Supported Versions
Alpine 3.22, 3.21, 3.20, 3.19, 3.18Dockerfile
Build
How It Works
- Root.io’s RSA public key is written to
/etc/apk/keys/for package signature verification. - The
pkg.root.iorepository URL (with credentials inline) is appended to/etc/apk/repositories. - For each package,
apk search -e rootio-<pkg>checks if a Root-patched version exists. If yes, the patched version is installed; if not, the standard upstream package is used. - The
pkg.root.ioline is removed from/etc/apk/repositoriesin the sameRUNlayer, so credentials are never persisted in the image.
CI/CD Integration
- GitHub Actions
- GitLab CI