apptainer-build

apptainer build [options] image build-spec

apptainer build creates Apptainer container images from various sources including definition files, Docker Hub, OCI registries, and the Sylabs Container Library. The resulting SIF (Singularity Image Format) file is a portable, immutable container image.Definition files (.def) provide a reproducible way to specify base images, software installation steps, environment variables, and runscripts. The sandbox mode creates a writable directory structure useful for development and testing.

-s, --sandbox

Build a writable directory instead of an immutable SIF image

Overwrite an existing image file without prompting

Build using fakeroot, appearing to run as root (default for unprivileged definition builds).

Do not use or create cached images during the build process.

Retain the temporary build directory after a failed build (for debugging).

Run the definition over an existing sandbox container, rerunning sections such as %post.

Build the container without running the %test section.

Run only the given definition sections instead of all of them (e.g. post, environment).

Build an image with an encrypted filesystem (set APPTAINERENCRYPTIONPASSPHRASE or APPTAINERENCRYPTIONPEM_PATH).

Replace {{ key }} placeholders in the definition file with the given value.

Architecture to build for (default: amd64).

/etc/apptainer/apptainer.conf

Main configuration file controlling build behavior, security settings, bind paths, and fakeroot mappings.

Building containers often requires elevated privileges or fakeroot configuration. Some base images may not be compatible with fakeroot builds. Large builds can consume significant disk space in the cache directory.

apptainer(1), apptainer-pull(1), apptainer-run(1), apptainer-exec(1), apptainer-shell(1), docker(1)

Source code · Homepage · Documentation