 05:39:19 +0000
Subject: [PATCH] Pin dependencies

---
 azurite-init/Dockerfile.azurite-init                 |  2 +-
 docker-compose.yml                                   | 12 ++++++------
 gec-mock/Dockerfile.gec-mock                         |  2 +-
 nodo-mock/Dockerfile.nodo-mock                       |  2 +-
 npg-mock/Dockerfile.npg-mock                         |  2 +-
 .../Dockerfile.event-dispatcher-service              |  6 +++---
 .../Dockerfile.payment-methods-service               |  6 +++---
 .../Dockerfile.payment-requests-service              |  6 +++---
 .../Dockerfile.transactions-scheduler-service        |  6 +++---
 .../Dockerfile.transactions-service                  |  6 +++---
 .../Dockerfile.notifications-service                 |  2 +-
 pagopa-personal-data-vault-tokenizer/Dockerfile.pdv  |  2 +-
 pgs-mock/Dockerfile.pgs-mock                         |  2 +-
 psp-mock/Dockerfile.psp-mock                         |  2 +-
 wallet-mock/Dockerfile.wallet-mock                   |  2 +-
 15 files changed, 30 insertions(+), 30 deletions(-)

diff --git a/azurite-init/Dockerfile.azurite-init b/azurite-init/Dockerfile.azurite-init
index f04c406..c8c4527 100644
--- a/azurite-init/Dockerfile.azurite-init
+++ b/azurite-init/Dockerfile.azurite-init
@@ -1,4 +1,4 @@
-FROM mcr.microsoft.com/azure-cli:2.47.0
+FROM mcr.microsoft.com/azure-cli:2.47.0@sha256:a9fc568020f977fbac633c1c8cb096029214d121e4a03531e74b6a685d161119
 
 WORKDIR /usr/queues/script
 
diff --git a/docker-compose.yml b/docker-compose.yml
index be272f7..789ab8a 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -4,7 +4,7 @@ services:
 
   mongo:
     container_name: pagopa-ecommerce-mongo
-    image: mongo
+    image: mongo@sha256:876a3fabc326e71de931f0a7f9cda23e92d09a3219350a703dbe5a650d9222ce
     env_file: mongodb/mongodb.env
     ports:
       - "${MONGO_PORT}:27017"
@@ -16,7 +16,7 @@ services:
 
   mongo-express:
     container_name: pagopa-ecommerce-mongo-express
-    image: mongo-express
+    image: mongo-express@sha256:a533309c0e6ef38cd661b0067395a35a93f1926229ac51129f82ac0227fd0a94
     env_file: mongodb/mongo-express.env
     ports:
       - "${MONGO_EXPRESS_PORT}:8081"
@@ -27,7 +27,7 @@ services:
 
   redis:
     container_name: pagopa-ecommerce-redis
-    image: redis
+    image: redis@sha256:f14f42fc7e824b93c0e2fe3cdf42f68197ee0311c3d2e0235be37480b2e208e6
     command: ["sh", "-c", 'exec redis-server --requirepass "$$REDIS_PASSWORD"']
     ports:
       - "${REDIS_PORT}:6379"
@@ -36,7 +36,7 @@ services:
 
   redis-insight:
     container_name: pagopa-ecommerce-redis-insight
-    image: redislabs/redisinsight
+    image: redislabs/redisinsight@sha256:a46f32c97b01f8e14a3a7a04095e08b81c4818279f1d1f78b4ee03b43273f64a
     ports:
       - "${REDIS_INSIGHT_PORT}:8001"
     networks:
@@ -211,7 +211,7 @@ services:
       - pagopa-ecommerce-net
   traefik:
     container_name: pagopa-ecommerce-traefik
-    image: traefik:v2.7
+    image: traefik:v2.7@sha256:41bfa070b43184314a1fd86d5b68d367d3f744e972ca3fe44a8875f69935c2d7
     ports:
       - "8000:80"
       - "8090:8080"
@@ -223,7 +223,7 @@ services:
       - pagopa-ecommerce-net
 
   storage:
-    image: mcr.microsoft.com/azure-storage/azurite:3.24.0
+    image: mcr.microsoft.com/azure-storage/azurite:3.24.0@sha256:2e606815b1e65e3ad62e8e95d27776d877c882bac2277a9ed0a16d4a2dfa4541
     container_name: azurite
     ports:
       - "10000:10000"
diff --git a/gec-mock/Dockerfile.gec-mock b/gec-mock/Dockerfile.gec-mock
index 288c20e..80b6efa 100644
--- a/gec-mock/Dockerfile.gec-mock
+++ b/gec-mock/Dockerfile.gec-mock
@@ -1,4 +1,4 @@
-FROM node:18.19.0-alpine
+FROM node:18.19.0-alpine@sha256:0085670310d2879621f96a4216c893f92e2ded827e9e6ef8437672e1bd72f437
 
