diff --git a/.snyk b/.snyk
index c3bc10d..c893c50 100644
--- a/.snyk
+++ b/.snyk
@@ -1,15 +1,3 @@
 # This file specifies snyk vulnerabilities to be ignored.
 # If this file contains only comments, then no vulnerabilities are ignored
 # but do not delete this file - it is needed for the live-snyk-scans repo workflows.
-
-# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.25.0
-# ignores vulnerabilities until expiry date; change duration by modifying expiry date
-ignore:
-  SNYK-ALPINE319-BUSYBOX-6913413:
-    - '*':
-        reason: Waiting for base image upgrade
-        expires: 2024-07-01T15:48:22.212Z
-        created: 2024-05-19T15:48:22.228Z
-
-patch: {}
diff --git a/Dockerfile b/Dockerfile
index f0b4c18..ee3fad3 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-ARG BASE_IMAGE=nginx:stable-alpine3.17
+ARG BASE_IMAGE=nginx:stable-alpine3.19
 FROM ${BASE_IMAGE}
 LABEL maintainer=jon@jaggersoft.com
 
@@ -8,7 +8,6 @@ RUN apk add tini
 RUN apk add bash
 
 RUN apk upgrade
-RUN apk add libexpat=2.6.2-r0  # https://security.snyk.io/vuln/SNYK-ALPINE319-EXPAT-6241038
 
 RUN      rm -rf ${NGINX_DIR}
 COPY     images ${NGINX_DIR}/images