Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
GCRと脆弱性検査
Search
youyo
October 15, 2018
Technology
0
230
GCRと脆弱性検査
GCRと脆弱性検査
youyo
October 15, 2018
Tweet
Share
More Decks by youyo
See All by youyo
家の快適度を計測してみた
youyo
1
220
Get started AWS CDK
youyo
0
140
Tried to create a deployment pipeline of AutoML Vision.
youyo
0
99
API GatewayのWebSocket対応について
youyo
0
890
goodbye-ec2
youyo
0
760
それでも僕はzabbixと生きていく
youyo
1
500
About AWS Lambda and kintone
youyo
1
290
TerraformとWerckerとAWS Organizationsで始めるステージング・開発環境構築 / terraform-wercker-aws-organizations
youyo
1
34k
ServerlessのおさらいとIronFunctionsについて
youyo
0
470
Other Decks in Technology
See All in Technology
2025年 山梨の技術コミュニティを振り返る
yuukis
0
140
ESXi のAIOps だ!2025冬
unnowataru
0
470
[PR] はじめてのデジタルアイデンティティという本を書きました
ritou
0
740
小さく、早く、可能性を多産する。生成AIプロジェクト / prAIrie-dog
visional_engineering_and_design
0
320
1万人を変え日本を変える!!多層構造型ふりかえりの大規模組織変革 / 20260108 Kazuki Mori
shift_evolve
PRO
5
630
RALGO : AIを組織に組み込む方法 -アルゴリズム中心組織設計- #RSGT2026 / RALGO: How to Integrate AI into an Organization – Algorithm-Centric Organizational Design
kyonmm
PRO
3
500
AI との良い付き合い方を僕らは誰も知らない (WSS 2026 静岡版)
asei
1
200
202512_AIoT.pdf
iotcomjpadmin
0
180
AIエージェントを5分で一気におさらい! AIエージェント「構築」元年に備えよう
yakumo
1
130
Claude Codeを使った情報整理術
knishioka
18
11k
Oracle Database@AWS:サービス概要のご紹介
oracle4engineer
PRO
2
660
『君の名は』と聞く君の名は。 / Your name, you who asks for mine.
nttcom
1
140
Featured
See All Featured
KATA
mclloyd
PRO
33
15k
Into the Great Unknown - MozCon
thekraken
40
2.2k
Large-scale JavaScript Application Architecture
addyosmani
515
110k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
3.3k
Why Our Code Smells
bkeepers
PRO
340
58k
Conquering PDFs: document understanding beyond plain text
inesmontani
PRO
4
2.2k
Technical Leadership for Architectural Decision Making
baasie
0
200
Rails Girls Zürich Keynote
gr2m
95
14k
BBQ
matthewcrist
89
9.9k
The Organizational Zoo: Understanding Human Behavior Agility Through Metaphoric Constructive Conversations (based on the works of Arthur Shelley, Ph.D)
kimpetersen
PRO
0
210
Learning to Love Humans: Emotional Interface Design
aarron
274
41k
Agile Actions for Facilitating Distributed Teams - ADO2019
mkilby
0
100
Transcript
GCRと脆弱性検査
GCR? Google Container Registory Dockerhubみたいなもの 脆弱性検査 Container Registry 脆弱性スキャン まだアルファ版
ubuntu, debian, alpine https://cloud.google.com/container‑registry/docs/vulnerability‑ scanning?authuser=0&hl=ja
FROM debian LABEL maintainer "youyo <
[email protected]
>" RUN apt update -y
RUN apt install apache2 -y EXPOSE 80/TCP ENTRYPOINT ["apachectl","-k","start","-D","FOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:latest . $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:latest
None
FROM alpine LABEL maintainer "youyo <
[email protected]
>" RUN apk add --update
apache2 RUN mkdir /run/apache2 EXPOSE 80/TCP ENTRYPOINT ["httpd", "-DFOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:alpine alpine/ $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:alpine
None
まとめ コンテナイメージも脆弱性検査をする時代 最適化されたベースイメージを使用するだけで脆弱性を減らせる https://github.com/GoogleContainerTools/distroless たぶんそんなにお金かからないし, とりあえず始めてみよう
youyo
yuukis
unnowataru
ritou
visional_engineering_and_design
shift_evolve
kyonmm
asei
iotcomjpadmin
yakumo
knishioka
oracle4engineer
nttcom
mclloyd
thekraken
addyosmani
eileencodes
bkeepers
inesmontani
baasie
gr2m
matthewcrist
kimpetersen
aarron
mkilby
![FROM debian LABEL maintainer "youyo <[email protected]>" RUN apt update -y](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_2.jpg){kind=link}
![FROM alpine LABEL maintainer "youyo <[email protected]>" RUN apk add --update](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_4.jpg){kind=link}
