|
|
|
|
|
|
by raesene9
910 days ago
|
|
|
For production, I'd recommend not using any image that isn't in the base image set, which are maintained by Docker, and if you're using Docker Hub, you already trust Docker :) There is also "verified publisher" scheme where Docker have done some verification on the publisher, so you may also want to trust those. Outside of that any image can have anything in it.(Docker do sometimes remove actively malicious images if they're notified of them) If you want an image similar to an existing one, you can often just read the dockerfile and create your own. |
|
|