diff --git a/.github/workflows/image_run_pr_v3.yml b/.github/workflows/image_run_pr_v3.yml
index 8e80963bd4..6b441f77fe 100644
--- a/.github/workflows/image_run_pr_v3.yml
+++ b/.github/workflows/image_run_pr_v3.yml
@@ -76,6 +76,70 @@ jobs:
-H "Authorization: Bearer ${PULL_COUNTER_MAGIC_TOKEN}" \
-d '{ "rapidfort/airflow": 1 }' \
https://data-receiver.rapidfort.com/counts/internal_image_pulls
+ airflow-ib:
+ runs-on: ubuntu-latest
+
+ environment: actions-cicd-pr
+
+ steps:
+ - uses: actions/checkout@v3
+
+
+ - name: Check if test required
+ id: test-required
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+ run: |
+ python3 scripts/tests_required.py airflow-ib airflow/airflow/ironbank output.txt
+ cat output.txt >> $GITHUB_OUTPUT
+
+ - name: Start minikube
+
+ if: ${{ github.event_name == 'pull_request' && steps.test-required.outputs.TEST_REQUIRED == 'yes' }}
+
+ with:
+ memory: 6g
+ uses: medyagh/setup-minikube@master
+ - name: Check k8s cluster !
+
+ if: ${{ github.event_name == 'pull_request' && steps.test-required.outputs.TEST_REQUIRED == 'yes' }}
+
+ run: kubectl get pods -A
+ - name: Setup ubuntu
+ env:
+ RF_ACCESS_ID: ${{ secrets.RF_ACCESS_ID }}
+ RF_SECRET_ACCESS_KEY: ${{ secrets.RF_SECRET_ACCESS_KEY }}
+ DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
+ DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }}
+ RF_PLATFORM_HOST: ${{ secrets.RF_PLATFORM_HOST }}
+
+ if: ${{ github.event_name == 'pull_request' && steps.test-required.outputs.TEST_REQUIRED == 'yes' }}
+
+ run: ./scripts/setup.sh
+
+ - name: Create images for testing PR
+ env:
+ DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
+ DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }}
+ RAPIDFORT_ACCOUNT: ${{ secrets.RAPIDFORT_ACCOUNT }}
+ IB_DOCKER_USERNAME: ${{ secrets.IB_DOCKER_USERNAME }}
+ IB_DOCKER_PASSWORD: ${{ secrets.IB_DOCKER_PASSWORD }}
+ if: ${{ steps.test-required.outputs.TEST_REQUIRED == 'yes' }}
+ run: python3 community_images/common/orchestrator/main.py hourly_run airflow/airflow/ironbank
+
+
+ - name: Report pulls
+ env:
+ PULL_COUNTER_MAGIC_TOKEN: ${{ secrets.PULL_COUNTER_MAGIC_TOKEN }}
+
+ if: ${{ github.event_name == 'pull_request' && steps.test-required.outputs.TEST_REQUIRED == 'yes' }}
+
+ run: |
+ curl -X POST \
+ -H "Accept: application/json" \
+ -H "Authorization: Bearer ${PULL_COUNTER_MAGIC_TOKEN}" \
+ -d '{ "rapidfort/airflow-ib": 1 }' \
+ https://data-receiver.rapidfort.com/counts/internal_image_pulls
apache:
runs-on: ubuntu-latest
diff --git a/.github/workflows/image_run_v3.yml b/.github/workflows/image_run_v3.yml
index d6e0dcd694..eb72a18fc9 100644
--- a/.github/workflows/image_run_v3.yml
+++ b/.github/workflows/image_run_v3.yml
@@ -59,6 +59,54 @@ jobs:
-H "Authorization: Bearer ${PULL_COUNTER_MAGIC_TOKEN}" \
-d '{ "rapidfort/airflow": 1 }' \
https://data-receiver.rapidfort.com/counts/internal_image_pulls
+ airflow-ib:
+ runs-on: ubuntu-latest
+
+ environment: actions-cicd
+
+ steps:
+ - uses: actions/checkout@v3
+
+
+ - name: Start minikube
+
+ with:
+ memory: 6g
+ uses: medyagh/setup-minikube@master
+ - name: Check k8s cluster !
