Request for Distroless Image Support in Traefik #55
Description
I propose the addition of a distroless Docker image option for Traefik to enhance security and reduce the image footprint. Distroless images contain only the application and its runtime dependencies, omitting unnecessary packages and shell, which minimizes potential attack vectors and the overall size of the image.
Motivation
In environments where security and resource optimization are paramount, using distroless images can significantly contribute to a more secure, efficient deployment. Given Traefik's role as an edge router, minimizing its attack surface is critical. A distroless image would offer an optimized option for users prioritizing security and minimalism.
Implementation Suggestion
Base Image: Adopt a distroless base image from GoogleContainerTools' distroless images, which are well-maintained and widely used.
Configuration: Ensure that the Traefik binary and any strictly necessary libraries or dependencies are included. Review and adapt the current Dockerfile to align with distroless requirements.
Testing: Implement comprehensive testing to ensure feature parity and performance benchmarks meet expectations compared to the standard image.