wiremock-docker icon indicating copy to clipboard operation
wiremock-docker copied to clipboard
verified publisher icon wiremock

Bump base image to chainguard jdk image to reduce CVE

Open priyanka2211 opened this issue 1 year ago • 3 comments

References

  • TODO

Submitter checklist

  • [ ] Recommended: Join WireMock Slack to get any help in #help-contributing or a project-specific channel like #wiremock-java
  • [ ] The PR request is well described and justified, including the body and the references
  • [ ] The PR title represents the desired changelog entry
  • [ ] The repository's code style is followed (see the contributing guide)
  • [ ] Test coverage that demonstrates that the change works as expected
  • [ ] For new features, there's necessary documentation in this pull request or in a subsequent PR to wiremock.org

priyanka2211 avatar Oct 17 '24 09:10 priyanka2211

I'm not able to download that version. I think you need to pay chainguard to get that file.

nathanlaceyraft avatar Feb 26 '25 13:02 nathanlaceyraft

Maybe you could switch to the ubi9-minimal version of the eclipse-temurin image?

yaron avatar May 16 '25 12:05 yaron

or something like gcr.io/distroless/java17-debian12:nonroot

you want an image that isn't running as root if possible

nathanlaceyraft avatar May 16 '25 13:05 nathanlaceyraft