+
+ run: kubectl get pods -A
+ - name: Setup ubuntu
+ env:
+ RF_ACCESS_ID: ${{ secrets.RF_ACCESS_ID }}
+ RF_SECRET_ACCESS_KEY: ${{ secrets.RF_SECRET_ACCESS_KEY }}
+ DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
+ DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }}
+ RF_PLATFORM_HOST: ${{ secrets.RF_PLATFORM_HOST }}
+
+ run: ./scripts/setup.sh
+
+ - name: Create images and publish to dockerhub
+ env:
+ DOCKERHUB_USERNAME: ${{ secrets.DOCKERHUB_USERNAME }}
+ DOCKERHUB_PASSWORD: ${{ secrets.DOCKERHUB_PASSWORD }}
+ RAPIDFORT_ACCOUNT: ${{ secrets.RAPIDFORT_ACCOUNT }}
+ IB_DOCKER_USERNAME: ${{ secrets.IB_DOCKER_USERNAME }}
+ IB_DOCKER_PASSWORD: ${{ secrets.IB_DOCKER_PASSWORD }}
+ if: github.event_name != 'pull_request'
+ run: python3 community_images/common/orchestrator/main.py hourly_run airflow/airflow/ironbank --publish
+
+
+ - name: Report pulls
+ env:
+ PULL_COUNTER_MAGIC_TOKEN: ${{ secrets.PULL_COUNTER_MAGIC_TOKEN }}
+
+ run: |
+ curl -X POST \
+ -H "Accept: application/json" \
+ -H "Authorization: Bearer ${PULL_COUNTER_MAGIC_TOKEN}" \
+ -d '{ "rapidfort/airflow-ib": 1 }' \
+ https://data-receiver.rapidfort.com/counts/internal_image_pulls
apache:
runs-on: ubuntu-latest
diff --git a/.github/workflows/monitor.yml b/.github/workflows/monitor.yml
index ee73b45d67..3c0ae310a9 100644
--- a/.github/workflows/monitor.yml
+++ b/.github/workflows/monitor.yml
@@ -14,6 +14,8 @@ jobs:
steps:
- name: Pull Apache Airflow
run: docker pull rapidfort/airflow
+ - name: Pull Apache Airflow Ironbank
+ run: docker pull rapidfort/airflow-ib
- name: Pull Apache Airflow Scheduler
run: docker pull rapidfort/airflow-scheduler
- name: Pull Apache Airflow Worker
@@ -160,5 +162,5 @@ jobs:
curl -X POST \
-H "Accept: application/json" \
-H "Authorization: Bearer ${PULL_COUNTER_MAGIC_TOKEN}" \
- -d '{ "rapidfort/airflow": 1 , "rapidfort/airflow-scheduler": 1 , "rapidfort/airflow-worker": 1 , "rapidfort/apache": 1 , "rapidfort/apache2-ib": 1 , "rapidfort/apache-official": 1 , "rapidfort/cassandra-official": 1 , "rapidfort/consul": 1 , "rapidfort/consul-ib": 1 , "rapidfort/consul-official": 1 , "rapidfort/couchdb": 1 , "rapidfort/couchdb_3-ib": 1 , "rapidfort/couchdb-official": 1 , "rapidfort/curl": 1 , "rapidfort/elasticsearch": 1 , "rapidfort/elasticsearch-official": 1 , "rapidfort/envoy": 1 , "rapidfort/envoy-official": 1 , "rapidfort/etcd": 1 , "rapidfort/etcd-ib": 1 , "rapidfort/fluentd": 1 , "rapidfort/fluentd-ib": 1 , "rapidfort/fluentd-official": 1 , "rapidfort/ghost": 1 , "rapidfort/grafana-ib": 1 , "rapidfort/haproxy": 1 , "rapidfort/haproxy24-ib": 1 , "rapidfort/haproxy-official": 1 , "rapidfort/influxdb": 1 , "rapidfort/kong": 1 , "rapidfort/mariadb": 1 , "rapidfort/mariadb-ib": 1 , "rapidfort/mariadb-official": 1 , "rapidfort/memcached": 1 , "rapidfort/memcached-ib": 1 , "rapidfort/memcached-official": 1 , "rapidfort/microsoft-sql-server-2019-ib": 1 , "rapidfort/mongodb": 1 , "rapidfort/mongodb-ib": 1 , "rapidfort/mongodb-official": 1 , "rapidfort/mysql": 1 , "rapidfort/mysql8-ib": 1 , "rapidfort/mysql-official": 1 , "rapidfort/nats": 1 , "rapidfort/nats-ib": 1 , "rapidfort/nats-official": 1 , "rapidfort/nginx": 1 , "rapidfort/nginx-ib": 1 , "rapidfort/nginx-official": 1 , "rapidfort/oncall": 1 , "rapidfort/postgresql": 1 , "rapidfort/postgresql12-ib": 1 , "rapidfort/postgresql-official": 1 , "rapidfort/prometheus": 1 , "rapidfort/prometheus-ib": 1 , "rapidfort/rabbitmq": 1 , "rapidfort/redis": 1 , "rapidfort/redis-cluster": 1 , "rapidfort/redis6-ib": 1 , "rapidfort/redis-official": 1 , "rapidfort/telegraf": 1 , "rapidfort/traefik": 1 , "rapidfort/traefik-ib": 1 , "rapidfort/vault": 1 , "rapidfort/wordpress": 1 , "rapidfort/wordpress-ib": 1 , "rapidfort/yourls": 1 , "rapidfort/zookeeper": 1 , "rapidfort/zookeeper-ib": 1 , "rapidfort/zookeeper-official": 1 }' \
+ -d '{ "rapidfort/airflow": 1 , "rapidfort/airflow-ib": 1 , "rapidfort/airflow-scheduler": 1 , "rapidfort/airflow-worker": 1 , "rapidfort/apache": 1 , "rapidfort/apache2-ib": 1 , "rapidfort/apache-official": 1 , "rapidfort/cassandra-official": 1 , "rapidfort/consul": 1 , "rapidfort/consul-ib": 1 , "rapidfort/consul-official": 1 , "rapidfort/couchdb": 1 , "rapidfort/couchdb_3-ib": 1 , "rapidfort/couchdb-official": 1 , "rapidfort/curl": 1 , "rapidfort/elasticsearch": 1 , "rapidfort/elasticsearch-official": 1 , "rapidfort/envoy": 1 , "rapidfort/envoy-official": 1 , "rapidfort/etcd": 1 , "rapidfort/etcd-ib": 1 , "rapidfort/fluentd": 1 , "rapidfort/fluentd-ib": 1 , "rapidfort/fluentd-official": 1 , "rapidfort/ghost": 1 , "rapidfort/grafana-ib": 1 , "rapidfort/haproxy": 1 , "rapidfort/haproxy24-ib": 1 , "rapidfort/haproxy-official": 1 , "rapidfort/influxdb": 1 , "rapidfort/kong": 1 , "rapidfort/mariadb": 1 , "rapidfort/mariadb-ib": 1 , "rapidfort/mariadb-official": 1 , "rapidfort/memcached": 1 , "rapidfort/memcached-ib": 1 , "rapidfort/memcached-official": 1 , "rapidfort/microsoft-sql-server-2019-ib": 1 , "rapidfort/mongodb": 1 , "rapidfort/mongodb-ib": 1 , "rapidfort/mongodb-official": 1 , "rapidfort/mysql": 1 , "rapidfort/mysql8-ib": 1 , "rapidfort/mysql-official": 1 , "rapidfort/nats": 1 , "rapidfort/nats-ib": 1 , "rapidfort/nats-official": 1 , "rapidfort/nginx": 1 , "rapidfort/nginx-ib": 1 , "rapidfort/nginx-official": 1 , "rapidfort/oncall": 1 , "rapidfort/postgresql": 1 , "rapidfort/postgresql12-ib": 1 , "rapidfort/postgresql-official": 1 , "rapidfort/prometheus": 1 , "rapidfort/prometheus-ib": 1 , "rapidfort/rabbitmq": 1 , "rapidfort/redis": 1 , "rapidfort/redis-cluster": 1 , "rapidfort/redis6-ib": 1 , "rapidfort/redis-official": 1 , "rapidfort/telegraf": 1 , "rapidfort/traefik": 1 , "rapidfort/traefik-ib": 1 , "rapidfort/vault": 1 , "rapidfort/wordpress": 1 , "rapidfort/wordpress-ib": 1 , "rapidfort/yourls": 1 , "rapidfort/zookeeper": 1 , "rapidfort/zookeeper-ib": 1 , "rapidfort/zookeeper-official": 1 }' \
https://data-receiver.rapidfort.com/counts/internal_image_pulls
diff --git a/.github/workflows/readme_updater.yml b/.github/workflows/readme_updater.yml
index fbe26e2497..539fec570c 100644
--- a/.github/workflows/readme_updater.yml
+++ b/.github/workflows/readme_updater.yml
@@ -50,6 +50,14 @@ jobs:
repository: rapidfort/airflow
readme-filepath: ./community_images/airflow/airflow/bitnami/README.md.dockerhub
short-description: RapidFort optimized, hardened image for Apache Airflow
+ - name: Docker Hub Description Apache Airflow Ironbank
+ uses: peter-evans/dockerhub-description@v3
+ with:
+ username: ${{ secrets.DOCKERHUB_USERNAME }}
