Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Workload]. Reduce the amount of clutter in your image #1717

Open
24 tasks
wvwatson opened this issue Jan 3, 2023 · 2 comments
Open
24 tasks

[Workload]. Reduce the amount of clutter in your image #1717

wvwatson opened this issue Jan 3, 2023 · 2 comments
Labels
workload

Comments

@wvwatson
Copy link
Collaborator

wvwatson commented Jan 3, 2023

Title: [Workload] microservices test: uncluttered_image

Is your workload test idea related to a problem? Please describe.

  • Some images have inappropriate data and binaries installed on them

Describe the solution you'd like

  • inappropriate binaries to search for: e.g. netstat, nmap
  • Size reduction: To reduce the size of your image, install only what is strictly needed inside it. It might be tempting to install extra packages, and then remove them at a later step. However, this approach isn't sufficient. Because each instruction of the Dockerfile creates a layer, removing data from the image in a later step than the step that created it doesn't reduce the size of the overall image (the data is still there, just hidden in a deeper layer). https://cloud.google.com/architecture/best-practices-for-building-containers#reduce_the_amount_of_clutter_in_your_image

Test Category Name

  • Microservices

Documentation tasks:

QA tasks

Dev Review:

  • walk through A/C
  • do you get the expected result?
  • if yes,
    • move to Needs Peer Review column
    • create Pull Request and follow check list
    • Assign 1 or more people for peer review
  • if no, document what additional tasks will be needed

Peer review:

  • walk through A/C
  • do you get the expected result?
  • if yes,
    • move to Reviewer Approved column
    • Approve pull request
  • if no,
    • document what did not go as expected, including error messages and screenshots (if possible)
    • Add comment to pull request
    • request changes to pull request
@HashNuke
Copy link
Collaborator

HashNuke commented Mar 8, 2023
edited
Loading

I just tried dive to identify container image inefficiency across the image layers. This identifies files that are added and removed across layers of a container image. Tried it with the envoy container image.

But the issues page of the project has some hints about not supporting new container formats, project not maintained, etc

@lixuna
Copy link
Collaborator

lixuna commented Feb 21, 2024

@taylor is this issue still relevant for CNTI?

@lixuna lixuna closed this as completed May 9, 2024
@lixuna lixuna reopened this May 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
workload
Projects
CNF Test Suite
Status: To do
CNTI Test Catalog
Status: No status
Milestone
No milestone
Development

No branches or pull requests
4 participants
@taylor @wvwatson @HashNuke @lixuna