Skip to main content

Containers

The Analytical Platform team offers a managed pipeline for building, scanning and pushing containers to a registry. This is done via GitHub Actions and is available to all teams. This is managed in Terraform.

Images are scanned for vulnerabilities using Trivy, currently with a default severity of CRITICAL

Dockerfiles are linted by the Super Linter with Hadolint

Creating a new container image repo

  1. To create a new container image repo, clone the data-platform-github-access repository.

  2. There are two files for creating repositories, one for Analytical Platform and another for Data Platform. See example below for creating an Analytical Platform container repo.

    "analytical-platform-<container-name>" = {
      name                = "analytical-platform-<container-name>"
      description         = "Analytical Platform <container-name>"
      use_template        = true
      template_repository = "analytical-platform-image-build-template"
      access = {
        admins = [module.analytical_platform_team.id]
      }
    }

  3. As shown in example above, use the template_repository = "analytical-platform-image-build-template" argument. The template equips you with the default initial files for building a container used in Analytical Platform. The template repo can be viewed here.

  4. Update the Dockerfile, Makefile, container-structure-test.yml and any other files as required in your new container repo.

  5. There is no longer a requirement for config.json or CHANGELOG.md files.

This page was last reviewed on 23 April 2024. It needs to be reviewed again on 23 October 2024 by the page owner #data-platform-notifications .
This page was set to be reviewed before 23 October 2024 by the page owner #data-platform-notifications. This might mean the content is out of date.