+ password: ${{ secrets.DOCKERHUB_PASSWORD }}
+ repository: rapidfort/airflow-ib
+ readme-filepath: ./community_images/airflow/airflow/ironbank/README.md.dockerhub
+ short-description: RapidFort optimized, hardened image for Apache Airflow Ironbank
- name: Docker Hub Description Apache Airflow Scheduler
uses: peter-evans/dockerhub-description@v3
with:
diff --git a/README.md b/README.md
index d121dcd768..b0208fb10e 100644
--- a/README.md
+++ b/README.md
@@ -112,6 +112,7 @@ We’ve optimized and hardened some of the most popular container images on Dock
| [Grafana Ironbank][ grafana-ib-github-link]| 
| 
| 1,696 |
| [TRAEFIK Ironbank][ traefik-ib-github-link]| | | 1,576 |
| [NATS Ironbank][ nats-ib-github-link]| | | 1,095 |
+| [Apache Airflow Ironbank][ airflow-ib-github-link]| | | |
What IronBank containers are supported?
@@ -139,6 +140,7 @@ We’ve optimized and hardened some of the most popular container images on Iron
| [Grafana Ironbank][ grafana-ib-github-link]| | | 1,696 |
| [TRAEFIK Ironbank][ traefik-ib-github-link]| | | 1,576 |
| [NATS Ironbank][ nats-ib-github-link]| | | 1,095 |
+| [Apache Airflow Ironbank][ airflow-ib-github-link]| | | |
### How to use Community Images
@@ -223,6 +225,10 @@ Learn more about container optimization at [RapidFort.com][rf-link-additonal-res
[airflow-dh-img-pulls-badge]: https://img.shields.io/docker/pulls/rapidfort/airflow?logo=docker&logoColor=white
[airflow-rf-link]:https://frontrow.rapidfort.com/app/community/imageinfo/docker.io%2Fbitnami%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow&utm_content=landing_view_report
+[airflow-ib-github-link]: https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow/ironbank
+[airflow-ib-dh-img-pulls-badge]: https://img.shields.io/docker/pulls/rapidfort/airflow-ib?logo=docker&logoColor=white
+[airflow-ib-rf-link]:https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=landing_view_report
+
[airflow-scheduler-github-link]: https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow-scheduler/bitnami
[airflow-scheduler-dh-img-pulls-badge]: https://img.shields.io/docker/pulls/rapidfort/airflow-scheduler?logo=docker&logoColor=white
[airflow-scheduler-rf-link]:https://frontrow.rapidfort.com/app/community/imageinfo/docker.io%2Fbitnami%2Fairflow-scheduler?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-scheduler&utm_content=landing_view_report
diff --git a/builder.lst b/builder.lst
index aaf55130c9..ec9f9333f7 100644
--- a/builder.lst
+++ b/builder.lst
@@ -66,3 +66,4 @@ prometheus/ironbank
etcd/ironbank
traefik/ironbank
nats/ironbank
+airflow/airflow/ironbank
diff --git a/community_images/airflow/airflow/ironbank/README.md b/community_images/airflow/airflow/ironbank/README.md
new file mode 100644
index 0000000000..e234ce3766
--- /dev/null
+++ b/community_images/airflow/airflow/ironbank/README.md
@@ -0,0 +1,145 @@
+
+
+
+
+
+
+[![rf-h][rf-h-badge]][rf-view-report-button]
+[![DH Image][dh-rf-badge]][rf-dh-image-link]
+[![Slack][slack-badge]][slack-link]
+[![FOSSA Status][fossa-badge]][fossa-link]
+
+# RapidFort hardened image for Apache Airflow Ironbank
+
+RapidFort’s container optimization process hardened this Apache Airflow Ironbank container. This container is free to use and has no license limitations.
