---
title: Container Image Workflows at Scale with Buildpacks
weight: 5
---

A talk by Broadcom and Bloomberg (both related to buildpacks.io).
And a very full talk at that.

## Baselinbe

* CN Buildpack provides the spec for buildpacks with a couple of different implementations
* Pack CLI with builder (collection of buildopacks - for example ppaketo or heroku)
* Output images follow oci -> Just run them on docker/podman/kubernetes
* Built images are `production application images` (small attack surface, SBOM, non-root, reproducible)

## Scaling

### Builds

* Use in CI (Jenkins, GitHub Actions, Tekton, ...)
* KPack: Kubernetes operator -> Builds on new changes

### Multiarch support

```mermaid
flowchart LR
    subgraph ii(OCI Image Index)
        lamd(linux/amd64)
        larm(linux(arm64)
    end
    ii->image
    subgraph image
        layer1
        layer2
        layer3
    end
```

* Goal: Just a simple docker full that auto-detects the right architecture
* Needed: Pack, Lifecycle, Buildpacks, Build images, builders, registry
* Current state: There is an RFC to handle image index creation with changes to buildpack creation
  * New folder structure for binaries
  * Update config files to include targets
* The user impact is minimal, because the builder abstracts everything away

### Majority

* kpack is slsa.dev v3 compliant (party hard)
* 5 years of production
* scaling up to tanzu/heroku/gcp levels
* Multiarch is being worked on