v1.0.8-beta.008 - fix(security): patch nodemailer vulnerability (GHSA-c7w3-x93f-qmm8)
- Added
odemailer to the surgical NPM cleanup step in the Dockerfile to strip the vulnerable v7.0.13 bundled by Next.js. - Forced the installation of the secure
odemailer@8.0.4 directly into the standalone build before final image generation. - Mitigates the SMTP command injection vulnerability flagged during Docker Hub security scans.