SDP Container Images in Iron Bank
The container images comprising the Solutions Delivery Platform have been accredited for use throughout the Department of Defense (DoD) and are current published to the Iron Bank container registry.
Iron Bank is a container registry maintained by the Platform One team. In order for a container image to be hosted in Iron Bank and marked approved, the image must pass a stringent container hardening pipeline in alignment with the DoD container hardening document. Findings from this container hardening pipeline must either be patched or justifications provided to the Chief Software Office (CSO) of the Air Force (AF), Nic Chaillan, to accept the risk.
To learn more about Platform One and their offerings visit https://software.af.mil.
SDP uses container images to both deploy the DevOps tooling (Jenkins, SonarQube, etc) as well as by SDP Pipeline Libraries to provide runtime environments for steps.
If you have not already, navigate to the Iron Bank Portal and register for an account
Once you have an account, navigate to the SDP page to view all of the container images that have been accredited for use throughout DoD for SDP.
Click the card for the image you would like to use.
You should see a link for "Container Artifacts"
Follow the instructions to download the image’s tar file and load into your own environment
Once the tar file has been loaded, it can now be run. Refer to each container image’s README for instructions on how to run each image.
The source code for the container images in Iron Bank can be found at https://repo1.dsop.io/dsop/solutions-delivery-platform