Align upstream alpine images #1324
Comments
|
I noticed it today writing documentation. |
|
In addition - alpine-based solr images are no longer being provided in the solr namespace on dockerhub (as per docker-solr/docker-solr#213) https://github.com/wodby/base-solr could be an alternative - the decision whether to align base images or base off official (debian-based) images is more important. |
tobybellwood
moved this from Lagoon 1.4.0 (Late Feb 2020)
to Lagoon 1.3.0 (Mid-Feb 2020)
in Lagoon Roadmap (Indicative)
We should use official Solr Slim images |
|
@vincenzodnp |
|
I've looked into this a bit - as openjdk (which solr is built on) no longer provides official alpine images, we could either build it ourselves (😱) or use the official Debian (Buster) slim images (🤔) Inheritance: |
|
@Schnitzel @tobybellwood Sorl 7.7.1 is the latest with alpine image (See the PR #1731) |
Schnitzel
moved this from Lagoon 1.3.0 (Mid-End Feb 2020)
to Lagoon 1.4.0 (March 2020)
in Lagoon Roadmap (Indicative)
tobybellwood
moved this from Lagoon 1.4.0 (April 2020)
to Done
in Lagoon Roadmap (Indicative)
|
closing, as mostly done, and the rest under control |
Currently, there are different versions of the alpine upstream images in use across the various amazeeio images:
commons uses alpine (3.10 currently)
mariadb uses alpine:3.8
varnish uses alpine:3.7
php uses phpXX-fpm-alpine (3.10 currently)
nginx uses openresty/openresty:alpine (3.9 currently)
node uses node:XX-alpine (3.9 currently)
python uses python:XX-alpine (3.10 currently)
This could lead to potential confusion about what images may be susceptible to vulnerabilities and could benefit from being better aligned.
Where we can control and align the versions, we should - certainly updating the ones we've got set at early versions (unless there's a specific reason?)
The text was updated successfully, but these errors were encountered: