Upgrade to Pro — share decks privately, control downloads, hide ads and more …

GCRと脆弱性検査

Sponsored · SiteGround - Reliable hosting with speed, security, and support you can count on.
Avatar for youyo youyo
October 15, 2018
Technology
250
0

 GCRと脆弱性検査

GCRと脆弱性検査

Avatar for youyo

youyo

October 15, 2018

More Decks by youyo

See All by youyo
家の快適度を計測してみた
Avatar for youyo youyo
1
230
Get started AWS CDK
Avatar for youyo youyo
0
160
Tried to create a deployment pipeline of AutoML Vision.
Avatar for youyo youyo
0
120
API GatewayのWebSocket対応について
Avatar for youyo youyo
0
980
goodbye-ec2
Avatar for youyo youyo
0
850
それでも僕はzabbixと生きていく
Avatar for youyo youyo
1
510
About AWS Lambda and kintone
Avatar for youyo youyo
1
310
TerraformとWerckerとAWS Organizationsで始めるステージング・開発環境構築 / terraform-wercker-aws-organizations
Avatar for youyo youyo
1
34k
ServerlessのおさらいとIronFunctionsについて
Avatar for youyo youyo
0
490

Other Decks in Technology

See All in Technology
[モダンアプリ勉強会]今更聞けないGit/GitHub入門
Avatar for つくぼし tsukuboshi
0
180
Oracle AI Database@Google Cloud:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
6
1.5k
BigQuery の Cross-cloud Lakehouse への歩み
Avatar for Tomonori Hayashi / ぴーはや phaya72
2
540
個人の発見を、組織の知恵に 〜生成AI活用を"探索"から"組織の仕組み"へ〜
Avatar for KintoTech_Dev kintotechdev
2
790
AI フレンドリーなエラー監視を TypeScript で実現する
Avatar for Shinobu Hayashi shinyaigeek
2
240
先取りMaven4 ~16年ぶりのメジャーアップデート、その進化とは?~
Avatar for 荻原利雄 ogiwarat
0
140
APIテストとは?
Avatar for 草薙昭彦 nagix
0
170
AI-DLCを活用した高品質・安全なAI駆動開発実践 / AI Driven Development with AI-DLC
Avatar for 吉田真吾 yoshidashingo
0
100
long-running-tasks
Avatar for cipepser cipepser
3
460
JJUG CCC 2026 Spring AI時代の開発こそ標準化を武器に! ― 方式・プロセス・プラットフォームの標準化
Avatar for WatanabeShun s27watanabe
2
680
Oracle AI Database@AWS:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
4
2.8k
AI活用を推進するために ファインディが下した、一つの小さな決断
Avatar for starfish719 starfish719
0
220

Featured

See All Featured
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
Avatar for Rebecca Miller-Webster rmw
35
3.5k
Designing for Timeless Needs
Avatar for Cassini Nazir cassininazir
1
250
The Cost Of JavaScript in 2023
Avatar for Addy Osmani addyosmani
55
10k
Mind Mapping
Avatar for Hélio Medeiros helmedeiros
PRO
1
230
Design in an AI World
Avatar for tapps tapps
1
220
The Anti-SEO Checklist Checklist. Pubcon Cyber Week
Avatar for Ryan Jones ryanjones
0
150
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
Avatar for Joe Casabona jcasabona
34
2.8k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
Avatar for Marc Duiker marcduiker
35
2.5k
Measuring Dark Social's Impact On Conversion and Attribution
Avatar for Stephen Akadiri stephenakadiri
2
210
We Are The Robots
Avatar for Honza Javorek honzajavorek
0
240
Building the Perfect Custom Keyboard
Avatar for Naoto Takai takai
2
780
Thoughts on Productivity
Avatar for Jon Yablonski jonyablonski
76
5.2k

Transcript

  1. GCRと脆弱性検査

  2. GCR? Google Container Registory Dockerhubみたいなもの 脆弱性検査 Container Registry 脆弱性スキャン まだアルファ版

    ubuntu, debian, alpine https://cloud.google.com/container‑registry/docs/vulnerability‑ scanning?authuser=0&hl=ja

  3. FROM debian LABEL maintainer "youyo <[email protected]>" RUN apt update -y

    RUN apt install apache2 -y EXPOSE 80/TCP ENTRYPOINT ["apachectl","-k","start","-D","FOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:latest . $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:latest
  4. None

  5. FROM alpine LABEL maintainer "youyo <[email protected]>" RUN apk add --update

    apache2 RUN mkdir /run/apache2 EXPOSE 80/TCP ENTRYPOINT ["httpd", "-DFOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:alpine alpine/ $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:alpine
  6. None

  7. まとめ コンテナイメージも脆弱性検査をする時代 最適化されたベースイメージを使用するだけで脆弱性を減らせる https://github.com/GoogleContainerTools/distroless たぶんそんなにお金かからないし, とりあえず始めてみよう