Docker Image Security ca-certificates

starfoxfs · October 1, 2025, 11:13am

Hi,

i have build a Docker Alpine Image what uses Python3 requests to Download Data from https Websites.

So i have added ca-certificates to the Docker Image and updated it:

RUN  apk add --no-cache ca-certificates \
     && update-ca-certificates -f

Do i need additional custom .crt File or can i use the preinstalled ca-certificates.crt native one ?

Or is it secure enough to use the preinstalled ca-certificates.crt ?

meyay · October 1, 2025, 7:36pm

Its is a trust store for CA certificates of well trusted CAs.

Unless the https website doesn’t use a certificate signed by a CA not covered by ca-certificates, there is nothing to do.

system · October 31, 2025, 7:36pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Alpine Image Certificate issue - tls_post_process_server_certificate:certificate verify failed General dockerhub , docker , build , docker-compose	4	4683	December 13, 2024
Add CA-Certificate (SSL-Inspection) for the docker-egine General	3	42833	October 6, 2023
Using host machines CA cert within Docker container General docker	0	1841	February 1, 2016
docker and TLS certificate General	1	5117	November 21, 2021
How do I get docker to recognise my own certificate authority while building an image? General security , docker , build	0	1069	October 25, 2018