Don't install packages from debian.org snapshots repository in the base
image. Such packages are inherited into every container that inherits
from stx-debian, and they trigger CVE scanners. Many derived containers
don't need them.
Specifically:
* Remove "build-essentials" - a meta package with many dependencies
(build tools)
* Instal "ca-certificates" from the managed repository (ie one created
from the download lists in starlingx/tools).
TESTS
=============================
* Build all packages
* Build stx-debian
* Build all starlingx and openstack containers
This change causes build failures addressed by a separate review linked
below.
Story: 2011159
Task: 50404
Depends-On: https://review.opendev.org/c/starlingx/utilities/+/922468
Signed-off-by: Davlet Panech <davlet.panech@windriver.com>
Change-Id: I9764ca475579d43cb63de6507cb90a9c3d4f698f
4d24fa8186