I agree. The manylinux docker images should be entirely reproducible from source.
Is there a reason the new manylinux does not just extend centos:6? https://github.com/pypa/manylinux/blame/master/docker/Dockerfile-x86_64 https://discuss.python.org/t/manylinux2010-docker-image-now-available/1471 (There are also centos:6 ARM and ARM64 builds: https://hub.docker.com/_/centos ) FWIW, I recently learned about vmware/tern: > Tern is an inspection tool to find the metadata of the packages installed in a container image. https://github.com/vmware/tern On Tue, Feb 25, 2020, 6:09 PM Sylvain Corlay <sylvain.cor...@gmail.com> wrote: > It seems that the base images used for manylinux wheels are not publicly > available. > > For example, https://quay.io/pypa/manylinux2010_centos-6-no-vsyscall gives > a 403 error ("you are not authorized to view this resource"). > > I think that it would make sense for reproducibility purposes to make > these images public. (I have opened an issue about this on the GitHub > repository: https://github.com/pypa/manylinux/issues/481). > > Best, > -- > Distutils-SIG mailing list -- distutils-sig@python.org > To unsubscribe send an email to distutils-sig-le...@python.org > https://mail.python.org/mailman3/lists/distutils-sig.python.org/ > Message archived at > https://mail.python.org/archives/list/distutils-sig@python.org/message/EMU5KOCLFACJ4HIORKBYAEZBBNN5VEPH/ >
-- Distutils-SIG mailing list -- distutils-sig@python.org To unsubscribe send an email to distutils-sig-le...@python.org https://mail.python.org/mailman3/lists/distutils-sig.python.org/ Message archived at https://mail.python.org/archives/list/distutils-sig@python.org/message/PY7GCMCF2MGUFXJPLQITCWLJNJ26JG5G/
