InterviewStack.io LogoInterviewStack.io

Container Image Management and Registry Questions

Focuses on the lifecycle of container images from build to runtime. Includes building reproducible images, multi stage builds, tagging strategies and semantic versioning, minimizing image size and attack surface, running as non root, and use of minimal base images. Covers pushing to and pulling from registries including public and private registries, authentication and access control, registry lifecycle policies, image caching and garbage collection, image signing and provenance, vulnerability scanning and remediation processes, integration with CI CD pipelines, and operational considerations such as storage costs, replication and geo distribution, and registry high availability.

EasyTechnical
0 practiced
List practical techniques to minimize container image size and attack surface: multi-stage builds, removing package caches, using --no-install-recommends, distroless/scratch, stripping binaries, and minimizing layers. For each technique give a rough estimate of the potential size savings and trade-offs.
MediumSystem Design
0 practiced
You must prevent unsigned or high-risk images from running in production Kubernetes clusters. Propose and justify an implementation using admission controllers (e.g., OPA Gatekeeper or Kyverno), image verification tooling, and a rollout strategy to avoid disrupting running workloads.
EasyTechnical
0 practiced
Write a multi-stage Dockerfile for a Go 1.20 application that builds a static, minimal runtime binary. The Dockerfile must produce an image under 20MB and avoid including build tools in the final stage. Mention build args and environment variables you would set for reproducible builds.
MediumTechnical
0 practiced
Describe how to build, test, and publish multi-architecture container images (amd64, arm64) using Docker buildx or cloud builder services. Explain manifest lists, QEMU/emulation trade-offs, and strategies to validate image behavior for each architecture before publishing.
MediumTechnical
0 practiced
Given the Dockerfile: FROM python:3.9-slim RUN apt-get update && apt-get install -y build-essential git && pip install -r requirements.txt, identify security and reproducibility issues and rewrite it to improve reproducibility, reduce attack surface, and avoid leaking secrets. Explain your choices.

Unlock Full Question Bank

Get access to hundreds of Container Image Management and Registry interview questions and detailed answers.

Sign in to Continue

Join thousands of developers preparing for their dream job.