🔒 chore: Bump MongoDB from 8.0.17 to 8.0.20 in Docker Compose Files (#12399)

Addresses vulnerabilities disclosed in CERTFR-2026-AVI-0310: - Improper object lifecycle management of MD5 hash state in core cryptographic operations (Blocker/P1) - Use-after-free in ExpressionContext during pipeline cloning with nested $unionWith stages (Major/P3)
2026-03-25 13:56:43 -04:00
parent 221e49222d
commit 734239346b
2 changed files with 2 additions and 2 deletions
--- a/deploy-compose.yml
+++ b/deploy-compose.yml
@@ -46,7 +46,7 @@ services:
    container_name: chat-mongodb
    # ports:  # Uncomment this to access mongodb from outside docker, not safe in deployment
    #   - 27018:27017
-    image: mongo:8.0.17
+    image: mongo:8.0.20
    restart: always
    volumes:
      - ./data-node:/data/db
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -29,7 +29,7 @@ services:
      - ./logs:/app/logs
  mongodb:
    container_name: chat-mongodb
-    image: mongo:8.0.17
+    image: mongo:8.0.20
    restart: always
    user: "${UID}:${GID}"
    volumes: