# docker-library/official-images **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/docker-library-official-images).** 6,972 stars · 2,518 forks · Shell · Apache-2.0 ## Links - GitHub: https://github.com/docker-library/official-images - Homepage: https://hub.docker.com/u/library - awesome-repositories: https://awesome-repositories.com/repository/docker-library-official-images.md ## Description This project is a collection of curated and standardized Docker base images that serve as reliable starting points for building containerized applications. It functions as an OCI container image repository and a build template library, providing a central source of truth for images that adhere to Open Container Initiative standards for portability. The project utilizes an automated image lifecycle pipeline to build, tag, and push images, ensuring that dependencies remain current and security patches are applied. It specifically supports cross-platform distribution by providing a multi-architecture image set, using image indexes to map a single tag to multiple hardware platforms. The repository covers several high-level capability areas, including container security hardening through the restriction of process privileges and the use of non-root users. It also manages container runtime configuration via entrypoints and health checks, and employs image optimization techniques such as multi-stage builds to reduce the final image footprint. ## Tags ### DevOps & Infrastructure - [Base Images](https://awesome-repositories.com/f/devops-infrastructure/containerization/image-building/base-images.md) — Provides a curated collection of standardized base images following industry best practices for reliability and security. ([source](https://cdn.jsdelivr.net/gh/docker-library/official-images@master/README.md)) - [OCI Container Engines](https://awesome-repositories.com/f/devops-infrastructure/oci-container-engines.md) — Provides curated base images that adhere to Open Container Initiative standards for portability. - [Automated Image Build Pipelines](https://awesome-repositories.com/f/devops-infrastructure/self-contained-deployments/bundled-image-deployment/automated-image-build-pipelines.md) — Provides an automated pipeline for building, tagging, and pushing images to ensure current dependencies and security patches. - [Container Build Specifications](https://awesome-repositories.com/f/devops-infrastructure/container-build-specifications.md) — Defines the container environment and startup behavior using declarative Dockerfile specifications. - [Container Build Stages](https://awesome-repositories.com/f/devops-infrastructure/container-build-stages.md) — Initializes container build environments and manages the layering of base images. ([source](https://docs.docker.com/reference/builder/)) - [Container Command Execution](https://awesome-repositories.com/f/devops-infrastructure/container-command-execution.md) — Executes shell commands and binaries within a controlled environment to create new image layers during builds. ([source](https://docs.docker.com/reference/builder/)) - [Container Configuration](https://awesome-repositories.com/f/devops-infrastructure/container-configuration.md) — Defines container runtime behavior through the configuration of entrypoints, environment variables, and health checks. - [Container Entrypoint Execution](https://awesome-repositories.com/f/devops-infrastructure/container-entrypoint-execution.md) — Configures the primary executable entrypoint so containers function as dedicated command-line tools. ([source](https://docs.docker.com/reference/builder/)) - [Multi-Architecture Images](https://awesome-repositories.com/f/devops-infrastructure/container-image-builders/multi-architecture-images.md) — Uses image indexes to map single tags to multiple platform-specific digests for cross-platform execution. - [Image Stream Lifecycles](https://awesome-repositories.com/f/devops-infrastructure/container-image-management/image-stream-lifecycles.md) — Manages the lifecycle of image tags and updates based on base image changes through centralized definitions. ([source](https://cdn.jsdelivr.net/gh/docker-library/official-images@master/README.md)) - [Container Images](https://awesome-repositories.com/f/devops-infrastructure/container-images.md) — Serves as a central repository of official container images adhering to OCI standards for portability. - [Executable Configurations](https://awesome-repositories.com/f/devops-infrastructure/container-images/container-execution/executable-configurations.md) — Defines the primary binary and default startup arguments to ensure consistent container execution. ([source](https://docs.docker.com/articles/dockerfile_best-practices/)) - [Container Default Commands](https://awesome-repositories.com/f/devops-infrastructure/container-images/default-image-suppliers/container-default-commands.md) — Defines the default commands and arguments for containers to ensure consistent startup behavior. ([source](https://docs.docker.com/reference/builder/)) - [Language Base Images](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators/docker-target-configurators/docker-container-deployments/docker-image-building/language-base-images.md) — Provides a curated collection of standardized base images that serve as trusted foundations for other containers. - [Multi-Stage Build Pipelines](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators/docker-target-configurators/docker-container-deployments/docker-image-building/multi-stage-build-pipelines.md) — Separates build-time environments from runtime outputs to minimize the final image footprint. