Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

In brief you need to switch the registry from (iirc) docker.io/bitnami to docker.io/bitnamilegacy. Note that as of iirc tomorrow those images will no longer be updated. So the moment there is a high or critical cve you better have a plan to use a new image and likely helm chart or send broadcom cash. The old registry will continue to have a "latest" tag but this should not be used for production.


According to the article the current situation already is a bit of a clusterfuck:

The Photon images provide many other benefits not previously available to users of Debian images, including:

  - Drastically reduced CVE count (e.g., 100+ CVEs to in some cases 0)


Sure. My company is demoing Chainguard which is quite pricy for hardened images. Bitnami premium reportedly goes for $50k to $72k per year: https://devoriales.com/post/402/from-free-to-fee-how-broadco...




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: