Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Linting Dockerfile with Hadolint warns about package pinning:
This is important for a stable release, but Alpine lacks the prerequisites to achieve this. Packages are not archived in repos but to the latest release. Plus build of
Ofelia
fetches fromalpine-community
repository which has a 6 months out of support policy:The same Alpine Community Repository page links to a Stack Overflow page which states:
Plus pinning to a major.minor.* fashion doesn't either in APK. It would be pointless anyway since the only the latest package is archived in repos. It would only be achieved by enabling older repos (we are at 3.12 atm, think about enabling 3.11 repo to install older stuff on 3.12 - bad practice).
In my working experience, a much more preferable way is to adopt a Debian based image. Advantages are:
This is a PR to achieve having a Debian based
Ofelia
image with the followings:3. Proper .dockerignore file to avoid big contexts sent over Docker Daemonsee commit ed46a0b1.13-buster
imageThe only drawback is a somewhat bigger image:
I hope this PR is welcomed. Please review it - especially the NON ROOT user part. Maybe some more efforts should be done here to guarantee /var/run/docker.sock handling.
Best regards,
Simone