Johnathan,

Thanks for the reply. I appreciate where you’re coming from on keeping prod as simple and stable as possible, I wasn’t trying to kick off a debate. I asked because I genuinely wanted to understand your perspective.

I’m with you on “no compilers on exposed prod boxes.” Where containers have worked well for us is leaning on them in the build pipeline, then keeping the production image as minimal as we can: just the app (often just a binary) and whatever it needs to execute. Sometimes that’s even FROM scratch, or something tiny like Alpine, rather than starting from a full Ubuntu base and carrying around things we don’t need.

That said, you’re right that containers are another layer to operate, and it’s worth treating that as real complexity.

In this case, it looks like Chris already has a working example in the repo I cloned it yesterday to build one myself and found it there. One thing that stood out is the base image/deps.

For reference:
https://hub.docker.com/layers/library/php/8.2-apache/images/sha256-89ad17cca246e8a6ce742b5b89ce65b34ce6223204a282e45f72b4f758ff6401

It looks like some dependencies are outdated/vulnerable, so my inclination is to bump to the latest viable base and see what breaks, then work forward from there.

Thanks,
Steve Gilmore

 



CONFIDENTIALITY NOTICE: This email and any attachments are for the sole use of the intended recipient(s) and contain information that may be Garmin confidential and/or Garmin legally privileged. If you have received this email in error, please notify the sender by reply email and delete the message. Any disclosure, copying, distribution or use of this communication (including attachments) by someone other than the intended recipient is prohibited. Thank you.