A Fluentd OCI image to be used for log aggregation and based on the official Fluentd Docker image rebuilt as a multi-arch linux/amd64 & linux/arm64 image.
To optimize Fluentd for log aggregation the default fluent.conf file has been overwritten to allow logs to be forwarded and printed to stdout, an additional directory /fluentd/state has been created, and plugins have also been added to support the aggregation role.
As of v2.0.0 this image will follow semantic versioning so the base Fluentd version will not be directly tracked.
The following plugins have been added to the base image, to see the specific version please look in the Gemfile.
- fluent-plugin-azure-loganalytics
- fluent-plugin-azurestorage-gen2
- fluent-plugin-cloudwatch-logs
- fluent-plugin-concat
- fluent-plugin-datadog
- fluent-plugin-elasticsearch
- fluent-plugin-grafana-loki
- fluent-plugin-kafka
- fluent-plugin-opensearch
- fluent-plugin-prometheus
- fluent-plugin-record-modifier
- fluent-plugin-rewrite-tag-filter
- fluent-plugin-route
- fluent-plugin-s3
- fluent-plugin-sqs
This image is available from GHCR and is used in the fluentd-aggregator Helm chart. You can pull this image with the following command.
docker pull ghcr.io/stevehipwell/fluentd-aggregator:latestThis image can be tested locally by running the following command and then forwarding logs to it.
docker run -p 24224:24224 ghcr.io/stevehipwell/fluentd-aggregator:latestTo validate the image signature run the following commands.
cosign verify ghcr.io/stevehipwell/fluentd-aggregator:latest --certificate-oidc-issuer "https://token.actions.githubusercontent.com" --certificate-identity-regexp "https://github.com/action-stars/build-workflows/.github/workflows/build-oci-image.yaml.+" | jq .To validate the the image build provenance run the following command.
gh attestation verify --repo stevehipwell/fluentd-aggregator --signer-workflow action-stars/build-workflows/.github/workflows/build-oci-image.yaml oci://ghcr.io/stevehipwell/fluentd-aggregator:latestYou can validate image SBOM by running the following commands.
digest="$(crane digest --platform="linux/amd64" ghcr.io/stevehipwell/fluentd-aggregator:latest)"
gh attestation verify --repo stevehipwell/fluentd-aggregator --signer-workflow action-stars/build-workflows/.github/workflows/build-oci-image.yaml --predicate-type https://spdx.dev/Document/v2.3 "oci://ghcr.io/stevehipwell/fluentd-aggregator@${digest}"