[
https://issues.apache.org/jira/browse/TINKERPOP-2174?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16788029#comment-16788029
]
ASF GitHub Bot commented on TINKERPOP-2174:
-------------------------------------------
robertdale commented on pull request #1080: TINKERPOP-2174 Improve Docker Image
Security
URL: https://github.com/apache/tinkerpop/pull/1080
https://issues.apache.org/jira/browse/TINKERPOP-2174
- use least privileged user:group - `gremlin`
- use the dynamic tag to get the latest image: `openjdk:8-jre-alpine`
also snuck in some non-security ones:
- replaced deprecated `MAINTAINER` with `LABEL maintainer...`
- use `--no-cache` instead of `rm -rf /var/cache/apk/*`
Tested gremlin-console and gremlin-server images.
VOTE +1
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
> Improve Docker Image Security
> -----------------------------
>
> Key: TINKERPOP-2174
> URL: https://issues.apache.org/jira/browse/TINKERPOP-2174
> Project: TinkerPop
> Issue Type: Improvement
> Components: console, server
> Affects Versions: 3.4.0, 3.3.5
> Reporter: Robert Dale
> Assignee: Robert Dale
> Priority: Major
>
> - use least privileged user
> - use the dynamic tag to get the latest image: openjdk:8-jre-alpine
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
