Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
GCRと脆弱性検査
Search
youyo
October 15, 2018
Technology
0
210
GCRと脆弱性検査
GCRと脆弱性検査
youyo
October 15, 2018
Tweet
Share
More Decks by youyo
See All by youyo
家の快適度を計測してみた
youyo
1
200
Get started AWS CDK
youyo
0
110
Tried to create a deployment pipeline of AutoML Vision.
youyo
0
79
API GatewayのWebSocket対応について
youyo
0
830
goodbye-ec2
youyo
0
690
それでも僕はzabbixと生きていく
youyo
1
480
About AWS Lambda and kintone
youyo
1
270
TerraformとWerckerとAWS Organizationsで始めるステージング・開発環境構築 / terraform-wercker-aws-organizations
youyo
1
34k
ServerlessのおさらいとIronFunctionsについて
youyo
0
450
Other Decks in Technology
See All in Technology
対話型音声AIアプリケーションの信頼性向上の取り組み
ivry_presentationmaterials
3
1.1k
Introduction to Sansan, inc / Sansan Global Development Center, Inc.
sansan33
PRO
0
2.7k
TLSから見るSREの未来
atpons
2
310
Maintainer Meetupで「生の声」を聞く ~講演だけじゃないKubeCon
logica0419
0
110
Microsoft Defender XDRで疲弊しないためのインシデント対応
sophiakunii
1
320
Talk to Someone At Delta Airlines™️ USA Contact Numbers
travelcarecenter
0
160
[SRE NEXT 2025] すみずみまで暖かく照らすあなたの太陽でありたい
carnappopper
2
470
SRE不在の開発チームが障害対応と 向き合った100日間 / 100 days dealing with issues without SREs
shin1988
2
2.1k
60以上のプロダクトを持つ組織における開発者体験向上への取り組み - チームAPIとBackstageで構築する組織の可視化基盤 - / sre next 2025 Efforts to Improve Developer Experience in an Organization with Over 60 Products
vtryo
3
1.9k
推し書籍📚 / Books and a QA Engineer
ak1210
0
140
LIXIL基幹システム刷新に立ち向かう技術的アプローチについて
tsukuha
1
380
今だから言えるセキュリティLT_Wordpress5.7.2未満を一斉アップデートせよ
cuebic9bic
2
170
Featured
See All Featured
Designing for Performance
lara
610
69k
Music & Morning Musume
bryan
46
6.7k
Connecting the Dots Between Site Speed, User Experience & Your Business [WebExpo 2025]
tammyeverts
8
340
Being A Developer After 40
akosma
90
590k
Raft: Consensus for Rubyists
vanstee
140
7k
Optimizing for Happiness
mojombo
379
70k
Building Flexible Design Systems
yeseniaperezcruz
328
39k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
229
22k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
507
140k
How to train your dragon (web standard)
notwaldorf
96
6.1k
Optimising Largest Contentful Paint
csswizardry
37
3.3k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
248
1.3M
Transcript
GCRと脆弱性検査
GCR? Google Container Registory Dockerhubみたいなもの 脆弱性検査 Container Registry 脆弱性スキャン まだアルファ版
ubuntu, debian, alpine https://cloud.google.com/container‑registry/docs/vulnerability‑ scanning?authuser=0&hl=ja
FROM debian LABEL maintainer "youyo <
[email protected]
>" RUN apt update -y
RUN apt install apache2 -y EXPOSE 80/TCP ENTRYPOINT ["apachectl","-k","start","-D","FOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:latest . $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:latest
None
FROM alpine LABEL maintainer "youyo <
[email protected]
>" RUN apk add --update
apache2 RUN mkdir /run/apache2 EXPOSE 80/TCP ENTRYPOINT ["httpd", "-DFOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:alpine alpine/ $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:alpine
None
まとめ コンテナイメージも脆弱性検査をする時代 最適化されたベースイメージを使用するだけで脆弱性を減らせる https://github.com/GoogleContainerTools/distroless たぶんそんなにお金かからないし, とりあえず始めてみよう
youyo
ivry_presentationmaterials
sansan33
atpons
logica0419
sophiakunii
travelcarecenter
carnappopper
shin1988
vtryo
ak1210
tsukuha
cuebic9bic
lara
bryan
tammyeverts
akosma
vanstee
mojombo
yeseniaperezcruz
danielanewman
chriscoyier
notwaldorf
csswizardry
sugarenia
![FROM debian LABEL maintainer "youyo <[email protected]>" RUN apt update -y](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_2.jpg){kind=link}
![FROM alpine LABEL maintainer "youyo <[email protected]>" RUN apk add --update](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_4.jpg){kind=link}
