►
From YouTube: 2021 03 12 Platform SIG
Description
No description was provided for this meeting.
If this is YOUR meeting, an easy way to fix this is to add a description to your video, wherever mtngs.io found it (probably YouTube).
A
Welcome
to
the
jenkins
platform
special
interest
group,
it's
march,
the
12th
2021
thanks
for
being
here
so
topics
that
I've
got
open
action
items
to
discuss
then
open
container,
labeling
gareth
that
you'll
take
on.
I
wanted
to
do
a
brief
review
of
she
code,
africa
and
then
coordinating
proposed
docker
changes
is
a
topic.
Are
there
other
topics?
We
need
to
add
to
the
agenda.
A
A
B
I
need
to
update
it.
Oh
I
had.
I
had
also
upgraded
the
plugin
installation
manager
at
the
same
time,
but
there
have
been
there's
been
some
conflicting
updates,
so
I
need
to
fix
those
conflicts.
A
Okay,
great
well,
and
I'm
not
going
to
be
able
to
review
this
for
for
probably
several
days
or
a
week,
at
least
so
that's
not
a
crisis
if
you,
if
that
needs
to
take
a
little
time,
okay,
cool
great
all
right.
Thank
you
again
for
doing
that.
A
We
had
a
discussions
on
further
parallelization
and
acceleration
during
the
contributor
summit,
it
was
agreed
that
that
acceleration
of
the
builds
is
a
crucial
part
of
our
road
map.
I'll
get
that
onto
the
roadmap
actually
and
that's
an
action
item,
I
need
to
put
mark
deliver
the
roadmap
adjustments
changes
based
on
the
contributor
summit.
Sorry,
I
haven't
done
that
yet.
C
C
That
was
that
it
would
be
probably
not
possible
to
do
with
the
builds
that
we
have
on
docker
hub,
but
what
we
have
found
is
there
is
a
way
of
getting
most
of
those
labels
added
nicely
actually
using
docker
hub,
so
docker
hub
supplies,
a
couple
of
build
arcs
that
you
can
use
to
add
most
of
the
labels
you
need
certainly
around
commit
and
url,
and
things
like
that,
the
one
that
it
doesn't
supply
is
build
date,
but
there
is
a
method
or
a
way
that
we
can
use
a
custom,
build
hook
to
supply
that
if
we
want
to
go
down
that
route,
it
just
means
that
we
don't
have
to
move
off
docker
hubs
infrastructure
for
building
those
images
just
yet.
C
Obviously
we
can
do
if
we
want
to
in
the
future,
but
it
just
adding
these
labels
doesn't
become.
The
only
reason
that
we
want
to
look.
A
For
me,
that
sounds
great,
so
that's
something
conceptually!
You
could
submit
a
pull
request
to
the
images
to
to
apply
these.
These
build
time
labels
and
we
could
already
see
them
based
on
the
build
hook.
Examples
at
docker,
hub
yep,
nice
alex
any
objections
from
you
on
on
us.
Considering
going
ahead
with
that.
B
A
C
B
That's
I
was
wondering
if
you
had
access
to
the
docker
hub
repository,
so
you
can
make
these
changes.
C
B
The
initial
one
would
be
the
jenkins
ci
docker,
that's
just
the
one
that
builds
the
the
controller
image
yep.
Okay,
then
there's
jenkins
ci
docker
dash
agent.
B
Jenkins
ci
inbound
docker
agent.
I
think.
A
I
thought
those
did
not
have
inside
the
repository
the
the
details
of
the
docker
hub
configuration.
I
thought
that
was
done
interactively
at
docker
hub.
B
That's
true,
but
it's
so
marquee!
You
want
to
put
docker
ssh
agent
because
there's
an
ssh
agent
plugin!
Oh!
Oh
thanks!
Right.
B
And
docker
ssh
agent
does
not
inherit
from
the
docker
agent
just
fyi
okay,
so
we
have
jenkin
on
docker
hub.
We
have
jenkins
jenkins,
which
is
the
controller.
We
have
jenkins
agent,
which
corresponds
to
the
the
docker
agent.
A
C
B
B
C
Let
me,
let
me,
try
it
out
and
something
happened.
A
D
A
A
A
We've
got
good
alignment
to
be
a
mentoring
project
for
this,
so
kristen
whetstone
me
and
meg
mcroberts
have
all
agreed
to
be
mentors
for
it,
and
we've
got
a
project
idea
I'll,
be
submitting
a
an
email
summary
of
this
to
the
jenkins
developers
mailing
list
today
and
we'll
be
submitting
a
poll
request
to
the
jenkins.io
doc
site
for
to
describe
what
this
thing
is
if
you're
interested
in
participating.
Certainly,
let
me
know.
A
Then
the
next
topic
was
coordinating
proposed
doctor
changes
so
alex
or
gareth.
Are
there
any
specific
things
here?
We've
talked
already
about
install
plug-ins,
and
I
we
haven't
had
much
chance
to
make
progress
on.
Multi-Arch
builds
any
of
these
others
that
need
to
be
discussed
in
more
depth
while
we're
here
not
that
I
can
think
of
okay.
