Our apps architect recommends Alpine Linux for our
Some time back, a patch management vendor told us
that patching for Alpine can't be managed by Satellite
or BigFix ie we have to manually download & patch.
is the above true or is there something like 'yum' in
RHEL to patch Alpine.
Also, there's no CIS hardening benchmark nor any
docs that standardize what to harden for Alpine.
Architect further points out that Alpine is the most
secure & efficient Linux to use for microservices;
is this true? Does Alpine has good development
team that constantly check for vulnerabilities &
release advisories/patches (at least like RHEL)?
Where can I view past Alpine's CVEs/vulnerabilities
list & how can we assess how good are support
for Alpine? Don't want a case where we log a
case for support & there's lack of response &