#starlark #bazel #docker
Using "Distroless" container images is beneficial because they are very small and only include your application and its necessary dependencies, without extra programs like package managers or shells. This makes the images lighter (some are as small as 2 MiB) and more secure, as there is less to scan for vulnerabilities. It also simplifies maintaining and updating your containers since you only need to focus on what's essential for your app. Additionally, these images are signed for verification, ensuring their integrity. Overall, this approach improves security, reduces size, and simplifies management.
https://github.com/GoogleContainerTools/distroless
Using "Distroless" container images is beneficial because they are very small and only include your application and its necessary dependencies, without extra programs like package managers or shells. This makes the images lighter (some are as small as 2 MiB) and more secure, as there is less to scan for vulnerabilities. It also simplifies maintaining and updating your containers since you only need to focus on what's essential for your app. Additionally, these images are signed for verification, ensuring their integrity. Overall, this approach improves security, reduces size, and simplifies management.
https://github.com/GoogleContainerTools/distroless
GitHub
GitHub - GoogleContainerTools/distroless: 🥑 Language focused docker images, minus the operating system.
🥑 Language focused docker images, minus the operating system. - GitHub - GoogleContainerTools/distroless: 🥑 Language focused docker images, minus the operating system.