cleanstart/spring-boot

Verified Publisher

By CleanStart

•Updated about 23 hours ago

Secure by Design, Built for Speed, Hardened Container Images on a minimal base CleanStart OS.

Image
Languages & frameworks
0

9.8K

cleanstart/spring-boot repository overview

⁠Container Documentation for Spring-Boot Documentation

The CleanStart Spring-Boot image provides a production-ready, security-hardened container optimized for enterprise environments. Built on a minimal base OS with comprehensive security hardening, this image delivers reliable application execution with advanced security features.

šŸ“Œ Base Foundation: Production-ready container from cleanstart.

Image Path: cleanstart/spring-boot

Registry: cleanstart Registry

cleanstart/spring-boot:latest is a Spring Boot CLI tool image (not a runnable REST API), designed for scaffolding Spring Boot projects via spring init and encoding passwords via spring encodepassword; it defaults to Gradle project generation and requires --type=gradle-project explicitly, as the --build=gradle shorthand is ambiguous in this version.

⁠Pull Latest Image

Download the container image from the registry

docker pull cleanstart/spring-boot:latest
docker pull cleanstart/spring-boot:latest-dev

⁠Basic Run

Run the container with basic configuration

docker run -it --name spring-boot cleanstart/spring-boot:latest

⁠Production Deployment

Deploy with production security settings

docker run -d --name spring-boot-prod \
  --security-opt=no-new-privileges \
  --user 1000:1000 \
  --restart unless-stopped \
  cleanstart/spring-boot:latest

Volume Mount Mount local directory for persistent data

docker run -v /app:/app cleanstart/spring-boot:latest

Port Forwarding Run with custom port mappings

docker run -p 8080:8080 cleanstart/spring-boot:latest

⁠Kubernetes Security Context

Recommended security context for Kubernetes deployments

securityContext:
  allowPrivilegeEscalation: false
  capabilities:
    drop:
    - ALL
  readOnlyRootFilesystem: true
  runAsUser: 1000
  runAsGroup: 1000

⁠Documentation Resources

Essential links and resources for further information


Vulnerability Disclaimer

CleanStart offers Docker images that include third-party open-source libraries and packages maintained by independent contributors. While CleanStart maintains these images and applies industry-standard security practices, it cannot guarantee the security or integrity of upstream components beyond its control.

Users acknowledge and agree that open-source software may contain undiscovered vulnerabilities or introduce new risks through updates. CleanStart shall not be liable for security issues originating from third-party libraries, including but not limited to zero-day exploits, supply chain attacks, or contributor-introduced risks.

Security remains a shared responsibility: CleanStart provides updated images and guidance where possible, while users are responsible for evaluating deployments and implementing appropriate controls.

Tag summary

Content type

Image

Digest

sha256:a55b5aa0d…

Size

109.3 MB

Last updated

about 23 hours ago

docker pull cleanstart/spring-boot:4.1.0-arm64