+
+It is the same as the [Platform One Apache Airflow Ironbank][source-image-repo-link] image but more secure.
+
+Every day, we optimize and harden a variety of Docker Hub’s most famous images. Check out our [entire library](https://hub.docker.com/u/rapidfort) of secured containers.
+
+
+[Get the full report here or click on the image below][rf-view-report-link]
+
+[![Metrics][metrics-link]][rf-image-metrics-link]
+
+ Vulnerabilities: Original vs. Hardened
+
+
+
+[![CVE Reduction][cve-reduction-link]][rf-image-cve-reduction-link]
+
+
+
+
+
+
+
+
+## What is Apache Airflow Ironbank?
+
+> Apache Airflow (or simply Airflow) is a platform to programmatically author, schedule, and monitor workflows.
+
+When workflows are defined as code, they become more maintainable, versionable, testable, and collaborative.
+
+Use Airflow to author workflows as directed acyclic graphs (DAGs) of tasks. The Airflow scheduler executes your tasks on an array of workers while following the specified dependencies. Rich command line utilities make performing complex surgeries on DAGs a snap. The rich user interface makes it easy to visualize pipelines running in production, monitor progress, and troubleshoot issues when needed.
+
+
+[Overview of Apache Airflow Ironbank](https://airflow.apache.org/)
+
+Disclaimer: This software listing is packaged by RapidFort. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement.
+
+
+## How do I use this hardened Apache Airflow Ironbank image?
+
+The runtime instructions for this container are no different from the official release. Follow the instructions in their readme, but use our hardened image.
+
+
+
+
+
+
+
+```sh
+$ helm repo add bitnami https://charts.bitnami.com/bitnami
+
+# install airflow, just replace repository with RapidFort registry
+$ helm install my-airflow bitnami/airflow --set image.repository=rapidfort/airflow-ib
+
+```
+
+## What is a hardened image?
+
+A hardened image is a copy of a container that has been optimized and reduced for significantly improved security. Because every container uses many open-source software components and their dependencies, there’s a lot of extra weight that can be trimmed.
+
+This image is a hardened version of the official [Platform One Apache Airflow Ironbank][source-image-repo-link] image on Docker Hub.
+
+RapidFort is an industry-leading container optimization solution that minimizes software attack surfaces by removing unused code. Most containers can be reduced by at least 50%, which reduces the opportunity for malicious attacks and CVE exploits. Learn more at [RapidFort.com][rf-link].
+
+Our hardened images are updated daily using the latest vulnerability information available.
+
+
+
+
+
+
+
+## What’s the difference between the official [Platform One Apache Airflow Ironbank][source-image-repo-link] image and this hardened image?
+RapidFort’s hardened [rapidfort/airflow-ib][rf-dh-image-link] image has been optimized by our proprietary scanning and slimming technology. We are big fans of open-source software, containerized infrastructure, and security.
