Just a general answer/info here at the bottom of the thread...
I realize our container build pipeline is not great, but it's currently
working and I will keep it working until we replace it.
I agree we should replace it, and there's lots of options, but I don't
think this thread is the place to go back and forth about them.
I know of at least kiwi, osbuild, some other build systems that don't
fully exist yet, switching to use quay.io, osbs2 (based on openshift4),
and probibly others.
What if we made the Toolbox container image just one more base image and built it with ImageFactory?
- Integrated into the compose process
- Across all architectures
- No OSBS dependency
The main disadvantage is that it is no longer layered, so *if* you happen to have the exact same Fedora image version around for some other reason (a big if), you save a fraction of space:
Fedora 38 container - 71M compressed, 201M uncompressed
Toolbox add-on layer - 232M compressed, 753M uncompressed
Toolbox squashed - 291M compressed, 884M uncompressed
But generally seems like it would be a win. osbuild/kiwi/whatever can be left as a separate project.