 WORKDIR /usr/src/app
 
diff --git a/nodo-mock/Dockerfile.nodo-mock b/nodo-mock/Dockerfile.nodo-mock
index eadc1a6..eba7144 100644
--- a/nodo-mock/Dockerfile.nodo-mock
+++ b/nodo-mock/Dockerfile.nodo-mock
@@ -1,4 +1,4 @@
-FROM node:18.13.0-alpine
+FROM node:18.13.0-alpine@sha256:fda98168118e5a8f4269efca4101ee51dd5c75c0fe56d8eb6fad80455c2f5827
 
 ARG NODO_MOCK_COMMIT_SHA
 
diff --git a/npg-mock/Dockerfile.npg-mock b/npg-mock/Dockerfile.npg-mock
index 58c4773..8df987c 100644
--- a/npg-mock/Dockerfile.npg-mock
+++ b/npg-mock/Dockerfile.npg-mock
@@ -1,4 +1,4 @@
-FROM node:18.19.0-alpine
+FROM node:18.19.0-alpine@sha256:0085670310d2879621f96a4216c893f92e2ded827e9e6ef8437672e1bd72f437
 
 WORKDIR /usr/src/app
 
diff --git a/pagopa-ecommerce-event-dispatcher-service/Dockerfile.event-dispatcher-service b/pagopa-ecommerce-event-dispatcher-service/Dockerfile.event-dispatcher-service
index 679757d..66e4b06 100644
--- a/pagopa-ecommerce-event-dispatcher-service/Dockerfile.event-dispatcher-service
+++ b/pagopa-ecommerce-event-dispatcher-service/Dockerfile.event-dispatcher-service
@@ -1,5 +1,5 @@
 ### 1. Cloning stage
-FROM alpine/git:latest AS clone
+FROM alpine/git:latest@sha256:c15c54221625d866fb6a98e74dcb1c6c4a24ab7c6585632db07f45219ea17efd AS clone
 WORKDIR /workspace/pagopa-ecommerce-event-dispatcher-service
 
 ARG ECOMMERCE_EVENT_DISPATCHER_COMMIT_SHA
@@ -9,7 +9,7 @@ RUN rm -rf * && \
     git checkout ${ECOMMERCE_EVENT_DISPATCHER_COMMIT_SHA} 
 
 ### 2. Build stage
-FROM maven:3.8.3-openjdk-17 AS build
+FROM maven:3.8.3-openjdk-17@sha256:8a66581a077762c8752a9f64f73cdd8c59e9c4446eb810417119e0436b075931 AS build
 WORKDIR /workspace/pagopa-ecommerce-event-dispatcher-service/
 
 ARG REPO=/workspace/pagopa-ecommerce-event-dispatcher-service
@@ -19,7 +19,7 @@ RUN mvn -f ./pom.xml validate -DskipTests
 RUN mvn -f ./pom.xml package -DskipTests
 
 ### 3. Run stage
-FROM openjdk:17-slim
+FROM openjdk:17-slim@sha256:aaa3b3cb27e3e520b8f116863d0580c438ed55ecfa0bc126b41f68c3f62f9774
 
 RUN addgroup --system user && adduser --ingroup user --system user
 USER user:user
diff --git a/pagopa-ecommerce-payment-methods-service/Dockerfile.payment-methods-service b/pagopa-ecommerce-payment-methods-service/Dockerfile.payment-methods-service
index c13d697..4cb2def 100644
--- a/pagopa-ecommerce-payment-methods-service/Dockerfile.payment-methods-service
+++ b/pagopa-ecommerce-payment-methods-service/Dockerfile.payment-methods-service
@@ -1,5 +1,5 @@
 ### 1. Cloning stage
-FROM alpine/git:latest AS clone
+FROM alpine/git:latest@sha256:c15c54221625d866fb6a98e74dcb1c6c4a24ab7c6585632db07f45219ea17efd AS clone
 WORKDIR /workspace/pagopa-ecommerce-payment-methods-service
 
 ARG ECOMMERCE_PAYMENT_METHODS_COMMIT_SHA
@@ -9,7 +9,7 @@ RUN rm -rf * && \
     git checkout ${ECOMMERCE_PAYMENT_METHODS_COMMIT_SHA} 
 
 ### 2. Build stage
-FROM maven:3.8.3-openjdk-17 AS build
+FROM maven:3.8.3-openjdk-17@sha256:8a66581a077762c8752a9f64f73cdd8c59e9c4446eb810417119e0436b075931 AS build
 WORKDIR /workspace/pagopa-ecommerce-payment-methods-service/
 
