Fix critical and high severity container scanning CVEs

Placeholder Adam Zwickeyrequested to merge
iqvia-demo into main
  • Update base image from CentOS 7 (EOL) to Ubuntu 22.04 LTS
  • Addresses CVE-2021-43527 (NSS vulnerabilities) - CRITICAL
  • Addresses 50+ HIGH severity CVEs including:
    • CVE-2022-25236, CVE-2022-22823 (expat vulnerabilities)
    • CVE-2025-24928, CVE-2025-49796 (libxml2 vulnerabilities)
    • CVE-2023-40217, CVE-2023-24329 (Python vulnerabilities)
    • CVE-2024-2961, CVE-2024-33599 (glibc vulnerabilities)
    • CVE-2022-2526 (systemd vulnerabilities)
    • CVE-2020-1971, CVE-2022-0778, CVE-2023-0286 (OpenSSL vulnerabilities)
    • Multiple bind, krb5, zlib, and other system library vulnerabilities
  • Use Eclipse Temurin with Ubuntu base for better security posture
  • Maintain application functionality while improving security

Merge request reports