From c7234edf75f5418d65c0d73d692d1f351938b8fb Mon Sep 17 00:00:00 2001
From: Daniel Sotirhos <dsotirho@ucsc.edu>
Date: Tue, 17 Sep 2024 12:50:56 -0700
Subject: [PATCH] Remove xmlsec deletion (DataBiosphere/azul-private#107,
 DataBiosphere/azul#6570)

xmlsec was updated to 2.2.6 in elasticsearch 7.17.24, and no longer has the CVE-2021-40690 vulnerability that xmlsec 2.1.4 had
---
 Dockerfile | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 494dc21..1e57cea 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -6,9 +6,6 @@ ARG azul_docker_elasticsearch_internal_version
 
 RUN apt-get update && apt-get upgrade -y
 
-# https://nvd.nist.gov/vuln/detail/CVE-2021-40690
-RUN rm /usr/share/elasticsearch/modules/x-pack-{identity-provider,security}/xmlsec-2.1.4.jar
-
 # https://nvd.nist.gov/vuln/detail/CVE-2023-1370
 RUN rm /usr/share/elasticsearch/modules/x-pack-security/nimbus-jose-jwt-9.23.jar