 ARG REPO=/workspace/pagopa-ecommerce-payment-methods-service
@@ -19,7 +19,7 @@ RUN mvn -f ./pom.xml validate -DskipTests
 RUN mvn -f ./pom.xml clean package -DskipTests
 
 ### 3. Run stage
-FROM openjdk:17-slim
+FROM openjdk:17-slim@sha256:aaa3b3cb27e3e520b8f116863d0580c438ed55ecfa0bc126b41f68c3f62f9774
 
 RUN addgroup --system user && adduser --ingroup user --system user
 USER user:user
diff --git a/pagopa-ecommerce-payment-requests-service/Dockerfile.payment-requests-service b/pagopa-ecommerce-payment-requests-service/Dockerfile.payment-requests-service
index 4eec9dd..4b2a055 100644
--- a/pagopa-ecommerce-payment-requests-service/Dockerfile.payment-requests-service
+++ b/pagopa-ecommerce-payment-requests-service/Dockerfile.payment-requests-service
@@ -1,5 +1,5 @@
 ### 1. Cloning stage
-FROM alpine/git:latest AS clone
+FROM alpine/git:latest@sha256:c15c54221625d866fb6a98e74dcb1c6c4a24ab7c6585632db07f45219ea17efd AS clone
 WORKDIR /workspace/pagopa-ecommerce-payment-requests-service
 
 ARG ECOMMERCE_PAYMENT_REQUESTS_COMMIT_SHA
@@ -9,7 +9,7 @@ RUN rm -rf * && \
     git checkout ${ECOMMERCE_PAYMENT_REQUESTS_COMMIT_SHA} 
 
 ### 2. Build stage
-FROM maven:3.8.3-openjdk-17 AS build
+FROM maven:3.8.3-openjdk-17@sha256:8a66581a077762c8752a9f64f73cdd8c59e9c4446eb810417119e0436b075931 AS build
 WORKDIR /workspace/pagopa-ecommerce-payment-requests-service/
 
 ARG REPO=/workspace/pagopa-ecommerce-payment-requests-service
@@ -18,7 +18,7 @@ COPY --from=clone ${REPO}/ .
 RUN mvn -f ./pom.xml clean package -DskipTests
 
 ### 3. Run stage
-FROM openjdk:17-slim
+FROM openjdk:17-slim@sha256:aaa3b3cb27e3e520b8f116863d0580c438ed55ecfa0bc126b41f68c3f62f9774
 
 RUN addgroup --system user && adduser --ingroup user --system user
 USER user:user
diff --git a/pagopa-ecommerce-transactions-scheduler-service/Dockerfile.transactions-scheduler-service b/pagopa-ecommerce-transactions-scheduler-service/Dockerfile.transactions-scheduler-service
index 22b55f4..c076526 100644
--- a/pagopa-ecommerce-transactions-scheduler-service/Dockerfile.transactions-scheduler-service
+++ b/pagopa-ecommerce-transactions-scheduler-service/Dockerfile.transactions-scheduler-service
@@ -1,5 +1,5 @@
 ### 1. Cloning stage
-FROM alpine/git:latest AS clone
+FROM alpine/git:latest@sha256:c15c54221625d866fb6a98e74dcb1c6c4a24ab7c6585632db07f45219ea17efd AS clone
 WORKDIR /workspace/pagopa-ecommerce-transactions-scheduler-service
 
 ARG ECOMMERCE_TRANSACTIONS_SCHEDULER_COMMIT_SHA
@@ -9,7 +9,7 @@ RUN rm -rf * && \
     git checkout ${ECOMMERCE_TRANSACTIONS_SCHEDULER_COMMIT_SHA} 
 
 ### 2. Build stage
-FROM maven:3.8.3-openjdk-17 AS build
+FROM maven:3.8.3-openjdk-17@sha256:8a66581a077762c8752a9f64f73cdd8c59e9c4446eb810417119e0436b075931 AS build
 WORKDIR /workspace/pagopa-ecommerce-transactions-scheduler-service/
 
 ARG REPO=/workspace/pagopa-ecommerce-transactions-scheduler-service
@@ -19,7 +19,7 @@ RUN mvn -f ./pom.xml validate -DskipTests
 RUN mvn -f ./pom.xml package -DskipTests
 
 ### 3. Run stage
-FROM openjdk:17-slim
+FROM openjdk:17-slim@sha256:aaa3b3cb27e3e520b8f116863d0580c438ed55ecfa0bc126b41f68c3f62f9774
 
 RUN addgroup --system user && adduser --ingroup user --system user
 USER user:user
diff --git a/pagopa-ecommerce-transactions-service/Dockerfile.transactions-service b/pagopa-ecommerce-transactions-service/Dockerfile.transactions-service
index 1387158..43906f0 100644
--- a/pagopa-ecommerce-transactions-service/Dockerfile.transactions-service
+++ b/pagopa-ecommerce-transactions-service/Dockerfile.transactions-service
@@ -1,5 +1,5 @@
 ### 1. Cloning stage
-FROM alpine/git:latest AS clone
+FROM alpine/git:latest@sha256:c15c54221625d866fb6a98e74dcb1c6c4a24ab7c6585632db07f45219ea17efd AS clone
 WORKDIR /workspace/pagopa-ecommerce-transactions-service
 
 ARG ECOMMERCE_TRANSACTIONS_COMMIT_SHA
@@ -9,7 +9,7 @@ RUN rm -rf * && \
     git checkout ${ECOMMERCE_TRANSACTIONS_COMMIT_SHA} 
 
 ### 2. Build stage
-FROM maven:3.8.3-openjdk-17 AS build
+FROM maven:3.8.3-openjdk-17@sha256:8a66581a077762c8752a9f64f73cdd8c59e9c4446eb810417119e0436b075931 AS build
 WORKDIR /workspace/pagopa-ecommerce-transactions-service/
 
 ARG REPO=/workspace/pagopa-ecommerce-transactions-service
@@ -19,7 +19,7 @@ RUN mvn -f ./pom.xml validate -DskipTests
 RUN mvn -f ./pom.xml package -DskipTests
 
 ### 3. Run stage
-FROM openjdk:17-slim
+FROM openjdk:17-slim@sha256:aaa3b3cb27e3e520b8f116863d0580c438ed55ecfa0bc126b41f68c3f62f9774
 
 RUN addgroup --system user && adduser --ingroup user --system user
 USER user:user
diff --git a/pagopa-notifications-service/Dockerfile.notifications-service b/pagopa-notifications-service/Dockerfile.notifications-service
index 06c7c25..0cfcfb5 100644
--- a/pagopa-notifications-service/Dockerfile.notifications-service
+++ b/pagopa-notifications-service/Dockerfile.notifications-service
@@ -1,4 +1,4 @@
-FROM node:18.13.0-alpine
+FROM node:18.13.0-alpine@sha256:fda98168118e5a8f4269efca4101ee51dd5c75c0fe56d8eb6fad80455c2f5827
 
 ARG NOTIFICATIONS_SERVICE_COMMIT_SHA
 
diff --git a/pagopa-personal-data-vault-tokenizer/Dockerfile.pdv b/pagopa-personal-data-vault-tokenizer/Dockerfile.pdv
index 86b604d..cde2a20 100644
--- a/pagopa-personal-data-vault-tokenizer/Dockerfile.pdv
+++ b/pagopa-personal-data-vault-tokenizer/Dockerfile.pdv
@@ -1,4 +1,4 @@
-FROM node:18.13.0-alpine
+FROM node:18.13.0-alpine@sha256:fda98168118e5a8f4269efca4101ee51dd5c75c0fe56d8eb6fad80455c2f5827
 WORKDIR /usr/src/app
 
 COPY ./* /usr/src/app/
diff --git a/pgs-mock/Dockerfile.pgs-mock b/pgs-mock/Dockerfile.pgs-mock
index 8a84969..c7e1876 100644
--- a/pgs-mock/Dockerfile.pgs-mock
+++ b/pgs-mock/Dockerfile.pgs-mock
@@ -1,4 +1,4 @@
-FROM node:18.19.0-alpine
+FROM node:18.19.0-alpine@sha256:0085670310d2879621f96a4216c893f92e2ded827e9e6ef8437672e1bd72f437
 
 WORKDIR /usr/src/app
 
diff --git a/psp-mock/Dockerfile.psp-mock b/psp-mock/Dockerfile.psp-mock
index cd2306c..78df2a6 100644
--- a/psp-mock/Dockerfile.psp-mock
+++ b/psp-mock/Dockerfile.psp-mock
@@ -1,4 +1,4 @@
-FROM node:18.19.0-alpine
+FROM node:18.19.0-alpine@sha256:0085670310d2879621f96a4216c893f92e2ded827e9e6ef8437672e1bd72f437
 
 WORKDIR /usr/src/app
 
diff --git a/wallet-mock/Dockerfile.wallet-mock b/wallet-mock/Dockerfile.wallet-mock
index deedda3..e38095c 100644
--- a/wallet-mock/Dockerfile.wallet-mock
+++ b/wallet-mock/Dockerfile.wallet-mock
@@ -1,4 +1,4 @@
-FROM node:18.19.0-alpine
+FROM node:18.19.0-alpine@sha256:0085670310d2879621f96a4216c893f92e2ded827e9e6ef8437672e1bd72f437
 
 WORKDIR /usr/src/app