Indeed, Debian stable with podman/Docker is "immutable enough" for me.

It is also the insurance that I will get help whenever I'm stuck.

Sure it could be smaller ... but when it already runs fine on any hardware, even weird stuff like a BananaPi with a low-end RISC-V processor, then I have a difficult time wanting anything else.