v1.0.6-beta.011 - Eliminate npm and busybox CVEs via image hardening
- Isolated build tools (Corepack/npm latest) to a temporary builder stage to prevent vulnerable build-tool sub-dependencies from leaking into production.
- Physically removed global npm, npx, and npm cache from the final production image to resolve CVE-2026-33671, CVE-2026-33672, and CVE-2026-33750.
- Updated runtime CMD to execute Prisma DB push via direct node call to accommodate removal of the npx binary.
- Re-applied Busybox edge repository patch in the final runner stage to ensure CVE-2025-60876 is mitigated in the shipped image.