File tree Expand file tree Collapse file tree 1 file changed +8
-8
lines changed
Expand file tree Collapse file tree 1 file changed +8
-8
lines changed Original file line number Diff line number Diff line change @@ -12,14 +12,14 @@ COPY internal ./internal
1212COPY processors ./processors
1313COPY main.go .
1414
15- RUN go build -o audito-maldito
15+ RUN CGO_ENABLED=0 go build -o audito-maldito
1616
17- # Not using distroless nor scratch because we need the systemd shared libraries
18- FROM ubuntu:22.04
19- # NOTE(jaosorior): Yes, we need to be the root user for this case.
20- # We need access to the journal's privileged log entries and the audit log in the future.
21- USER 0
17+ FROM gcr.io/distroless/static:nonroot
2218
23- COPY --from=builder /go/src/audito-maldito/audito-maldito /usr/bin/audito-maldito
19+ COPY --from=builder /go/src/audito-maldito/audito-maldito /
2420
25- ENTRYPOINT [ "/usr/bin/audito-maldito" ]
21+ # "NONROOT" comes from distroless:
22+ # https://github.com/GoogleContainerTools/distroless/blob/main/base/base.bzl
23+ USER 65532:65532
24+
25+ ENTRYPOINT [ "/audito-maldito" ]
You can’t perform that action at this time.
0 commit comments