Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use a more recent jdk base image #4815

Merged
merged 1 commit into from
Apr 26, 2023
Merged

Use a more recent jdk base image #4815

merged 1 commit into from
Apr 26, 2023

Conversation

sakoush
Copy link
Member

@sakoush sakoush commented Apr 24, 2023

What this PR does / why we need it:

Update dataflow-engine base jdk image to use a more recent one to sort out CVEs.

At the time of writing:
image

Which issue(s) this PR fixes:

Fixes #

Special notes for your reviewer:

@sakoush sakoush requested a review from agrski April 24, 2023 11:26
@sakoush sakoush added the v2 label Apr 24, 2023
agrski
agrski reviewed Apr 24, 2023
View reviewed changes
scheduler/Dockerfile.dataflow
@@ -14,7 +14,7 @@ RUN gradle build --no-daemon --info
################################################################################

# Some dependencies require glibc, which Alpine does not provide
FROM registry.access.redhat.com/ubi9/openjdk-17-runtime:1.14-2
FROM registry.access.redhat.com/ubi9/openjdk-17-runtime:1.14-2.1681917142
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❓ Would latest be preferable to the specific version?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have not concluded yet whether it is alright to use latest tag. So bumping up the version for now.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Shouldn't rebuild with 1.14-2 (if it is a rolling tag) basically include the latest version of it, in this example 1.14-2.1681917142?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

1.14-2 is not a rolling tag (1.14 is).

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd probably stick to 1.14 then same way as I'd use for base ubuntu:22.04 and not specific build of it - but you are right we did not make specific decision on these yet.

agrski
agrski approved these changes Apr 26, 2023
View reviewed changes
Copy link
Contributor

@agrski agrski left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We can look at changing to 1.14 in future; this is fine for now

@sakoush sakoush merged commit 006af7b into v2 Apr 26, 2023
@agrski agrski deleted the quickfix/update_jdk_base branch October 6, 2023 14:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@RafalSkolasinski RafalSkolasinski RafalSkolasinski left review comments

@agrski agrski agrski approved these changes

Assignees
No one assigned
Labels
v2
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sakoush @RafalSkolasinski @agrski