feat: improve Dockerfile and remove vuln #658

julienlau · 2023-09-07T13:18:31Z

improve Dockerfile in a security perspective:

remove obsolete openjdk base image
use node version that do not include critcal vulnerabilities
specify UID >= 10000
remove wget and curl (we may skip this step)

solve an issue due to procps not being installed
install atop basic monitoring tool

I checked on my environments that the image is functionnal

Dockerfile

julienlau · 2023-09-08T13:14:06Z

Please find a new commit that I tested on my side and is OK.
It takes your review into account

Minutis

Looks good.

feat: improve Dockerfile and remove vuln

71b049b

julienlau requested review from pdambrauskas and Minutis as code owners September 7, 2023 13:18

Minutis reviewed Sep 7, 2023

View reviewed changes

Dockerfile Outdated Show resolved Hide resolved

Minutis reviewed Sep 8, 2023

View reviewed changes

Dockerfile Outdated Show resolved Hide resolved

Minutis reviewed Sep 8, 2023

View reviewed changes

Dockerfile Outdated Show resolved Hide resolved

chore: cleaner dockerfile

56cb64d

chore: use base image JRE

ccfef85

Minutis approved these changes Sep 11, 2023

View reviewed changes

pdambrauskas merged commit 295f8b8 into exacaster:master Sep 11, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat: improve Dockerfile and remove vuln #658

feat: improve Dockerfile and remove vuln #658

Uh oh!

julienlau commented Sep 7, 2023

Uh oh!

Uh oh!

Uh oh!

Uh oh!

julienlau commented Sep 8, 2023

Uh oh!

Minutis left a comment

Uh oh!

Uh oh!

feat: improve Dockerfile and remove vuln #658

feat: improve Dockerfile and remove vuln #658

Uh oh!

Conversation

julienlau commented Sep 7, 2023

Uh oh!

Uh oh!

Uh oh!

Uh oh!

julienlau commented Sep 8, 2023

Uh oh!

Minutis left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!