artemis icon indicating copy to clipboard operation
artemis copied to clipboard

Published 20 hours ago verified publisher icon paradigmxyz

Why use `openssl` in docker image?

Open 0xmichalis opened this issue 1 year ago • 0 comments

Is it possible to replace the use of openssl with rustls? If so, you should be able to change the runtime image to use distroless which would reduce the image size from 137MB to 16.5MB and increase the security of the image since you cannot shell into it or make it execute anything other than app logic.

- FROM ubuntu:20.04 AS runtime
+ FROM gcr.io/distroless/static-debian11

REPOSITORY                                     TAG             IMAGE ID       CREATED          SIZE
artemis                                        distroless      f7648ddb5cfb   45 seconds ago   16.5MB
artemis                                        latest          ffa038e5053e   34 minutes ago   137MB

0xmichalis avatar Jun 04 '23 16:06 0xmichalis