publish rpi docker image to docker hub

[mcandre]

Hi,

The Raspberry Pi OS image is hidden behind an email wall. Can we please publish this to Docker Hub, like the other Chainguard images?

https://images.chainguard.dev/rpi

https://hub.docker.com/u/chainguard

This manual image download is difficult to integrate into downstream CI/CD pipelines. It invites attackers to inject malware, since there's no public upstream image registry.

I can add checksum metadata to my downstream artifacts. But there's no way for anyone to verify that, across updates.

I can't ensure that my downstream images receive security updates in a timely, automated fashion, until the image begins continuously pushing updates to a conventional registry.

That would help spreaqd the load onto the Docker Hub CDN. Integrating with Docker Hub's official curated image library would be fantastic!

Alternatively, ghcr.io would suffice.

[mcandre]

And the source code used to generate this image, for auditing purposes.

[mcandre]

https://hub.docker.com/r/n4jm4/raspberry-pi-os

https://github.com/mcandre/raspberry-pi-os

[xnox]

The Raspberry Pi image is meant to be copies onto an SD card to deploy to the raspberry PI as the host OS and boot it.

It is not a container that one can run with docker run.

Can you please explain a bit more what do you plan to do with it? And how do you plan to use it with docker?

[xnox]

Note all Chainguard containers are built for x86_64 and arm64 platforms, and all Chainguard containers can execute on Raspberry PI systems.

[mcandre]

I see.

In any case, the flash image should have open source scripts to generate it. For basic auditing purposes.