[Snyk] Security upgrade debian from 12.11-slim to bookworm-20250929-slim (#349)

![snyk-top-banner](https://res.cloudinary.com/snyk/image/upload/r-d/scm-platform/snyk-pull-requests/pr-banner-default.svg)

### Snyk has created this PR to fix 3 vulnerabilities in the dockerfile
dependencies of this project.

Keeping your Docker base image up-to-date means you’ll benefit from
security fixes in the latest version of your chosen image.

#### Snyk changed the following file(s):

- `Dockerfile`

We recommend upgrading to `debian:bookworm-20250929-slim`, as this image
has only **34** known vulnerabilities. To do this, merge this pull
request, then verify your application still works as expected.



#### Vulnerabilities that will be fixed with an upgrade:

|  | Issue | Score | 

:-------------------------:|:-------------------------|:-------------------------
![high
severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png
'high severity') | Improper Certificate Validation
<br/>[SNYK-DEBIAN12-PERL-5489190](https://snyk.io/vuln/SNYK-DEBIAN12-PERL-5489190)
| &nbsp;&nbsp;**614**&nbsp;&nbsp;
![critical
severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/c.png
'critical severity') | Integer Overflow or Wraparound
<br/>[SNYK-DEBIAN12-ZLIB-6008963](https://snyk.io/vuln/SNYK-DEBIAN12-ZLIB-6008963)
| &nbsp;&nbsp;**500**&nbsp;&nbsp;
![high
severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png
'high severity') | Directory Traversal
<br/>[SNYK-DEBIAN12-PAM-10378969](https://snyk.io/vuln/SNYK-DEBIAN12-PAM-10378969)
| &nbsp;&nbsp;**400**&nbsp;&nbsp;
![high
severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png
'high severity') | Directory Traversal
<br/>[SNYK-DEBIAN12-PAM-10378969](https://snyk.io/vuln/SNYK-DEBIAN12-PAM-10378969)
| &nbsp;&nbsp;**400**&nbsp;&nbsp;
![high
severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/h.png
'high severity') | Directory Traversal
<br/>[SNYK-DEBIAN12-PAM-10378969](https://snyk.io/vuln/SNYK-DEBIAN12-PAM-10378969)
| &nbsp;&nbsp;**400**&nbsp;&nbsp;



---

> [!IMPORTANT]
>
> - Check the changes in this PR to ensure they won't cause issues with
your project.
> - Max score is 1000. Note that the real score may have changed since
the PR was raised.
> - This PR was automatically created by Snyk using the credentials of a
real user.

---

**Note:** _You are seeing this because you or someone else with access
to this repository has authorized Snyk to open fix PRs._

For more information: <img
src="https://api.segment.io/v1/pixel/track?data=eyJ3cml0ZUtleSI6InJyWmxZcEdHY2RyTHZsb0lYd0dUcVg4WkFRTnNCOUEwIiwiYW5vbnltb3VzSWQiOiI4NGIyNTY3NS00M2Q4LTQwYWUtYWFhMS1mZjgyZTE5NDkwMmIiLCJldmVudCI6IlBSIHZpZXdlZCIsInByb3BlcnRpZXMiOnsicHJJZCI6Ijg0YjI1Njc1LTQzZDgtNDBhZS1hYWExLWZmODJlMTk0OTAyYiJ9fQ=="
width="0" height="0"/>
🧐 [View latest project
report](https://app.snyk.io/org/cloudnativepg/project/b61c8b41-4b60-400d-ba9d-c73028220b4e?utm_source&#x3D;github&amp;utm_medium&#x3D;referral&amp;page&#x3D;fix-pr)
📜 [Customise PR
templates](https://docs.snyk.io/scan-using-snyk/pull-requests/snyk-fix-pull-or-merge-requests/customize-pr-templates?utm_source=github&utm_content=fix-pr-template)
🛠 [Adjust project
settings](https://app.snyk.io/org/cloudnativepg/project/b61c8b41-4b60-400d-ba9d-c73028220b4e?utm_source&#x3D;github&amp;utm_medium&#x3D;referral&amp;page&#x3D;fix-pr/settings)
📚 [Read about Snyk's upgrade
logic](https://docs.snyk.io/scan-with-snyk/snyk-open-source/manage-vulnerabilities/upgrade-package-versions-to-fix-vulnerabilities?utm_source=github&utm_content=fix-pr-template)

---

**Learn how to fix vulnerabilities with free interactive lessons:**

🦉 [Directory
Traversal](https://learn.snyk.io/lesson/directory-traversal/?loc&#x3D;fix-pr)

[//]: #
'snyk:metadata:{"breakingChangeRiskLevel":null,"FF_showPullRequestBreakingChanges":null,"FF_showPullRequestBreakingChangesWebSearch":null,"customTemplate":{"variablesUsed":[],"fieldsUsed":[]},"dependencies":[{"name":"debian","from":"12.11-slim","to":"bookworm-20250929-slim"}],"env":"prod","issuesToFix":["SNYK-DEBIAN12-PERL-5489190","SNYK-DEBIAN12-ZLIB-6008963","SNYK-DEBIAN12-PAM-10378969","SNYK-DEBIAN12-PAM-10378969","SNYK-DEBIAN12-PAM-10378969"],"prId":"84b25675-43d8-40ae-aaa1-ff82e194902b","prPublicId":"84b25675-43d8-40ae-aaa1-ff82e194902b","packageManager":"dockerfile","priorityScoreList":[614,500,400],"projectPublicId":"b61c8b41-4b60-400d-ba9d-c73028220b4e","projectUrl":"https://app.snyk.io/org/cloudnativepg/project/b61c8b41-4b60-400d-ba9d-c73028220b4e?utm_source=github&utm_medium=referral&page=fix-pr","prType":"fix","templateFieldSources":{"branchName":"default","commitMessage":"default","description":"default","title":"default"},"templateVariants":["updated-fix-title","priorityScore"],"type":"auto","upgrade":["SNYK-DEBIAN12-PAM-10378969","SNYK-DEBIAN12-PAM-10378969","SNYK-DEBIAN12-PAM-10378969","SNYK-DEBIAN12-PERL-5489190","SNYK-DEBIAN12-ZLIB-6008963"],"vulns":["SNYK-DEBIAN12-PERL-5489190","SNYK-DEBIAN12-ZLIB-6008963","SNYK-DEBIAN12-PAM-10378969"],"patch":[],"isBreakingChange":false,"remediationStrategy":"vuln"}'

Signed-off-by: Jonathan Gonzalez V <jonathan.gonzalez@enterprisedb.com>
Co-authored-by: snyk-bot <snyk-bot@snyk.io>

Author: sxd

Dockerfile

@@ -1,4 +1,4 @@
-ARG BASE=debian:12.11-slim
+ARG BASE=debian:bookworm-20250929-slim
 FROM $BASE AS minimal
 
 ARG PG_VERSION