A
I
know
that
this
non-root
user
one
is,
is,
as
far
as
I
can
tell
still
progressing,
and
some
of
the
images
defined
here
are
being
shifted
to
be
honed
inside
jenkins
infra,
so
that
we
can
use
them
for
infrastructure
without
confusing
people
that
they
are
somehow
published
in
public,
for
anybody
we're
intentionally
using
them
for
jenkins
infra
and
not
assuming
others
will
use
them
did.
I
did
I
understand
that
correctly
gareth
did
I
say
that
right.
A
C
Hope
we
had
any
chats
about
security
scanning.
These
images.
A
So,
let's,
let's
give
at
least
what
I
know
currently,
so
I've
been
experimenting
with
mark
experimented
with
sneak
scanning
and
linux
foundation.
A
B
B
That's
my
concern:
if
there's
no
way
for
us
to
fix
the
the
issue,
because
the
base
image
hasn't
been
updated,
then
us
publishing
security
issues
or
whatever
on
these
images
is
I
don't
know
how
helpful
that
would
be.
C
I
suppose
it
may
give
us
some
data
to
say
whether
or
not
we
want
to
keep
on
supporting
a
particular
base
image
in
the
future.
B
B
B
A
Yeah,
so
I
think
you
raise
a
good
point
alex.
How
do
we
make
this
useful
to
us
rather
than
a
hindrance
and
and
and
that's
a
that's,
a
piece
that
I'm
still
not
clear
on?
I
have
been
worrying:
how
do
we,
how
do
we
make
it
so
that
the
so
that
the
process
of
resolving
a
of
marking
an
issue
as
not
an
issue
or
as
oh
we're
not
going
to
do?
A
C
It
it's
so
if
you
look
at
sort
of
like
docker
best
practices,
they
tend
to
be
moving
more
towards
like
trying
not
to
wherever
possible
base
your
stuff
off
like
a
complete
install
of
debian,
with
a
lot
of
things
that
you
may
not
need
so
try
to
keep
them
as
small
as
possible.
So
you
may
find
that
selecting
an
alternative
or
more
of
a
slimmed
down
base
image
may
be
beneficial,
but
a
distal.
Us
is
a
good
one.
Actually
that
I
would.
C
B
C
A
We
said,
let's
shift
and
make
ourselves
based
on
the
adopt
open,
jdk
images,
and
they
they
have
a
set
that
they've
selected,
and
it
might
be
that
we
would
could
consider
okay,
should
we
ask
them
to
to
add
additional
support
for
another
image
right
now.
I
think
it's
an
intentional
choice
to
use
them.
B
B
Of
their
experimental,
which
means
it's
just
not
built
by
docker
docker
hub
and
released
by
docker
hub,
but
I'm
pretty
sure
they
have
a
ubi
image
and
they're
experimental,
so
that
could
be
a
possibility.
B
A
Well-
and
we've
already
got
slim
so
so
that
piece
and
we've
got
alpine,
though
what
one
we
don't
have,
for
example,
that
that
I
see
in
the
in
the
open,
j9
images
the
the
ibm
kind
of
images
is,
they
seem
to
seem
to
have
a
preference
for
you,
ubuntu,
at
least
in
in
the
j9
images.
A
So
gareth
did
that
did
that
address?
Have
we
addressed
the
question
there?
I'm
not
sure
the
next
steps
for
us
in
terms
of
we
could
we
could
do
more
investigation
to
understand
what
we
could
use
of
the
linux
foundation
offering
and
how
to
get
how
to
be
more
effective
with
it.
C
Yeah,
I
think
I
think
it
I
I
don't
know
how
it
works.
I
think
maybe
it'd
be
worth
yeah
understanding
yeah.
How
do
we,
how
do
we
configure
it
to
at
least
scan
the
scan,
the
some
images
and
then
we'll
try
and
work
out
what
to
do
with
that
data?.
A
Yeah
the-
and,
if
I
remember
correctly,
I
I
well,
I
don't
know
that
it'll
help
us
here,
but
I
could.
I
can
navigate
to
the
linux
foundation
page
if
you'd
like,
maybe
maybe
what
I
should
do,
is
let
me
put
a
link
to
that
in
in
the
lfx
security
I'll
put
a
link
to
it
in
the
in
the
notes,
so
that
we've
got
it.
A
A
Yes,
they
are
they're
already
scanning
and,
and
the
scans
hang
on,
I'm
going
to
sign
in
and
we
can
look
at
them
together
if
there's
something
that
we
find
that's
last
time
I
was
in
here
the
things
that
were
there
were
not
so
super
sensitive
that
I
had
to
edit
them
out
of
any
recording.
So
so,
let's
just
go,
and
now,
if
I
remember
right,
there
is
something
about
where
I
have
to
click
here.
A
A
A
A
A
Cool
yeah
and,
and
so
clearly
they've
got
some
data
because
they're
highlighting
what
looks
like
it
looks,
it
looks
real-ish
and
I
think
oleg
had
shown
once
the
the
same
thing
now,
how
many
repositories
they're
scanning
yeah
that
that
I
don't
know
I've.
I
had
assumed
this-
was
docker
image
scans,
not
scans
of
java
source
code.
A
A
So
I
assume
that
gareth,
one
of
the
things
is,
you
probably
need
to.
If
you
don't
already
have
it
get
a
linux
foundation
register
yourself
for
a
linux
foundation,
account
ask
for
access
to
the
to
the
data
and,
let's
see
what
we.