Why do we need to use your wasm-builder image?
Would the repo for this image be added to nodejs org?

I'm +1 but the image needs to be hosted in the org.

needs to be hosted in the org.

absolutely. I would move mhdawson/wasm-builder to nodejs/wasm-builder

Why do we need to use your wasm-builder image?

There are a number of benefits on using a common approach/container across the dependencies.

• Fewer tools and different versions of tools used to build Node.js ( ie smaller supply chain)
• It will be easier to ensure that builds capture all information related to tools and versions used and that we do things in the way we believe it good for supply chain security and repeatability.
  • For example I had PR'd in a change to generate a file with the tools/versions into undici but later changes broke that
• By using a container that we store instead of building one on the fly we will be sure we have the exact environment available if we need to rebuild at a later time. For example, in the current undici build process if the external link to install a particular version of BINARYEN no longer exists we would not be able to rebuild in the same way.

So while we could use a different approach and tools in each dependency and meet all of the same goals, it should be easier by re-using one common approach and build container.

I'll also that in line with Matteo's comment it would be the "The Node.js project's" container not mine.

Send the PR!

@mcollina thanks, will start the process of moving over the repo for the container generation and then I'll do that.