+
+We are making secure copies of the images we use every day and the most popular ones on Docker Hub. We want to make the world a safer place to operate.
+
+## Supported tags and respective `Dockerfile` links
+
+## Need support
+
+Join our slack community for any questions.
+
+
+
+
+
+## 🌟 Support this project
+
+[](https://github.com/rapidfort/community-images/stargazers)
+
+### [⏫⭐️ Scroll to the star button](#start-of-content)
+
+If you believe this project has potential, feel free to **star this repo** just like many [amazing people](https://github.com/rapidfort/community-images/stargazers)
+have.
+
+## Have questions?
+
+[][rf-rapidfort-footer-logo-link]
+
+
+If you'd like to learn more about RapidFort or our container optimization process, visit [RapidFort.com][rf-link].
+
+
+
+
+
+[dh-rf-badge]: https://img.shields.io/badge/dockerhub-images-important.svg?logo=Docker
+
+[fossa-badge]: https://app.fossa.com/api/projects/git%2Bgithub.com%2Frapidfort%2Fcommunity-images.svg?type=shield
+[fossa-link]: https://app.fossa.com/projects/git%2Bgithub.com%2Frapidfort%2Fcommunity-images?ref=badge_shield
+
+[rf-link]: https://rapidfort.com?utm_source=github&utm_medium=ci_rf_link&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=rapidfort_have_questions
+
+[rf-rapidfort-footer-logo-link]: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=rapidfort_footer_logo
+[rf-view-report-button]: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=view_report_button
+[rf-view-report-link]: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=view_report_link
+[rf-image-metrics-link]: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=image_metrics_link
+[rf-image-cve-reduction-link]: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow?utm_source=github&utm_medium=ci_view_report&utm_campaign=sep_01_sprint&utm_term=airflow-ib&utm_content=image_cve_reduction_link
+
+[dh-img-size-badge]: https://img.shields.io/docker/image-size/rapidfort/airflow-ib?logo=docker&logoColor=white&sort=semver
+[dh-img-pulls-badge]: https://img.shields.io/docker/pulls/rapidfort/airflow-ib?logo=docker&logoColor=white
+
+[slack-badge]: https://img.shields.io/static/v1?label=Join&message=slack&logo=slack&logoColor=E01E5A&color=4A154B
+[slack-link]: https://join.slack.com/t/rapidfortcommunity/shared_invite/zt-1g3wy28lv-DaeGexTQ5IjfpbmYW7Rm_Q
+
+[rf-h-badge]: https://img.shields.io/static/v1?label=RapidFort&labelColor=333F48&message=hardened&color=50B4C4&logo=data:image/png;base64,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
+[metrics-link]: https://github.com/rapidfort/community-images/raw/main/community_images/airflow/airflow/ironbank/assets/metrics.webp
+[cve-reduction-link]: https://github.com/rapidfort/community-images/raw/main/community_images/airflow/airflow/ironbank/assets/cve_reduction.webp
+
+[source-image-repo-link]: https://registry1.dso.mil/harbor/projects/3/repositories/opensource%2Fapache%2Fairflow%2Fairflow
+[rf-dh-image-link]: https://hub.docker.com/r/rapidfort/airflow-ib
diff --git a/community_images/airflow/airflow/ironbank/assets/cve_reduction.webp b/community_images/airflow/airflow/ironbank/assets/cve_reduction.webp
new file mode 100644
index 0000000000..90f5efd5c7
Binary files /dev/null and b/community_images/airflow/airflow/ironbank/assets/cve_reduction.webp differ
diff --git a/community_images/airflow/airflow/ironbank/assets/metrics.webp b/community_images/airflow/airflow/ironbank/assets/metrics.webp
new file mode 100644
index 0000000000..5b83df7151
Binary files /dev/null and b/community_images/airflow/airflow/ironbank/assets/metrics.webp differ
diff --git a/community_images/airflow/airflow/ironbank/image.yml b/community_images/airflow/airflow/ironbank/image.yml
new file mode 100644
