Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
GCRと脆弱性検査
Search
Sponsored
·
Your Podcast. Everywhere. Effortlessly.
Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
→
youyo
October 15, 2018
Technology
240
0
Share
GCRと脆弱性検査
GCRと脆弱性検査
youyo
October 15, 2018
More Decks by youyo
See All by youyo
家の快適度を計測してみた
youyo
1
230
Get started AWS CDK
youyo
0
150
Tried to create a deployment pipeline of AutoML Vision.
youyo
0
110
API GatewayのWebSocket対応について
youyo
0
930
goodbye-ec2
youyo
0
790
それでも僕はzabbixと生きていく
youyo
1
510
About AWS Lambda and kintone
youyo
1
300
TerraformとWerckerとAWS Organizationsで始めるステージング・開発環境構築 / terraform-wercker-aws-organizations
youyo
1
34k
ServerlessのおさらいとIronFunctionsについて
youyo
0
480
Other Decks in Technology
See All in Technology
GitHub Advanced Security × Defender for Cloudで開発とSecOpsのサイロを超える: コードとクラウドをつなぐ、開発プラットフォームのセキュリティ
yuriemori
1
120
タスク管理も1on1も、もう「管理」じゃない - KiroとBedrock AgentCoreで変わった“判断の仕事”
yusukeshimizu
0
150
脳が溶けた話 / Melted Brain
keisuke69
1
1.1k
Kiro Meetup #7 Kiro アップデート (2025/12/15〜2026/3/20)
katzueno
2
270
Embeddings : Symfony AI en pratique
lyrixx
0
430
OCI技術資料 : ロード・バランサ 概要 - FLB・NLB共通
ocise
4
27k
AI時代のIssue駆動開発のススメ
moongift
PRO
0
320
Blue/Green Deployment を用いた PostgreSQL のメジャーバージョンアップ
kkato1
0
170
スケーリングを封じられたEC2を救いたい
senseofunity129
0
130
MCPで決済に楽にする
mu7889yoon
0
160
遊びで始めたNew Relic MCP、気づいたらChatOpsなオブザーバビリティボットができてました/From New Relic MCP to a ChatOps Observability Bot
aeonpeople
1
130
OPENLOGI Company Profile for engineer
hr01
1
61k
Featured
See All Featured
Making the Leap to Tech Lead
cromwellryan
135
9.8k
AI Search: Implications for SEO and How to Move Forward - #ShenzhenSEOConference
aleyda
1
1.2k
Into the Great Unknown - MozCon
thekraken
40
2.3k
Ten Tips & Tricks for a 🌱 transition
stuffmc
0
94
Large-scale JavaScript Application Architecture
addyosmani
515
110k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
162
16k
Believing is Seeing
oripsolob
1
100
4 Signs Your Business is Dying
shpigford
187
22k
A brief & incomplete history of UX Design for the World Wide Web: 1989–2019
jct
1
330
A Soul's Torment
seathinner
5
2.6k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
26
3.4k
The browser strikes back
jonoalderson
0
860
Transcript
GCRと脆弱性検査
GCR? Google Container Registory Dockerhubみたいなもの 脆弱性検査 Container Registry 脆弱性スキャン まだアルファ版
ubuntu, debian, alpine https://cloud.google.com/container‑registry/docs/vulnerability‑ scanning?authuser=0&hl=ja
FROM debian LABEL maintainer "youyo <
[email protected]
>" RUN apt update -y
RUN apt install apache2 -y EXPOSE 80/TCP ENTRYPOINT ["apachectl","-k","start","-D","FOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:latest . $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:latest
None
FROM alpine LABEL maintainer "youyo <
[email protected]
>" RUN apk add --update
apache2 RUN mkdir /run/apache2 EXPOSE 80/TCP ENTRYPOINT ["httpd", "-DFOREGROUND"] $ docker build -t ¥ asia.gcr.io/any-applications/httpd:alpine alpine/ $ gcloud auth configure-docker $ docker push asia.gcr.io/any-applications/httpd:alpine
None
まとめ コンテナイメージも脆弱性検査をする時代 最適化されたベースイメージを使用するだけで脆弱性を減らせる https://github.com/GoogleContainerTools/distroless たぶんそんなにお金かからないし, とりあえず始めてみよう
youyo
yuriemori
yusukeshimizu
keisuke69
katzueno
lyrixx
ocise
moongift
kkato1
senseofunity129
mu7889yoon
aeonpeople
hr01
cromwellryan
aleyda
thekraken
stuffmc
addyosmani
sstephenson
oripsolob
shpigford
jct
seathinner
eileencodes
jonoalderson
![FROM debian LABEL maintainer "youyo <[email protected]>" RUN apt update -y](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_2.jpg){kind=link}
![FROM alpine LABEL maintainer "youyo <[email protected]>" RUN apk add --update](https://files.speakerdeck.com/presentations/367643268476400e9923efa9a412752d/slide_4.jpg){kind=link}
