Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Distroless]: Support distroless container images #32815

Open
1 of 4 tasks
damondouglas opened this issue Oct 16, 2024 · 0 comments
Open
1 of 4 tasks

[Distroless]: Support distroless container images #32815

damondouglas opened this issue Oct 16, 2024 · 0 comments
Assignees
@damondouglas
Labels
docker infra new feature P2

Comments

@damondouglas
Copy link
Contributor

damondouglas commented Oct 16, 2024
edited
Loading

Summary

This issue tracks the feature to add distroless support to new and variants of existing Beam container images.

What problem does this solve

Portable runner execution relies on containerization of Beam’s dependencies. These container images harbor several security vulnerabilities. One vector of these vulnerabilities stem from the use of container image bases that provide access to the operating system, which may unnecessarily expose the development environment. For an informative and entertaining discussion on this, see Containers Are Not VMs! Which Base Container (Docker) Images Should We Use?.

Goals
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@damondouglas damondouglas

Labels
docker infra new feature P2
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@damondouglas @liferoad