index 0000000000..e67859fa18
--- /dev/null
+++ b/community_images/airflow/airflow/ironbank/image.yml
@@ -0,0 +1,39 @@
+name: airflow-ib
+official_name: Apache Airflow Ironbank
+official_website: https://airflow.apache.org/
+source_image_provider: Platform One
+source_image_repo: registry1.dso.mil/ironbank/opensource/apache/airflow/airflow
+source_image_repo_link: https://registry1.dso.mil/harbor/projects/3/repositories/opensource%2Fapache%2Fairflow%2Fairflow
+source_image_readme: https://repo1.dso.mil/dsop/opensource/apache/airflow/airflow/-/blob/development/README.md
+rf_docker_link: rapidfort/airflow-ib
+image_workflow_name: airflow_airflow_ironbank
+github_location: airflow/airflow/ironbank
+report_url: https://frontrow.rapidfort.com/app/community/imageinfo/registry1.dso.mil%2Fironbank%2Fopensource%2Fapache%2Fairflow%2Fairflow
+usage_instructions: |
+ $ helm repo add bitnami https://charts.bitnami.com/bitnami
+
+ # install airflow, just replace repository with RapidFort registry
+ $ helm install my-airflow bitnami/airflow --set image.repository=rapidfort/airflow-ib
+what_is_text: |
+ Apache Airflow (or simply Airflow) is a platform to programmatically author, schedule, and monitor workflows.
+
+ When workflows are defined as code, they become more maintainable, versionable, testable, and collaborative.
+
+ Use Airflow to author workflows as directed acyclic graphs (DAGs) of tasks. The Airflow scheduler executes your tasks on an array of workers while following the specified dependencies. Rich command line utilities make performing complex surgeries on DAGs a snap. The rich user interface makes it easy to visualize pipelines running in production, monitor progress, and troubleshoot issues when needed.
+disclaimer: |
+ Disclaimer: This software listing is packaged by RapidFort. The respective trademarks mentioned in the offering are owned by the respective companies, and use of them does not imply any affiliation or endorsement.
+input_registry:
+ registry: registry1.dso.mil
+ account: ironbank
+repo_sets:
+ - opensource/apache/airflow/airflow:
+ input_base_tag: "2.6."
+ output_repo: airflow-ib
+runtimes:
+ - type: docker_compose
+ script: dc_coverage.sh
+ compose_file: docker-compose.yml
+ image_keys:
+ airflow-ib:
+ repository: "AIRFLOW_IMAGE_REPOSITORY"
+ tag: "AIRFLOW_IMAGE_TAG"
diff --git a/frontrow.csv b/frontrow.csv
index c38134434d..ca401663a5 100644
--- a/frontrow.csv
+++ b/frontrow.csv
@@ -1,5 +1,6 @@
source_image_repo,github_location,rf_docker_link,pull_count,star_count,last_updated
docker.io/bitnami/airflow,https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow/bitnami,https://hub.docker.com/r/rapidfort/airflow,26543,9,2023-08-10T01:09:42.83904Z
+registry1.dso.mil/ironbank/opensource/apache/airflow/airflow,https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow/ironbank,https://hub.docker.com/r/rapidfort/airflow-ib,0,,
docker.io/bitnami/airflow-scheduler,https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow-scheduler/bitnami,https://hub.docker.com/r/rapidfort/airflow-scheduler,35978,10,2023-08-10T01:20:11.955165Z
docker.io/bitnami/airflow-worker,https://github.com/rapidfort/community-images/tree/main/community_images/airflow/airflow-worker/bitnami,https://hub.docker.com/r/rapidfort/airflow-worker,35527,10,2023-08-09T21:45:22.859332Z
docker.io/bitnami/apache,https://github.com/rapidfort/community-images/tree/main/community_images/apache/bitnami,https://hub.docker.com/r/rapidfort/apache,34185,10,2023-08-07T12:27:15.629045Z
diff --git a/image.lst b/image.lst
index 1e20aa10b3..63da174a3e 100644
--- a/image.lst
+++ b/image.lst
@@ -68,3 +68,4 @@ prometheus/ironbank
etcd/ironbank
traefik/ironbank
nats/ironbank
+airflow/airflow/ironbank