It depends a lot on your base image. If you use Debian locked to a release, you'll likely get the same Apache version plus small fixes / security fixes (whatever the exact Debian policy is).
That's not reproducible in the sense of "reproducible software", but it is usually good enough to build other things on top of.
If you want reproducible in the sense of unchaging/same digest, you should make a custom base image with the things you never want to change and pull it from somewhere.
chriswarbo|3 years ago
I can't recall ever encountering such a thing myself. On the other hand, I've seen LOTS of this sort of thing:
The above is taken from official AWS documentation[1] but it's pretty rampant.As I mentioned above, when the instructions are reproducible, there's no point using Docker to run them; a shell script would suffice.
[1] https://docs.aws.amazon.com/AmazonECS/latest/developerguide/...
sascha_sl|3 years ago
That's not reproducible in the sense of "reproducible software", but it is usually good enough to build other things on top of.
If you want reproducible in the sense of unchaging/same digest, you should make a custom base image with the things you never want to change and pull it from somewhere.