|
|
|
|
|
|
by feinte
2015 days ago
|
|
|
The problem lies in baking entire distribution into an image. Using distroless images or "FROM scratch" with statically compiled app reduces the risks. You still have to watch for your app dependencies updates but that's less work than for an entire distribution. |
|
|
I suppose installing the dependencies ends up being easier if you know they'll end up in, e.g. a ubuntu 18.04 image, hence that's what people do.