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Image Build Optimizations](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/container-runtimes/runtime-configuration-interfaces/docker-socket-orchestrators/docker-target-configurators/docker-container-deployments/docker-image-building/multi-stage-build-pipelines/image-build-optimizations.md) — Employs multi-stage builds and layer caching to reduce image footprints and improve build speeds. - [Multi-Architecture Manifests](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/image-management-tools/container-image-distribution/multi-architecture-manifests.md) — Supports cross-platform distribution by mapping a single image tag to multiple hardware architectures. - [Container User Defaults](https://awesome-repositories.com/f/devops-infrastructure/container-user-defaults.md) — Specifies the default username or UID for build instructions and the final container runtime environment. ([source](https://docs.docker.com/reference/builder/)) - [Context-Aware File Copying](https://awesome-repositories.com/f/devops-infrastructure/context-aware-file-copying.md) — Copies files and directories from the local build context or remote URLs into the image filesystem. ([source](https://docs.docker.com/reference/builder/)) - [Curated Base Image Collections](https://awesome-repositories.com/f/devops-infrastructure/curated-base-image-collections.md) — Maintains a standardized collection of curated Docker base images for building containerized applications. - [Layered Filesystems](https://awesome-repositories.com/f/devops-infrastructure/layered-filesystems.md) — Builds images using a stack of immutable read-only layers for efficient filesystem composition. - [Multi-Architecture Image Indexes](https://awesome-repositories.com/f/devops-infrastructure/multi-architecture-image-indexes.md) — Distributes a single image tag across multiple hardware platforms using image indexes. ([source](https://cdn.jsdelivr.net/gh/docker-library/official-images@master/README.md)) - [Runtime Environment Configuration](https://awesome-repositories.com/f/devops-infrastructure/runtime-environment-configuration.md) — Sets environment variables and updates system paths to ensure software runs correctly across environments. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Runtime User Overrides](https://awesome-repositories.com/f/devops-infrastructure/runtime-user-overrides.md) — Allows specifying the username or UID used to execute the container's primary process for security isolation. ([source](https://docs.docker.com/engine/reference/run/)) - [Container Asset Importers](https://awesome-repositories.com/f/devops-infrastructure/container-asset-importers.md) — Provides capabilities to import local files or remote artifacts directly into the image filesystem. ([source](https://docs.docker.com/articles/dockerfile_best-practices/)) - [Container Image Metadata](https://awesome-repositories.com/f/devops-infrastructure/container-image-metadata.md) — Provides a way to attach custom key-value labels for licensing, ownership, and automation metadata to images. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Container Image Templates](https://awesome-repositories.com/f/devops-infrastructure/container-image-templates.md) — Provides a library of best-practice image configurations and base images to automate software environment builds. - [Container Port Mappings](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration/networking/container-port-mappings.md) — Configures the network ports on which a container listens to facilitate external traffic mapping. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Container Storage Persistence](https://awesome-repositories.com/f/devops-infrastructure/container-storage-persistence.md) — Uses volume and bind mounts to ensure data durability on the host system across container restarts. ([source](https://docs.docker.com/engine/reference/run/)) - [Triggered Build Steps](https://awesome-repositories.com/f/devops-infrastructure/containerization/image-building/triggered-build-steps.md) — Includes instructions that execute automatically when an image is used as a base for a new build. ([source](https://docs.docker.com/reference/builder/)) - [Environment Variables](https://awesome-repositories.com/f/devops-infrastructure/environment-variables.md) — Define variables that persist across build stages and remain available during container runtime. ([source](https://docs.docker.com/reference/builder/)) - [Inherited Build Triggers](https://awesome-repositories.com/f/devops-infrastructure/inherited-build-triggers.md) — Provides mechanisms to trigger specific build steps automatically when an image is used as a base for others. