Skip to content
This repository has been archived by the owner on Oct 4, 2023. It is now read-only.

[Feature]: use an hardened Docker image #13

Open
eze-kiel opened this issue Aug 14, 2023 · 0 comments
Open

[Feature]: use an hardened Docker image #13

eze-kiel opened this issue Aug 14, 2023 · 0 comments
Assignees
@eze-kiel
Labels
enhancement New feature or request

Comments

@eze-kiel
Copy link
Contributor

Describe the solution you'd like

Statically compile cfcr and use a scratch base image in the last build stage. This will reduce the attack surface and attacker's capabilities in case of compromise.

Additional context

Having FROM scratch images may make the debugging process more complex (no shell nor privileges...).

Let's discuss about it if you're interested in the the idea @xakraz :0)
@eze-kiel eze-kiel added the enhancement New feature or request label Aug 14, 2023
@eze-kiel eze-kiel self-assigned this Aug 14, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@eze-kiel eze-kiel

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@eze-kiel