NCBI provides a fantastic service in their official BLAST+ Docker images, but unfortunately, those images are not frequently rebuilt so can show security vulnerabilities in Ubuntu packages, golang, etc. Whether or not those vulnerabilities are exploitable, a simple rebuild often takes care of them by patching to the latest versions of the affected packages.
This Dockerfile starts from the official image, then rebuilds certain components to their latest versions.