Docker Best Practices
From Gcube Wiki
Revision as of 20:48, 16 August 2020 by Manuele.simi (Talk | contribs)
Contents
Base and Composed Images
Never build or compose from a latest
tag.
Dockerfile
Use Metadata Labels
Define the Maintainers
Which Users inside the Image
Define the App Name
Define the WORKDIR
Use COPY instead of ADD
Sensitive Information
Never add passwords, hostnames, externals paths, tokens, and keys into images. Use a .dockerignore
file to avoid a hazardous COPY instruction, which pulls in sensitive information from the build context.
Minimize the Image Size
What to Package
What do we put inside a Docker image.
Back to the Docker guide.