static-php-cli icon indicating copy to clipboard operation
static-php-cli copied to clipboard
verified publisher icon crazywhalecc

Proposal: use same compilation flags as the Docker images

Open dunglas opened this issue 1 year ago • 1 comments

For improved security, what do you think about using by default the same flags as the Docker image? https://github.com/docker-library/php/blob/master/8.3/alpine3.20/zts/Dockerfile#L53-L55

dunglas avatar Aug 09 '24 11:08 dunglas

It's useful to improve security, and now that the -fPIE flag is set, I think the only thing to consider is to keep -Os.

But I don't have a performance and security test plan at the moment, and these compilation parameters may also affect phpmicro. It would be better if there were more comprehensive tests on these flags.

crazywhalecc avatar Aug 09 '24 12:08 crazywhalecc