build(docker): use scratch-based static-web-server runtime image #69

Merged

claudiomaradonna merged 1 commit from build/sws-scratch-runtime-image into master

2026-05-31 22:57:43 +02:00

claudiomaradonna commented

2026-05-31 22:57:22 +02:00

Collaborator

Switch the runtime base image from the :2-alpine tag to the
unsuffixed :2 tag, which is the scratch-based static-web-server
variant. It produces a smaller final image and ships no shell,
reducing the runtime attack surface. The builder stage and the
copied _site are unaffected.

Add a comment documenting why the unsuffixed tag is used so the
choice is not mistaken for an oversight.

Switch the runtime base image from the :2-alpine tag to the unsuffixed :2 tag, which is the scratch-based static-web-server variant. It produces a smaller final image and ships no shell, reducing the runtime attack surface. The builder stage and the copied _site are unaffected. Add a comment documenting why the unsuffixed tag is used so the choice is not mistaken for an oversight.

claudiomaradonna added 1 commit

2026-05-31 22:57:23 +02:00

build(docker): use scratch-based static-web-server runtime image 20d078e0f0

Switch the runtime base image from the :2-alpine tag to the
unsuffixed :2 tag, which is the scratch-based static-web-server
variant. It produces a smaller final image and ships no shell,
reducing the runtime attack surface. The builder stage and the
copied _site are unaffected.

Add a comment documenting why the unsuffixed tag is used so the
choice is not mistaken for an oversight.

claudiomaradonna merged commit 20d078e0f0 into master

2026-05-31 22:57:43 +02:00

claudiomaradonna deleted branch build/sws-scratch-runtime-image

2026-05-31 22:57:47 +02:00

No reviewers

No labels

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

unitoo/website!69

No description provided.

Rows
Columns