diff --git a/Dockerfile b/Dockerfile index 15c948c..46f9a8f 100644 --- a/Dockerfile +++ b/Dockerfile @@ -7,6 +7,9 @@ WORKDIR /app COPY package.json package-lock.json ./ RUN npm ci +# Security: npm audit для HIGH/CRITICAL CVE в зависимостях (warning-only). +RUN npm audit --audit-level=high --omit=dev 2>&1 | tee /tmp/npm-audit.log || true + COPY . . RUN npm run build