Peter Petrov
Peter Petrov
I also like this, and would welcome a PR adding it as a tag in this repo (possible tags: alpine, micro, busybox, or something else?)
> would welcome a PR adding it as a tag in this repo A few points, before anyone starts working on such a PR: - The image shouldn't rely on...
Something like: ``` Dockerfile # Use high uid/gid to avoid collisions with the host RUN groupadd --gid 25000 app && useradd --uid 25000 --gid 25000 --create-home --shell /bin/bash app ```...
Un-assigning this, in case anyone else wants to give it a try.
/cc the Docker team as well @tianon @yosifkit @jfrazelle
@Starefossen we do not use the tarball today.
Well, theoretically we **could** just `rm -rf /usr/local/lib/node_modules/npm/ /usr/local/bin/npm` after extracting the Node tarball. ~~I don't see much value in pursuing that though.~~
@rubennorte I spoke too soon before. Indeed, there is value in having a minimal image without package managers for production.
> And what would we call the variant? A few suggestions: `production`, `micro`, `tiny`, `nano` I like the idea in general.
Unless the app **needs** to modify its own source at runtime (which is almost never the case), it's a better practice to install as root.