Merge pull request #41 from kevinbackhouse/run-in-docker

Revert run_seclab_agent.sh back to its previous behavior

Author: kevinbackhouse

README.md

@@ -31,7 +31,7 @@ Individual taskflows may need additional setup, please refer to the `README.md`
 After setting the relevant env vars, run an example taskflow with:
 
 ```bash
-./scripts/run_seclab_agent.sh python -m seclab_taskflow_agent -t seclab_taskflows.taskflows.audit.ghsa_variant_analysis_demo -g repo=github/cmark-gfm -g ghsa=GHSA-c944-cv5f-hpvr
+./scripts/run_seclab_agent.sh -t seclab_taskflows.taskflows.audit.ghsa_variant_analysis_demo -g repo=github/cmark-gfm -g ghsa=GHSA-c944-cv5f-hpvr
 ```
 
 ## Background

scripts/audit/run_audit_in_docker.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+# SPDX-FileCopyrightText: GitHub, Inc.
+# SPDX-License-Identifier: MIT
+
+# https://stackoverflow.com/a/53122736
+__dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+
+${__dir}/../run_in_docker.sh ${__dir}/run_audit.sh "$1"

scripts/run_in_docker.sh

@@ -0,0 +1,20 @@
+#!/bin/bash
+# SPDX-FileCopyrightText: GitHub, Inc.
+# SPDX-License-Identifier: MIT
+
+if [ ! -f ".env" ]; then
+    touch ".env"
+fi
+
+mkdir -p .local
+mkdir -p logs
+mkdir -p data
+
+# Note: this uses the trick described [here](https://unix.stackexchange.com/a/646335)
+# to pass extra command line arguments into `bash -c`.
+docker run -i \
+       --mount type=bind,src="$PWD",dst=/app \
+       --mount type=bind,src="$PWD/.local",dst=/root/.local \
+       -e GH_TOKEN="$GH_TOKEN" -e AI_API_TOKEN="$AI_API_TOKEN" --entrypoint /bin/bash \
+       "ghcr.io/githubsecuritylab/seclab-taskflow-agent" \
+       -c 'pip install -q -e /app && exec "$@"' this-is-bash-dollar-zero "$@"

scripts/run_seclab_agent.sh

@@ -1,20 +1,8 @@
 #!/bin/bash
-# SPDX-FileCopyrightText: 2025 GitHub
+# SPDX-FileCopyrightText: GitHub, Inc.
 # SPDX-License-Identifier: MIT
 
-if [ ! -f ".env" ]; then
-    touch ".env"
-fi
+# https://stackoverflow.com/a/53122736
+__dir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
 
-mkdir -p .local
-mkdir -p logs
-mkdir -p data
-
-# Note: this uses the trick described [here](https://unix.stackexchange.com/a/646335)
-# to pass extra command line arguments into `bash -c`.
-docker run -i \
-       --mount type=bind,src="$PWD",dst=/app \
-       --mount type=bind,src="$PWD/.local",dst=/root/.local \
-       -e GH_TOKEN="$GH_TOKEN" -e AI_API_TOKEN="$AI_API_TOKEN" --entrypoint /bin/bash \
-       "ghcr.io/githubsecuritylab/seclab-taskflow-agent" \
-       -c 'pip install -q -e /app && exec "$@"' this-is-bash-dollar-zero "$@"
+${__dir}/run_in_docker.sh python -m seclab_taskflow_agent "$@"