|
|
|
|
|
|
by flas9sd
1435 days ago
|
|
|
as is stated initially, that goes back to how bitnami is building its Docker images, basing on a set of debian packages (minideb) - there's also a shell library/framework embedded that does useful things, but that makes you read more code when you go check how the sausage is made. That minideb is the basis for the higher CVE count compared to scratch or alpine images. > it’s a well-kept secret that no one wants to talk about the maintainer side most casual docker image users aren't aware of I'd rephrase, but bitnami at least documents the issue https://github.com/bitnami/minideb#security https://docs.bitnami.com/kubernetes/open-cve-policy/ |
|
|