A complete solution for open data platforms, enterprise data catalogs, data lakes and data management. Open source, mature, fully-featured and production ready.

DataHub

Hello
We’ve noticed that `curl` in the base image (`openjdk:8-jre-alpine`) contains a vulnerability that we would like to mitigate. However, the newest version of the base image is 2 years old so maybe time to switch out that one?

So I see a couple of options which all are replacing the current base image with one that are regularly updated. Also, all of them use AdoptOpenJDK.

• openjdk:8-jre -&gt; larger image sizes
• Use openjdk:8-jre-slim -&gt; Slim as Alpine. `apt-get` based package manager so it requires a few changes to the dockerfiles.
• adoptopenjdk/openjdk8:alpine-jre -&gt; The offical AdoptOpenJDK provider. Slim and less changes are needed in the dockerfiles since it uses Alpine linux as the old one did.
WDYT?

I just realised that right now it is a mix of jvm providers.

The prod-build uses `openjdk:8` which use AdoptOpenJDK, so the sources are built with that.
The base build uses `openjdk:8-jre-alpine`which is plain old OpenJDK, which the built sources are executed on.

I created <https://github.com/linkedin/datahub/issues/2576|Update base docker image · Issue #2576 · linkedin/datahub (github.com)>