l3 Build & Containerization

Question 1

Open Container Initiative (OCI)

Answer 1

Contains 2 standards:
Runtime Specification
Image Specification

Question 2

Running OCI containers

Answer 2

Question 3

best practices for building images

Answer 3

Question 4

SBOM

Answer 4

Software bill of materials
* Components in the artifact
* List for licensing and security
* “Supply chain” for software

Syft generates SBOM
Grype for vulnerabilities

Question 5

Multistage Build

Answer 5

discard intermidiate builds
FROM golang:1.18-alpine as builder
…
FROM alpine:latest
…
COPY –from=builder /app/myapp .
…

Question 6

Buildpacks

Answer 6

+:
* Dockerimage without
Dockerfile
* Auto Detect of Frameworks
-:
* New project, bugs occur
* Complicated architecture,
hard to track errors in
framework

Question 7

Monorepo VS Polyrepo

Answer 7

Monorepo:
Entire microservice architecture in one
repository
* Self containing
* Sharing of common dependencies
* Easier, large scale refactorings
Polyrepo:
Each microservice is on one repository
* Share of one microservice to other
architectures
* Scaling of size of repositoriy
* Security / Visibility / Atomicity is more
natural
* Decoupling things that do not belong
together

Question 8

Three Pillars of observability

Answer 8

Question 9

Reproducible builds

Answer 9

Question 10

Release Strategy

Answer 10

Question 11

Why should you use a CI-System for releasing

Answer 11

Automated Status
Credential Handling
Independant Plattform for technical integration
Bus factor