Upgrade to Pro — share decks privately, control downloads, hide ads and more …

GCRと脆弱性検査

Avatar for youyo youyo
October 15, 2018
Technology
240
0

 GCRと脆弱性検査

GCRと脆弱性検査

Avatar for youyo

youyo

October 15, 2018

More Decks by youyo

See All by youyo
家の快適度を計測してみた
Avatar for youyo youyo
1
230
Get started AWS CDK
Avatar for youyo youyo
0
150
Tried to create a deployment pipeline of AutoML Vision.
Avatar for youyo youyo
0
110
API GatewayのWebSocket対応について
Avatar for youyo youyo
0
950
goodbye-ec2
Avatar for youyo youyo
0
820
それでも僕はzabbixと生きていく
Avatar for youyo youyo
1
510
About AWS Lambda and kintone
Avatar for youyo youyo
1
300
TerraformとWerckerとAWS Organizationsで始めるステージング・開発環境構築 / terraform-wercker-aws-organizations
Avatar for youyo youyo
1
34k
ServerlessのおさらいとIronFunctionsについて
Avatar for youyo youyo
0
490

Other Decks in Technology

See All in Technology
Do Vibe Coding ao LLM em Produção para Busca Agêntica - TDC 2026 - Summit IA - São Paulo
Avatar for Jessica Pauli de C Bonson jpbonson
3
140
「SaaSの次の時代」に重要性を増すステークホルダーマネジメントの要諦 ~解像度を圧倒的に高めPdMの価値を最大化させる方法~
Avatar for KAKEHASHI kakehashi
PRO
3
1.6k
AI: Making Admin and Users, Lives Better
Avatar for Keith Brooks kbmsg
0
110
AgentCore×VPCでの設計パターンn選と勘所
Avatar for Har1101 har1101
3
290
Route 53 Global Resolver で高額課金発生!
Avatar for otanikohei otanikohei2023
0
110
AI駆動1on1〜AIに自分を育ててもらう〜
Avatar for Yoshiaki Yasuda yoshiakiyasuda
0
130
エージェントスキルを作って自分のインプットに役立てよう
Avatar for Yuta Matsumura tsubakimoto_s
0
410
[OpsJAWS 40]リリースしたら終わり、じゃなかった。セキュリティ空白期間をAWS Security Agentで埋める
Avatar for sh_fk2 sh_fk2
3
240
AIを共同作業者にして書籍を執筆する方法 / How to Write a Book with AI as a Co-Creator
Avatar for ama-ch ama_ch
2
130
AI バイブコーティングでキーボード不要?!
Avatar for Sam Akada samakada
0
590
サイボウズ 開発本部採用ピッチ / Cybozu Engineer Recruit
Avatar for Cybozu cybozuinsideout
PRO
10
78k
20260428_Product Management Summit_Loglass_JoeHirose
Avatar for 広瀬丈 loglassjoe
2
2.7k

Featured

See All Featured
Code Review Best Practice
Avatar for Trisha Gee trishagee
74
20k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
Avatar for Aki / @LoveIdahoBurger aki_iinuma
128
55k
The #1 spot is gone: here's how to win anyway
Avatar for Tamara Novitovic tamaranovitovic
2
1k
KATA
Avatar for Megan Lloyd mclloyd
PRO
35
15k
GraphQLとの向き合い方2022年版
Avatar for Yosuke Kurami quramy
50
15k
GitHub's CSS Performance
Avatar for Jon Rohan jonrohan
1032
470k
Abbi's Birthday
Avatar for Violet Bock coloredviolet
2
7.2k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
Avatar for Eileen M. Uchitelle eileencodes
27
3.4k
First, design no harm
Avatar for Per Axbom axbom
PRO
2
1.2k
What does AI have to do with Human Rights?
Avatar for Per Axbom axbom
PRO
1
2.1k
Producing Creativity
Avatar for Steve Smith orderedlist
PRO
348
40k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
31
5.9k

Transcript

  1. GCRと脆弱性検査

  2. GCR? Google Container Registory Dockerhubみたいなもの 脆弱性検査 Container Registry 脆弱性スキャン まだアルファ版

    ubuntu, debian, alpine https://cloud.google.com/container‑registry/docs/vulnerability‑ scanning?authuser=0&hl=ja

  3. FROM debian LABEL maintainer "youyo <[email protected]>" RUN apt update -y

    RUN apt install apache2 -y EXPOSE 80/TCP ENTRYPOINT ["apachectl","-k","start","-D","FOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:latest . $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:latest
  4. None

  5. FROM alpine LABEL maintainer "youyo <[email protected]>" RUN apk add --update

    apache2 RUN mkdir /run/apache2 EXPOSE 80/TCP ENTRYPOINT ["httpd", "-DFOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:alpine alpine/ $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:alpine
  6. None

  7. まとめ コンテナイメージも脆弱性検査をする時代 最適化されたベースイメージを使用するだけで脆弱性を減らせる https://github.com/GoogleContainerTools/distroless たぶんそんなにお金かからないし, とりあえず始めてみよう