Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-11-13 00:50:38 -05:00
Code Issues Projects Releases Packages Wiki Activity

Use distroless images for JoinService & KMS

Browse source
This commit is contained in:
Nils Hanke 2022-09-09 16:50:31 +02:00 committed by Nils Hanke
parent 0949393dbb
commit c51dec6d00
3 changed files with 6 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

4
kms/Dockerfile
View file

@ -27,7 +27,7 @@ WORKDIR /constellation/kms/cmd
ARG PROJECT_VERSION=0.0.0
RUN CGO_ENABLED=0 go build -o /constellation/build/kmsserver -trimpath -buildvcs=false -ldflags "-s -w -buildid='' -X github.com/edgelesssys/constellation/internal/constants.VersionInfo=${PROJECT_VERSION}"
# We would like to use a scratch image here, but we require CA certificates to be installed for aTLS operations on GCP.
FROM fedora@sha256:486fd5578f93fbc57a519e34ad4b7cac927c3f8a95409baedf0c19e9f287c207 as release
# Use gcr.io/distroless/static here since we need CA certificates for aTLS operations on GCP.
FROM gcr.io/distroless/static@sha256:d673e44035b1435c88f63c4b7066501e21fe5c6b111cd9ada7d9301f780b2416 as release
COPY --from=build /constellation/build/kmsserver /kmsserver
ENTRYPOINT ["/kmsserver"]