Feature Change - Base Containers should allow for container hardening and os patching
Current java service containers are built using a default openjdk:8-jdk-alpine
base image. This should be an image that be maintained and allow for identified security hardening items with the ability to then patch OS in case of found vulnerabilities.
OSDU Security - Container Security - Item E2
Acceptance Criteria
- A design decision should be made on the best way to handle this feature.
- Necessary base container code should be created.
- Pipelines should be leveraged to create base containers for services to use.
Edited by Daniel Scholl