Skip to content

Commit 5ba69f0

Browse files
amanstepamanstep
committed
feat: made changes to Dockerfile addressing security concerns
1 parent 94e33f8 commit 5ba69f0

File tree

3 files changed

+10
-62
lines changed

3 files changed

+10
-62
lines changed

.github/workflows/licensing.yaml

Lines changed: 0 additions & 21 deletions
This file was deleted.

Dockerfile

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1,17 +1,17 @@
1-
FROM --platform=$TARGETARCH ghcr.io/planetscale/ghcommit:v0.1.74 AS ghcommit
1+
FROM golang:1.25-alpine3.22
22

3-
# hadolint ignore=DL3007
4-
FROM --platform=$TARGETARCH pscale.dev/wolfi-prod/base:latest AS base
5-
6-
COPY --from=ghcommit /ghcommit /usr/bin/ghcommit
3+
ARG GHCOMMIT_VERSION=v0.1.75
74

85
# hadolint ignore=DL3018
9-
RUN apk add --no-cache \
10-
bash \
11-
git-crypt \
12-
curl \
13-
git
6+
RUN apk add --no-cache bash git-crypt curl git
7+
8+
# Download and build ghcommit from source
9+
RUN git clone --depth 1 --branch "${GHCOMMIT_VERSION}" https://github.com/planetscale/ghcommit.git /ghcommit
10+
WORKDIR /ghcommit
11+
RUN go mod download
12+
RUN CGO_ENABLED=0 go build -o /usr/bin/ghcommit .
1413

1514
COPY entrypoint.sh /entrypoint.sh
15+
RUN chmod +x /entrypoint.sh /usr/bin/ghcommit
1616

1717
ENTRYPOINT ["/entrypoint.sh"]

doc/dependency_decisions.yml

Lines changed: 0 additions & 31 deletions
This file was deleted.

0 commit comments

Comments
 (0)