distroless
distroless copied to clipboard
GoogleContainerTools
🥑 Language focused docker images, minus the operating system.
**CVE disclosure** A link to a public CVE disclosure: [CVE-2022-1292](https://cve.org/CVERecord?id=CVE-2022-1292) **Name of image** debian11 **Link to updated package** A link to an available update for this package https://www.openssl.org/source/openssl-1.1.1q.tar.gz
Looking at the readme python image is listed as experimental however when tracing back the history, the message about python image being experimental has been there for about 4 years....
**Describe the bug** This is less of a bug and more of a design choice. Today, we include libssl / openssl in our distroless images. These two libraries are the...
CVE-2022-2068 highlights that libssl and openssl are an active CVE service. It's not clear how many applications need those libraries. Have we considered a non-ssl base image?
Standardises the nodejs images. Closes #1084
I would like to create a PR for jetty-distribution-9.4.45.v20220203.
Hi! It seems arm images are built from python and a few other languages, but not for java. Is there any chance java arm images could be added? Thanks!
Following in the style of https://github.com/GoogleContainerTools/distroless/pull/605 and its predecessors. cc @loosebazooka @chanseokoh
To not fill the PR with non-related discussion, re: https://github.com/GoogleContainerTools/distroless/pull/1083#issuecomment-1184551777, I open this issue as a tracker to discuss standardising nodejs images. > I think it might be time to...
I came across #892, and thought I'd give it a go to add `nonroot` images for node Closes #892
Metadata
Owner
Metadata
🥑 Language focused docker images, minus the operating system.