Dockerfile linting and size reduction

blabla1337 / skf-flask

Security Knowledge Framework (SKF) Python Flask / Angular project

https://www.securityknowledgeframework.org

Apache License 2.0

805 stars 308 forks source link

Dockerfile linting and size reduction #741

Closed lfservin closed 3 years ago

lfservin commented 3 years ago

Running semgrep with the docker ruleset throws several issues leading to a big image size. Among the rules complaining are :

recommended packages are being installed
don't delete
using apt vs apt-get
not using --no-cache-dir for pip

Besides from that the base image for the "run" is a full debian distribution. there is a "slim" alternative to it.

Expectation: Reduce image size from currently 2.2GB for the API

github-actions[bot] commented 3 years ago

Thank you for creating an issue ticket for our SKF project, we highly appriciate the feedback so we can improve the project and make it more awesome for everyone! We will shortly come back to you after the evaluation of the issue.