Monday, November 11, 2024

Fixing the Security vulnerabilities found on base docker image

Expected/desired solution :

Fixing the Security vulnerabilities found on base docker image without increasing the newer version of  "base docker image" due to Application stability and its dependency of its packages.

Here is the solution :

Easy way

  • use the docker inspect command to see the "environment variable for the current version and its latest patch version if not available search it the Linux Official distro sites.
  • Found the Patch version of the docker image and its checksum in the "Docker Hub".
  • C the docker file and import with checksum or with patch vesion.
  • Build your docker image from your docker file.
  • Scan the docker image your created in the above step using docker security vulnerabilities scanner tools like scout , trivy , sysdig and snyk
  • Count and compare the vulnerabilities on your current docker image and the previous version of the docker image.
  • Finally wrap your Application Packages (WAR, JAR, nodeJS or Python) and check the application stability .


If Easy way - doesn't work , then "Hard way" - I will soon update here

Saturday, June 18, 2022

Installing Azure DevOps Server on local

 If you want to learn and explore but cost and credit card is barrier for you to create the AzureDevOps services, then here is the option for you.

Installing the Azure DevOps Server on your local desktop or laptop.

Download the trial version (90 days free, cool : ) 💪) from here

https://docs.microsoft.com/en-us/azure/devops/server/download/azuredevopsserver?view=azure-devops

On setup wizard use the SQL Server express edition. Once you installed you need to configure your custom agent on your machine.

Now its time for starting  to explore the Azure DevOps services.


Azure DevOps Server Local installation - Custom Agent configuration


And the custom agent on your machine connected with local AzureDevOps server.




Monday, August 02, 2021

function.json location in Visual Studio Code.

When you are working with Azure Function, you may need to bind the input and output and also applying the log and Application Insight to your Azure function through function.json. This file can be easily available to you if you are working or developing the Azure Function through "Portal". But you have to search it in case of developing through Visual Studio or Visual Studio code. You can find the function.json file under the project folder's output. There you can modify the required attributes needed for your Azure Function.

Sunday, February 14, 2021

NuGet Packages Cache Locations

NuGet cache will be cached based on your project and user context, Often it required to be cleared to see the latest package addition and functional of it. Nuget manage its caches in the global configuration , http level,temp cache and plugin-level. You can find all these cache location
  • HTTP cache: C:\Users\UserId\AppData\Local\NuGet\v3-cache Nuget Global Cahce:
  • C:\Users\UserId\.nuget\packages\ Clearing NuGet Temp cache:
  • C:\Users\UserId\AppData\Local\Temp\NuGetScratch Clearing NuGet plugins cache:
  • Users\UserId\AppData\Local\NuGet\plugins-cache
    • After clearning this, Restore NuGet packages on your project and rebuild. Now you will see the latest packages in your project.