Description

update Docker base image to v27.1.1 to fix CVE-2024-41110 (authorization bypass vulnerability that could lead to privilege escalation)
update github.com/jackc/pgx/v4 to v4.18.3 to fix CVE-2024-27304 (SQL injection vulnerability exploiting integer overflow)
update golang.org/x/crypto to v0.45.0 to fix multiple critical SSH vulnerabilities:
- CVE-2025-58181: unbounded memory consumption in GSSAPI authentication
- CVE-2025-47914: out of bounds read in SSH agent
- CVE-2025-47913: panic on SSH_AGENT_SUCCESS
- CVE-2025-22869: denial of service in key exchange
- CVE-2024-45337: authorization bypass in public key authentication
update testcontainers-go from v0.12.0 to v0.40.0
update Docker Go SDK (github.com/docker/docker and github.com/docker/cli) from v25.0.6 to v27.1.1 to match Docker runtime version and ensure API compatibility
migrate Docker API types to new sub-packages per v27+ API structure
fix mount configuration to prevent BindOptions on volume mounts

Examples

MR description has been reviewed
MR changes are functionally tested
MR does NOT have API/CLI changes OR there are API/CLI changes and they have been reviewed & DOCS ARE ADJUSTED (reference doc, etc)
MR does NOT have UI changes OR there are UI changes and they have been reviewed & UX IS REVIEWED

Edited Nov 28, 2025 by Artyom Kartasov