Docker PHP-FPM & Nginx base on Alpine Linux

Simple docker image for Laravel development

Why should use this image

• Built on the lightweight and secure Alpine Linux distribution
• Multi-platform, supporting AMD4, ARMv6, ARMv7, ARM64
• Use runit instead of supervisor
• Tiny Docker image size

PHP version support

• PHP 7.2
• PHP 7.4
• PHP 8.0
• PHP 8.1 (recommend usage)
• PHP 8.2 (recommend usage)
• PHP 8.3
• PHP 8.4

How to use

• Build image

VERSION=7.2 make build # Build image with php 7.2
VERSION=7.4 make build # Build image with php 7.4
VERSION=8.0 make build # Build image with php 8.0
VERSION=8.1 make build # Build image with php 8.1
VERSION=8.2 make build # Build image with php 8.2
VERSION=8.3 make build # Build image with php 8.3
VERSION=8.4 make build # Build image with php 8.4

• How to customize image name

VERSION=7.2 IMAGE=archielite/laravel:php make build # Build image with php 7.2
VERSION=7.4 IMAGE=archielite/laravel:php make build # Build image with php 7.4
VERSION=8.0 IMAGE=archielite/laravel:php make build # Build image with php 8.0
VERSION=8.1 IMAGE=archielite/laravel:php make build # Build image with php 8.1
VERSION=8.2 IMAGE=archielite/laravel:php make build # Build image with php 8.2
VERSION=8.3 IMAGE=archielite/laravel:php make build # Build image with php 8.3

• Test image by PHP version

VERSION=8.4 make test
VERSION=8.3 make test
VERSION=8.2 make test
VERSION=8.1 make test
VERSION=8.0 make test
VERSION=7.4 make test
VERSION=7.2 make test

• Test all images

make test-all

• Mount your code to be served with container

docker run --name=app -v /path/to/project:/var/www/html -p 80:80 pnlinh/laravel:php8.1

• Using docker-compose

services:
  app:
    image: pnlinh/laravel:php8.1
    hostname: laravel-app
    container_name: laravel-app
    ports:
      - "80:80"
    volumes:
      - .:/var/www/html
    networks:
      - localnet
networks:
  localnet:
    driver: "bridge"

• Browser to: http://localhost

Security scanner

• PHP 8.4

trivy image pnlinh/laravel:php8.4
2025-08-13T14:26:29+07:00	INFO	[vuln] Vulnerability scanning is enabled
2025-08-13T14:26:29+07:00	INFO	[secret] Secret scanning is enabled
2025-08-13T14:26:29+07:00	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2025-08-13T14:26:29+07:00	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.58/docs/scanner/secret#recommendation for faster secret detection
2025-08-13T14:26:32+07:00	INFO	Detected OS	family="alpine" version="3.21.4"
2025-08-13T14:26:32+07:00	WARN	This OS version is not on the EOL list	family="alpine" version="3.21"
2025-08-13T14:26:32+07:00	INFO	[alpine] Detecting vulnerabilities...	os_version="3.21" repository="3.21" pkg_num=96
2025-08-13T14:26:32+07:00	INFO	Number of language-specific files	num=0

pnlinh/laravel:php8.4 (alpine 3.21.4)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

• PHP 8.3

trivy image pnlinh/laravel:php8.3
2025-08-13T14:42:08+07:00	INFO	[vuln] Vulnerability scanning is enabled
2025-08-13T14:42:08+07:00	INFO	[secret] Secret scanning is enabled
2025-08-13T14:42:08+07:00	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2025-08-13T14:42:08+07:00	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.58/docs/scanner/secret#recommendation for faster secret detection
2025-08-13T14:42:08+07:00	INFO	Detected OS	family="alpine" version="3.20.7"
2025-08-13T14:42:08+07:00	INFO	[alpine] Detecting vulnerabilities...	os_version="3.20" repository="3.20" pkg_num=96
2025-08-13T14:42:08+07:00	INFO	Number of language-specific files	num=0

pnlinh/laravel:php8.3 (alpine 3.20.7)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

