fix: Update NPM to address security vulnerability (#15968)

2025-12-16 17:46:45 +00:00 · 2025-06-03 12:01:19 +01:00
parent ac06610485
commit 2e18e07070
1 changed files with 3 additions and 0 deletions
--- a/docker/images/n8n/Dockerfile
+++ b/docker/images/n8n/Dockerfile
@@ -65,6 +65,9 @@ RUN \
 	mkdir .n8n && \
 	chown node:node .n8n

+# Install npm 11.4.1 to fix the vulnerable cross-spawn dependency
+RUN npm install -g npm@11.4.1
+
 ENV SHELL /bin/sh
 USER node
 ENTRYPOINT ["tini", "--", "/docker-entrypoint.sh"]