diff --git a/.github/containerscan/allowedlist.yaml b/.github/containerscan/allowedlist.yaml
new file mode 100644
index 0000000000..ecb29320e9
--- /dev/null
+++ b/.github/containerscan/allowedlist.yaml
@@ -0,0 +1,6 @@
+general:
+  vulnerabilities:
+    #besu-all-in-one
+
+    -CVE-2022-37734
+    -CVE-2022-25857
diff --git a/tools/docker/besu-all-in-one/Dockerfile b/tools/docker/besu-all-in-one/Dockerfile
index 1e1d892755..623bbd0124 100644
--- a/tools/docker/besu-all-in-one/Dockerfile
+++ b/tools/docker/besu-all-in-one/Dockerfile
@@ -1,8 +1,8 @@
-ARG BESU_VERSION=1.5.1
-ARG ORION_VERSION=1.6
+ARG BESU_VERSION=22.7.4
+ARG TESSERA_VERSION=22.1.7
 
 FROM hyperledger/besu:$BESU_VERSION AS besu
-FROM pegasyseng/orion:1.5.1 AS orion
+FROM quorumengineering/tessera:$TESSERA_VERSION AS tessera
 
 COPY --from=besu /opt/besu/ /opt/besu/