Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-84715

Try out microdnf + install_weak_deps=0 to reduce mongo container deps

    XMLWordPrintableJSON

Details

    • Icon: Improvement Improvement
    • Resolution: Unresolved
    • Icon: Minor - P4 Minor - P4
    • None
    • None
    • None
    • None
    • Build

    Description

      The number of dependencies pulled in by mongo-container frequently trigger security vulnerability scanners. To reduce our exposure, we may be able to leverage the "install_weak_deps" dnf option to avoid having to pull in python as a transitive dependency, ex:

      microdnf install <pkgs> --setopt=install_weak_deps=0

      See https://github.com/mongodb/mongodb-kubernetes-operator/blob/master/scripts/dev/templates/agent/Dockerfile.ubi#L6 for an example

      The references here would need to be updated: https://github.com/10gen/mongo-container/blob/master/7.0/ubi8/Dockerfile.base.j2#L18

      Attachments

        Activity

          People

            Unassigned Unassigned
            zack.winter@mongodb.com Zack Winter
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: