Upgrade dev-image Dockerfile to stable-slim

[confiks]

Currently breaks the build on master. Buster has been EOL for LTS for a year now.

[qltysh]

❌ 2 blocking issues (2 total)

Tool	Category	Rule	Count
checkov	Vulnerability	Ensure that a user for the container has been created	1	❌
checkov	Vulnerability	Ensure that sudo isn't used	1	❌

[gerardsn]

probably fine. We need to reconsider if this is useful though. Every time I tried to use this I had to fix something since MS DevTunnel keeps changing.

[stevenvegt]

So, buster was the stable, is now superseded by bookworm. But instead of explicitly referring to it by code-name, we use the stable tag to always use the latest one?

Hopefully a next stable update doesn't brake things. That is a risk when using a generic tag which can change from one to another.

Also, removing the contents of the /var/lib/apt/lists dir is probably stuff which got there after the update command and we don't need that anymore?

[confiks]

Hopefully a next stable update doesn't brake things. That is a risk when using a generic tag which can change from one to another.

I think it's better to remain on a stable version and potentially break things than to remain on an unmaintained version too long. Buster lost its LTS support a year ago, and we only noticed now that the packages were missing from the usual place.

Also, removing the contents of the /var/lib/apt/lists dir is probably stuff which got there after the update command and we don't need that anymore?

Yes, it's a pretty standard line to make the docker image a tiny bit smaller.

[confiks]

After fixing this we should also evaluate if this image is used at all. It might not be necessary or useful anymore, as @gerardsn already mentioned.