You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Readme says that this is an archived project. Could this be updated to say why or at least direct people as to what they should be doing instead of using FROM gcr.io/google-appengine/tomcat:8 in their Dockerfile?
As far as I can tell from looking at docs (I just wrote Docks, thanks to hands reprogrammed to type "Docker") for App Engine Standard and Flexible, there's no deprecation, yet the Tomcat image is now quite outdated.
Thanks.
(edit) Additionally, the out of the box experience of adopting AppEngine is that numerous vulnerabilities show up in the GCR scan. Those don't currently relate to Tomcat because the analysis is limited to the OS at the moment. However, lowering the attack surface of the breadth of GAE would be helpful, and a base OS refresh would also eliminate the scan alerts. (/edit)
Hi (I'll take a guess at Mike),
Readme says that this is an archived project. Could this be updated to say why or at least direct people as to what they should be doing instead of using FROM gcr.io/google-appengine/tomcat:8 in their Dockerfile?
As far as I can tell from looking at docs (I just wrote Docks, thanks to hands reprogrammed to type "Docker") for App Engine Standard and Flexible, there's no deprecation, yet the Tomcat image is now quite outdated.
Thanks.
(edit) Additionally, the out of the box experience of adopting AppEngine is that numerous vulnerabilities show up in the GCR scan. Those don't currently relate to Tomcat because the analysis is limited to the OS at the moment. However, lowering the attack surface of the breadth of GAE would be helpful, and a base OS refresh would also eliminate the scan alerts. (/edit)