Switch to distroless/base-nossl-debian11 instead as the base image #5902

ywk253100 · 2023-02-22T08:35:29Z

Distroless introduces a new kind of image distroless/base-nossl-debian11 which removes the openssl related packages.
Let's use this one instead as this will reduce our effort to triage the openssl-related CVEs.

Vote on this issue!

This is an invitation to the Velero community to vote on issues, you can see the project's top voted issues listed here.
Use the "reaction smiley face" up to the right of this comment to vote.

👍 for "I would like to see this bug fixed as soon as possible"
👎 for "There are more important bugs to focus on right now"

The text was updated successfully, but these errors were encountered:

… CVE triage efforts Switch the base image to distroless/base-nossl-debian11 to reduce the CVE triage efforts Fixes vmware-tanzu#5902 Signed-off-by: Wenkai Yin(尹文开) <yinw@vmware.com>

ywk253100 added this to the v1.11 milestone Feb 22, 2023

ywk253100 self-assigned this Feb 22, 2023

ywk253100 mentioned this issue Mar 2, 2023

Switch the base image to distroless/base-nossl-debian11 to reduce the CVE triage efforts #5939

Merged

3 tasks

reasonerjt closed this as completed in #5939 Mar 6, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Switch to distroless/base-nossl-debian11 instead as the base image #5902

Switch to distroless/base-nossl-debian11 instead as the base image #5902

ywk253100 commented Feb 22, 2023

Switch to distroless/base-nossl-debian11 instead as the base image #5902

Switch to distroless/base-nossl-debian11 instead as the base image #5902

Comments

ywk253100 commented Feb 22, 2023