mirror of
https://github.com/hadolint/hadolint.git
synced 2025-12-17 03:24:08 +00:00
Page:
DL3005
Pages
DL3000
DL3001
DL3002
DL3003
DL3004
DL3005
DL3006
DL3007
DL3008
DL3009
DL3010
DL3011
DL3012
DL3013
DL3014
DL3015
DL3016
DL3017
DL3018
DL3019
DL3020
DL3021
DL3022
DL3023
DL3024
DL3025
DL3026
DL3027
DL3028
DL3029
DL3030
DL3031
DL3032
DL3033
DL3034
DL3035
DL3036
DL3037
DL3038
DL3039
DL3040
DL3041
DL3042
DL3043
DL3044
DL3045
DL3046
DL3047
DL3048
DL3049
DL3050
DL3051
DL3052
DL3053
DL3054
DL3055
DL3056
DL3057
DL3058
DL3059
DL3060
DL3061
DL3062
DL4000
DL4001
DL4003
DL4004
DL4005
DL4006
Home
SC2046
SC2086
Template
No results
7
DL3005
Jasmine Hegman edited this page 2021-05-10 13:09:28 -07:00
Table of Contents
Do not use apt-get dist-upgrade.
Problematic code:
FROM debian
RUN apt-get update && apt-get dist-upgrade
Correct code:
FROM debian
RUN apt-get update && apt-get upgrade
Rationale:
http://crosbymichael.com/dockerfile-best-practices-take-2.html
Updates will be baked into the base images, so you don't need to runapt-get upgradein your containers. Because of the isolation that happens this can often fail if something is trying to modify init or make device changes inside a container. It also produces inconsistent images because you no longer have one source of truth of how your application should run and what versions of dependencies are included in the image.