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) ### Development Tools & Productivity - [Startup Arguments](https://awesome-repositories.com/f/development-tools-productivity/startup-configurations/startup-script-bypass/terminal-startup-scripts/container-startup-scripts/startup-arguments.md) — Configures the default executables and parameters passed during container initialization. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Build Configuration Arguments](https://awesome-repositories.com/f/development-tools-productivity/build-configuration-arguments.md) — Supports passing dynamic arguments during the build process that do not persist in the final image. ([source](https://docs.docker.com/reference/builder/)) ### Operating Systems & Systems Programming - [Image Pipeline Automation](https://awesome-repositories.com/f/operating-systems-systems-programming/os-development-distributions/custom-image-builders/immutable-image-distribution/image-tagging-automation/image-pipeline-automation.md) — Automates the cloning, building, tagging, and pushing of images to a registry. ([source](https://cdn.jsdelivr.net/gh/docker-library/official-images@master/README.md)) ### Security & Cryptography - [System Call Surface Minimizers](https://awesome-repositories.com/f/security-cryptography/attack-surface-analysis/system-call-surface-minimizers.md) — Limits the kernel system call interface using security profiles to minimize the container's attack surface. ([source](https://docs.docker.com/engine/security/seccomp/)) - [Non-Root Process Identities](https://awesome-repositories.com/f/security-cryptography/non-root-process-identities.md) — Reduces the attack surface by assigning non-root users and groups to the container process. ([source](https://docs.docker.com/articles/dockerfile_best-practices/)) - [Linux Capability Management](https://awesome-repositories.com/f/security-cryptography/privileged-access-management/privilege-isolation/linux-capability-management.md) — Provides fine-grained control over kernel privileges and device access to harden container security. ([source](https://docs.docker.com/engine/reference/run/)) - [Container Security Hardening](https://awesome-repositories.com/f/security-cryptography/security/infrastructure-and-hardware/infrastructure-system-hardening/deployment-security-hardening/container-security-hardening.md) — Harden containers by restricting process privileges, managing Linux capabilities, and enforcing non-root users. - [Container Privilege Restrictions](https://awesome-repositories.com/f/security-cryptography/security/policies/capability-authorization/capability-based-security/container-privilege-restrictions.md) — Implements non-root user configurations to reduce the host attack surface by restricting process privileges. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) ### Software Engineering & Architecture - [Environment Variables](https://awesome-repositories.com/f/software-engineering-architecture/application-lifecycle-management/configuration-management/environment-variable-management/environment-variables.md) — Defines persistent environment variables and system paths to configure software behavior across container runs. ([source](https://docs.docker.com/articles/dockerfile_best-practices/)) - [Build Result Caching](https://awesome-repositories.com/f/software-engineering-architecture/build-result-caching.md) — Implements build-cache reuse to avoid redundant processing during subsequent image builds. - [Build Performance Optimization](https://awesome-repositories.com/f/software-engineering-architecture/performance-reliability/performance-optimization/build-bundle-optimization/build-performance-optimization.md) — Accelerates the development cycle by leveraging build caches to reuse unchanged instructions. ([source](https://docs.docker.com/articles/dockerfile_best-practices/)) - [Build Context Optimization](https://awesome-repositories.com/f/software-engineering-architecture/performance-reliability/performance-optimization/build-bundle-optimization/build-performance-optimization/build-context-optimization.md) — Uses configuration files to exclude irrelevant local data from the build context to optimize performance. ### Data & Databases - [Data Persistence](https://awesome-repositories.com/f/data-databases/data-persistence.md) — Manages persistent data by exposing specific directories as volumes for mutable user files. ([source](https://docs.docker.com/develop/develop-images/dockerfile_best-practices/)) - [Volume Mounts](https://awesome-repositories.com/f/data-databases/external-storage-integrations/volume-mounts.md) — Defines volume mount points to persist mutable data outside the immutable image layers. ([source](https://docs.docker.com/reference/builder/)) ### System Administration & Monitoring - [Container Monitoring Tools](https://awesome-repositories.com/f/system-administration-monitoring/container-monitoring-tools.md) — Defines health check commands and intervals to monitor and report the operational status of containers. ([source](https://docs.docker.com/engine/reference/run/)) - [Health Checks](https://awesome-repositories.com/f/system-administration-monitoring/health-checks.md) — Executes periodic commands within the container to report the operational status of internal services.