Docker scratch x509 fix

Dockerfile

FROM golang:alpine as builder
WORKDIR /app
#the following 2 steps are optional if your image does not already have the certificate
# package installed, golang:alpine now seems to have it. But a more base image could be missing it.
#RUN apk update && apk upgrade && apk add --no-cache ca-certificates
#RUN update-ca-certificates
ADD main.go /app/main.go
RUN CGO_ENABLED=0 GOOS=linux go build -a -ldflags="-s -w" -installsuffix cgo -o app .

FROM scratch
COPY --from=builder /app/app .
COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
CMD ["./app"]

main.go

package main

import (
	"net/http"
	"fmt"
)

func main(){
	_, err := http.Get("https://www.google.com")
	if err!= nil {
		panic(err)
	}
	fmt.Println("success")
}

Thanks this helped with my problem!

You are a godsend, this saved me HOURS!

🔥

You are a godsend sir. Thanks for sharing.

You are a lifesaver!
Thank you so much!

thanks

worked without

RUN apk update && apk upgrade && apk add --no-cache ca-certificates
RUN update-ca-certificates

just

COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/

@fuad-daoud how ?

thanks

worked without

RUN apk update && apk upgrade && apk add --no-cache ca-certificates
RUN update-ca-certificates

just

COPY --from=builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/

Yes it does seems that the golang:alpine now has certificates rebuild inside the docker image.
Thanks for noticing