distroless
distroless copied to clipboard
GoogleContainerTools
🥑 Language focused docker images, minus the operating system.
For the rest of the distroless images there is a page that lists the available tags. However, for the python one the page doesn't contain tag list. Using the standard...
This features allow adding additional ca certificates in the cacerts rule. This is useful when ca certs are needed which are not part of the `ca-certificates` Debian package.
We are using `cacerts_java` internally and after upgrading to a newer version of rules_pkg, we saw that cacerts_java targets are broken now with this error: `every rule of type cacerts_java...
Running the generate application results in an i/o timeout error: $ ./debian_package_manager/generate Processing packages: "arm64" "debian11" Processing packages: "amd64" "debian11" Processing packages: "ppc64le" "debian10" Processing packages: "arm" "debian10" Processing packages:...
Since distroless are primarily built with Bazel I filed this issue https://github.com/bazelbuild/rules_docker/issues/1876 that am repasting here... but I reckon this may need to be tracked here instead: # 🚀 feature...
Hi, Both WhiteSource and Twistclock SCA scanners indicate that libc6_2.31-13+deb11u3_amd64.deb is vulnerable to CVE-2019-1010022 (High) and CVE-2019-1010023 (Medium). Whether these are exploitable is a separate thing, but report optics suffers...
The version of python included in the distroless python3 image is 3.9.2 which is quite old now and contains a critical CVE. Reported by a trivy scan: ```./trivy image --severity...
I'm using `distroless/nodejs:14` in my docker file. The Snyk scanner shows a [Vulnerability issue](https://security.snyk.io/vuln/SNYK-DEBIAN10-OPENSSL-2426310) in my docker image which uses `distroless/nodejs:14`. The issue is arising from the `openssl` package for...
Last April the dotnet images were removed from this repository due to high snapshot.debian.org traffic in this [Issue](https://github.com/GoogleContainerTools/distroless/issues/710). It was mentioned there that if there was enough interest and that...
Thanks for this project! We appreciate and use it a lot! One of the issues I am running into is that there aren't any release notes on new releases. Here...
Metadata
Owner
Metadata
🥑 Language focused docker images, minus the operating system.