This repository has been archived by the owner on Mar 10, 2023. It is now read-only.
Config update for buildkit #442
Assignees
Comments
|
Derek assign: me |
|
Thank you |
|
I've been trying to get the rootless buildkit working on GKE but it seems that Buildkit does not work if you use the Container Optimized OS for the nodes. See this issue. According to a comment from @AkihiroSuda it does work when using Ubuntu nodes and the Should we still do the upgrade for using the rootless mode and warn GKE users to use Ubuntu or should we wait until rootless bulidkit is more stable? According to this doc it's still experimental |
|
I think your suggestion sounds good. In any case the builder could be run in a separate node pool with an Ubuntu machine. |
|
Sounds like we have a way forward? |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Expected Behaviour
It appears that buildkit should be able to run on Kubernetes using both non-root and unprivileged container security. A configuration should be put together for this as soon as possible.
Possible Solution
Update the files in ./yaml/ for the builder pod.
Steps to Reproduce (to test)
Context
Increasing security.
Impact to users
Recommendation to upgrade, a rolling update should be possible.
The text was updated successfully, but these errors were encountered: