-
Story
-
Resolution: Unresolved
-
Major
-
None
-
CentOS Stream 10, rhel-9.6, rhel-10.0
-
Moderate
-
rhel-container-tools
-
13
-
False
-
False
-
-
Yes
-
None
-
Requested
-
None
-
Known Issue
-
-
In Progress
-
Required
-
Done
-
Not Required
-
None
https://reproducible-builds.org/ provide real value for us and customers, helping ensure at least two things:
- Avoiding "change amplification" where e.g. a rebuild triggered because of a change to something like a LABEL in the containerfile doesn't result in a pointless regeneration of the tarball, causing customers to need to redownload it. And in general we need to provide best practices and guidance for our own container builds and for customers to avoid "base image change amplification" where updating the base layer causes the rebuild of the higher layers to result in a new tarball, meaning we push a pointless change to the registry which customer unnecessarily redownloads for the app
- Reproducible builds prove that our binary artifacts came from the sources we claim they did.
In this epic we will do a spike to show that our build of ubi9 is reproducible.
- incorporates
-
RHEL-107041 missing Requires(post) for findutils
-
- In Progress
-
-
RHEL-106672 Backport request for RHEL 9.7 for Reproducible Container Builds
-
- Release Pending
-
- is depended on by
-
RHEL-88521 [RHEL EPIC] Reproducible Container builds - RHEL 9.7
-
- In Progress
-