Details
-
Improvement
-
Resolution: Unresolved
-
Minor - P4
-
None
-
None
-
None
-
None
-
Build
Description
The number of dependencies pulled in by mongo-container frequently trigger security vulnerability scanners. To reduce our exposure, we may be able to leverage the "install_weak_deps" dnf option to avoid having to pull in python as a transitive dependency, ex:
microdnf install <pkgs> --setopt=install_weak_deps=0
See https://github.com/mongodb/mongodb-kubernetes-operator/blob/master/scripts/dev/templates/agent/Dockerfile.ubi#L6 for an example
The references here would need to be updated: https://github.com/10gen/mongo-container/blob/master/7.0/ubi8/Dockerfile.base.j2#L18
Attachments
Issue Links
- is depended on by
-
SERVER-80835 Investigate unnecessary docker image package dependencies
-
- Backlog
-