Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Leverage Alternate Base Image to Minimize Packages and Vulnerabilities #75

Open
karendm opened this issue May 11, 2023 · 0 comments
Open
Labels
improvement This issue or pull request will add new or improve existing functionality

Comments

@karendm
Copy link
Collaborator

karendm commented May 11, 2023

💡 Summary

Reporting Engine currently utilizes the python:3.8.16-bullseye Docker base image which contains a lot of unnecessary, vulnerable packages. Leveraging an alternate base image (e.g., slim) and identifying/installing only the necessary packages will help reduce overhead and vulnerabilities.

Implementation notes

Alternate base images under consideration:

  • python:3.8-slim
  • python:3.10.11-slim-bullseye
  • python:3.12-rc-slim
@karendm karendm added the improvement This issue or pull request will add new or improve existing functionality label May 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
improvement This issue or pull request will add new or improve existing functionality
Projects
None yet
Development

No branches or pull requests

1 participant