Skip to content

Commit 057bea2

Browse files
committed
update readme
1 parent 7d1ce2d commit 057bea2

1 file changed

Lines changed: 7 additions & 10 deletions

File tree

python/python-poetry-multi-stage/README.md

Lines changed: 7 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -13,7 +13,7 @@ This example uses a multi-stage image build for a 'Hello World' Python applicati
1313
## Prerequisites
1414

1515
- Docker
16-
- Grype, Trivy, and/or Docker Scout
16+
- Grype, Trivy, and/or any other container image scanner
1717
- [chainctl](https://edu.chainguard.dev/chainguard/chainguard-images/chainguard-registry/authenticating/#authenticating-with-the-chainctl-credential-helper) and `image.pull` access to the Chainguard Private Registry
1818

1919
### Setup
@@ -79,8 +79,6 @@ _Note: All scanners will yield different results. It's recommended to use multip
7979
grype python-poetry-ubi:latest
8080
# and/or
8181
trivy image python-poetry-ubi:latest
82-
# and/or
83-
docker scout cves python-poetry-ubi:latest
8482
```
8583

8684
Holy #$@! We're never going to have any time to develop code if we're stuck justifying vulnerabilities! There has to be a better way?!
@@ -114,7 +112,7 @@ docker pull cgr.dev/chainlabs-roadshows/python:3.11-dev
114112
docker pull cgr.dev/chainlabs-roadshows/python:3.11
115113

116114
# Benchmark
117-
docker run --privileged ghcr.io/chps-dev/chps-scorer:latest cgr.dev/chainlabs-roadshows/python:3.11
115+
docker run --privileged ghcr.io/chps-dev/chps-scorer:latest cgr.dev/chainguard/python:latest
118116

119117
# Build & Test
120118
docker build -t python-poetry-cgr:latest -f ./answers/Dockerfile.chainguard .
@@ -123,7 +121,6 @@ docker run --rm --name poetry -p 8000:8000 python-poetry-cgr:latest
123121
# Scan
124122
grype python-poetry-cgr:latest
125123
trivy image python-poetry-cgr:latest
126-
docker scout cves python-poetry-cgr:latest
127124
```
128125

129126
### 6. Use Custom Assembly (CA) to Reduce Build Complexity [WIP]
@@ -147,8 +144,8 @@ There you have it! You have now migrated your first application to leverage mini
147144

148145
**Next, you can eliminate even more supply chain risk in your applications by utilizing Chainguard Libraries!**
149146

150-
- Blog: [Announcing Chainguard Libraries for Python: Malware-Resistant Dependencies Built Securely from Source](https://www.chainguard.dev/unchained/announcing-chainguard-libraries-for-python-malware-resistant-dependencies-built-securely-from-source)
151-
- Blog: [Guarding the Python Ecosystem Against the Growing Number of Severe Malware Attacks](https://www.chainguard.dev/unchained/guarding-the-python-ecosystem-against-the-growing-number-of-severe-malware-attacks)
152-
- Blog: [Mitigating Malware in the Python Ecosystem with Chainguard Libraries](https://www.chainguard.dev/unchained/mitigating-malware-in-the-python-ecosystem-with-chainguard-libraries)
153-
- Blog: [Malware-Resistant Python without the Guesswork](https://www.chainguard.dev/unchained/malware-resistant-python-without-the-guesswork)
154-
- Docs: [Chainguard Libraries Overview](https://edu.chainguard.dev/chainguard/libraries/overview/)
147+
- [Announcing Chainguard Libraries for Python: Malware-Resistant Dependencies Built Securely from Source](https://www.chainguard.dev/unchained/announcing-chainguard-libraries-for-python-malware-resistant-dependencies-built-securely-from-source)
148+
- [Guarding the Python Ecosystem Against the Growing Number of Severe Malware Attacks](https://www.chainguard.dev/unchained/guarding-the-python-ecosystem-against-the-growing-number-of-severe-malware-attacks)
149+
- [Mitigating Malware in the Python Ecosystem with Chainguard Libraries](https://www.chainguard.dev/unchained/mitigating-malware-in-the-python-ecosystem-with-chainguard-libraries)
150+
- [Malware-Resistant Python without the Guesswork](https://www.chainguard.dev/unchained/malware-resistant-python-without-the-guesswork)
151+
- [Chainguard Libraries Overview](https://edu.chainguard.dev/chainguard/libraries/overview/)

0 commit comments

Comments
 (0)