syndesisio / syndesis

This project is archived. A flexible, customizable, open source platform that provides core integration capabilities as a service.

https://syndesis.io/

Apache License 2.0

598 stars 202 forks source link

Base image security issues #7492

Open ryckowski opened 4 years ago

ryckowski commented 4 years ago

This is a...


[ ] Feature request
[ ] Regression (a behavior that used to work and stopped working in a new release)
[x] Bug report  
[ ] Documentation issue or request

Description

I've uploaded images to quay.io. Its security scanner display many security warnings. Here is one for syndesis-meta image

zregvart commented 4 years ago

I think we should use a base image with smaller footprint. I'm subjective on the matter perhaps ubi-minimal?

stale[bot] commented 4 years ago

This issue has been automatically marked as stale because it has not had any activity since 90 days. It will be closed if no further activity occurs within 7 days. Thank you for your contributions!

zregvart commented 2 years ago

9804 introduces using ubi8/openjdk-8 for Java applications and built integrations.