search

OpenSCAP / openscap-daemon

Manages continuous scans of your infrastructure
https://www.open-scap.org/tools/openscap-daemon
GNU Lesser General Public License v2.1
106 stars 32 forks source link

How will we update SPC images on Docker hub? #69

Closed jan-cerny closed 8 years ago

jan-cerny commented 8 years ago

Currently, we have on our account on Docker hub two images of super privileged containers. One of them is based on Fedora 23, second ins based on Fedora 22. See https://hub.docker.com/r/openscap/

I would like to ask all of you what are your opinions: How often we will update these images? Should they be updated each time after openscap-daemon is updated in Fedora? Or openscap itself? Also when our Dockerfiles change in upstream? Will we do it manually or should a script or a Jenkins job be created to automate the task?

Thank you.

mpreisler commented 8 years ago

As often as is necessary.

Each time daemon is updated. Each time openscap is updated and the update substantially changes behavior of the daemon.

Yes, when we change Dockerfiles and decide that it makes sense to update the images.

Will we do it manually or should a script or a Jenkins job be created to automate the task?

Jenkins job would be great. Any input appreciated.

jan-cerny commented 8 years ago

@mpreisler Thank you very much for answer. It makes sense to me.

isimluk commented 8 years ago

What if there is an vulnerability in base image?

Perhaps, we should leave this open until we figure this out.