►
Description
Secure Group discussing on this issue: https://gitlab.com/gitlab-org/gitlab-ee/issues/10479
A
It's
recording
so
sorry,
we
skipped
the
first
15
minutes,
because
that
was
the
perfect
timing
for
a
ton
and
myself
to
recap
on
this
topic
and
see
what
was
the
original
problem.
What
could
we
solve
last
week
and
where
we
stand
it
can
go
further
than
that
and
the
question
from
Todd
was
actually
related
to
that.
Can
we
go
a
bit
further
than
that
without
asking
the
users
to
provide
the
information
or
to
provide
a
virtual
image?
A
So
my
answer-
quick
answer
is
not
at
the
moment
because
for
one
reason
we
don't
know
in
the
pipeline.
What
is
the
job
that
is
going
to
be
the
one
for
building
the
project,
so
we
are
missing
one
of
the
piece
of
the
of
the
big
puzzle,
the
bigger
puzzle,
to
go
one
step
further.
We
need
to
identify
one
job,
one
specific
job
that
could
be
reused
and
we
don't
have
that
information
that
we're
required
to
modify
the
CI
configuration
and
all
that
kind
of
things.
A
A
We
need
a
way
to
identify
it,
and
so
we
also
talked
about
maintenance
and
actually
this
new
version
using
the
the
user
image
would
not
require
some
maintenance
on
our
side,
a
partial,
providing
packages
or
tools.
But
that's
all
we
don't
need
to
provide
packages
for
all
the
architectures
or
whatever,
even
if
we
have
to
do
that.
A
A
And
so
at
that
point
I
guess
we
need
to
figure
out
what
would
be
the
next
steps.
That's
what
I
added
in
the
dark
in
a
not
in
the
dark
in
down
in
the
issue,
and
so
I
asked
a
Fabian
casserole,
which
is
one
of
our
staff,
diverse
staff
engineers
arena
in
the
team.
To
take
a
look,
he
was
pleased
with
the
solution.
A
I
would
be
pleased
to
have
someone
else
with
the
technical
background,
taking
a
look
just
to
make
sure
that
I
didn't
miss
anything
I,
don't
see
any
any
blind
spots
in
this
proposal,
but
we
never
know
before
rushing
into
you
know
saying
into
customers.
We
have
a
solution,
it's
going
to
work.
That
could
be
the
worst
scenario
either.
A
We
probably
the
next
step
for
me,
would
be
for
which
we
have
appeals,
adding
a
kind
of
prototype
to
demonstrate
that
it's
working
out
of
the
box.
It
can
solve
one
of
the
real-world
problems
that
we
had
out
there.
So
we
need
to
identify
also
one
of
the
real-world
problems
that
here
in
front
in
the
test
projects.
So
far,
it
was
working
out
of
the
box
because
that
were
just
too
simple.
So
if
you
find
something
that
would
be
a
bit
more
complex
than
that.
A
A
So
for
that,
my
recommendation
was
to
use
some
system
packages
instead
of
something
based
on
curl,
for
example,
that
we
knew
would
download,
especially
because
most
of
the
the
darker
images
out
there
that
have
curl
installed
by
default,
so
that
could
create
on
extra
step
for
the
users
having
some
system
packages
would
work,
but
most
of
the
the
images
outside
our
based
on
Debian
or
Alpine,
so
the
MVC
for
me
would
be
with
support
or
images
based
on
Debian,
first
and
second
iteration.
We
also
have
the
packages.
A
If
you
use
Alpine,
we
have
the
packages
for
that.
So
we
can
split
baton
in
two
iterations,
because
we
try
to
have
really
the
smaller
change
possible
in
each
iteration,
so
that
that
would
be
that
if
we
have
that
we
can
have
something
working,
wait,
wait
we
can
have
a
PC
as
well
and
we
can
ask
users,
especially
your
customers.
Could
you
try
this
solution
with
your
specific
environments?
A
This
meeting
is
compelling
that
license
management
is
failing
after
a
long
time,
processing
it's
failing
for
this
product,
so
he
decided
to
use
something
else
which
is
not
really
far
from
what
we
envision
and
now
it's
worth
it
so
becoming.
We
will
have
to
update
a
really
I
guess
license
management
to
support
this
kind
of
scenario,
and
the
final
image
would
be
a
lot
more
lighter
than
that
than
today
I
the
guest.
Thank
thanks
for
joining.
A
A
A
Google
already,
and
we
covered
the
point:
where
can
we
make
that
a
bit
more
automatic
so
that
the
users
wanted
to
matter
about
providing
their
own
image
like
I?
Don't
see?
We
could
do
that
without
being
able
to
point
exactly.
This
is
the
big
job,
and
this
is
the
one
that
the
kind
of
image
that
you
need
to
reuse
to
run.
A
C
A
A
If
you
have
any
better
idea,
I
would
be
glad
three
or
that,
but
we're
talking
about
MVC
as
well,
and
that
could
also
make
the
first
NB
c--
bit
lighter,
for
example,
boots
that
we
only
support
libyan
based
images
and
next
ones
were
going
to
support
alpine
as
well.
That
could
give
us
on
more
time
to
package
and
broad
package.
A
together,
I
knew
futures
that
we
could
use
to
cross
some
parent
creates
or
even
rpms
or.
A
A
You
can
say
that
in
in
Debian
and
Python
is
a
meta
package,
it's
not
something
that
will
start
there
say,
but
you
should
have
Python
2.7
and
start
it's
going
to
fulfill
your
Python
requirement
as
well
as
if
you
have
five
and
three
so
at
least
you
have
one
byte
on
inside.
It's
fine,
if
not
it's
going
to
complain
that
you
had
on
make
dependencies
and
it's
going
to
fail.
But
that's
that's
good
failure
with
a
with
an
explicit
message
where
you
understand
that
you
need
to
install
Python.
C
A
If
you
provide
the
project
are
able
to
generate
all
kind
of
of
packages,
so
the
point
of
adding
these
system
packages
is,
if
you
know
that
it's
a
Debian
based
this,
for
example,
you
know
for
sure
that
all
the
tools
to
install
dead
files
are
going
to
be
there.
Otherwise,
you
have
to
guess,
and
we
will
run
into
problems
for
sure
another
one
is
if
I
remember
word,
go
X.
A
I'm
very
aware,
I'm
not
sure
if
it's
the
cross,
compiler
or
the
packet
rolls
well,
but
there
are
many
for
sure
that
we
can
use
without
having
to
create
all
the
required
folders,
because
the
written,
if
you
try
to
create
a
package
for
Debian,
you
have
to
create
a
bunch
of
folders,
a
general
to
the
very
specific
formats.
It's
a
bit
tenuous.