• PHP 8.2

trivy image pnlinh/laravel:php8.2
2025-08-13T14:41:33+07:00	INFO	[vuln] Vulnerability scanning is enabled
2025-08-13T14:41:33+07:00	INFO	[secret] Secret scanning is enabled
2025-08-13T14:41:33+07:00	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2025-08-13T14:41:33+07:00	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.58/docs/scanner/secret#recommendation for faster secret detection
2025-08-13T14:41:33+07:00	INFO	Detected OS	family="alpine" version="3.20.7"
2025-08-13T14:41:33+07:00	INFO	[alpine] Detecting vulnerabilities...	os_version="3.20" repository="3.20" pkg_num=96
2025-08-13T14:41:33+07:00	INFO	Number of language-specific files	num=0

pnlinh/laravel:php8.2 (alpine 3.20.7)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

• PHP 8.1

trivy image pnlinh/laravel:php8.1
2025-08-13T14:40:56+07:00	INFO	[vuln] Vulnerability scanning is enabled
2025-08-13T14:40:56+07:00	INFO	[secret] Secret scanning is enabled
2025-08-13T14:40:56+07:00	INFO	[secret] If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2025-08-13T14:40:56+07:00	INFO	[secret] Please see also https://aquasecurity.github.io/trivy/v0.58/docs/scanner/secret#recommendation for faster secret detection
2025-08-13T14:40:58+07:00	INFO	Detected OS	family="alpine" version="3.19.8"
2025-08-13T14:40:58+07:00	INFO	[alpine] Detecting vulnerabilities...	os_version="3.19" repository="3.19" pkg_num=97
2025-08-13T14:40:58+07:00	INFO	Number of language-specific files	num=0

pnlinh/laravel:php8.1 (alpine 3.19.8)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

• PHP 7.4

trivy image pnlinh/laravel:php7.4
2023-10-10T15:10:18.620+0700	INFO	Vulnerability scanning is enabled
2023-10-10T15:10:18.620+0700	INFO	Secret scanning is enabled
2023-10-10T15:10:18.620+0700	INFO	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-10-10T15:10:18.620+0700	INFO	Please see also https://aquasecurity.github.io/trivy/v0.45/docs/scanner/secret/#recommendation for faster secret detection
2023-10-10T15:10:40.824+0700	INFO	Detected OS: alpine
2023-10-10T15:10:40.824+0700	INFO	Detecting Alpine vulnerabilities...
2023-10-10T15:10:40.842+0700	INFO	Number of language-specific files: 0

pnlinh/laravel:php7.4 (alpine 3.15.10)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

• PHP 7.2

trivy image pnlinh/laravel:php7.2
2023-10-10T15:11:17.417+0700	INFO	Vulnerability scanning is enabled
2023-10-10T15:11:17.417+0700	INFO	Secret scanning is enabled
2023-10-10T15:11:17.417+0700	INFO	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2023-10-10T15:11:17.417+0700	INFO	Please see also https://aquasecurity.github.io/trivy/v0.45/docs/scanner/secret/#recommendation for faster secret detection
2023-10-10T15:11:33.151+0700	INFO	Detected OS: alpine
2023-10-10T15:11:33.151+0700	INFO	Detecting Alpine vulnerabilities...
2023-10-10T15:11:33.161+0700	INFO	Number of language-specific files: 0
2023-10-10T15:11:33.161+0700	WARN	This OS version is no longer supported by the distribution: alpine 3.8.5
2023-10-10T15:11:33.161+0700	WARN	The vulnerability detection may be insufficient because security updates are not provided

pnlinh/laravel:php7.2 (alpine 3.8.5)

Total: 0 (UNKNOWN: 0, LOW: 0, MEDIUM: 0, HIGH: 0, CRITICAL: 0)

Add Xdebug

• See docs/xdebug-support.md

Add SSL in local

• See docs/enable-https.md

Useful images

• Magento: https://github.com/pnlinh/docker-php/tree/feature/magento
• Symfony: https://github.com/pnlinh/docker-php/tree/feature/symfony
• CodeIgniter: https://github.com/pnlinh/docker-php/tree/feature/codeigniter

References

• https://github.com/TrafeX/docker-php-nginx
• https://bolshov.online/docker/2020/11/18/runit-vs-supervisor
• https://stackoverflow.com/questions/67231714/how-to-add-trusted-root-ca-to-docker-alpine/67232164#67232164