mirror of
https://github.com/mikefarah/yq.git
synced 2024-12-19 20:19:04 +00:00
d7040e3933
There has been a security issue with older Alpine versions and their package manager. https://justi.cz/security/2018/09/13/alpine-apk-rce.html Not sure about 3.7, but the latest 3.8 image has it fixed.
28 lines
663 B
Docker
28 lines
663 B
Docker
FROM golang:1.9 as builder
|
|
|
|
WORKDIR /go/src/mikefarah/yq
|
|
|
|
# cache devtools
|
|
COPY ./scripts/devtools.sh /go/src/mikefarah/yq/scripts/devtools.sh
|
|
RUN ./scripts/devtools.sh
|
|
|
|
# cache vendor
|
|
COPY ./vendor/vendor.json /go/src/mikefarah/yq/vendor/vendor.json
|
|
RUN govendor sync
|
|
|
|
COPY . /go/src/mikefarah/yq
|
|
|
|
RUN CGO_ENABLED=0 make local build
|
|
|
|
# Choose alpine as a base image to make this useful for CI, as many
|
|
# CI tools expect an interactive shell inside the container
|
|
FROM alpine:3.8 as production
|
|
|
|
COPY --from=builder /go/src/mikefarah/yq/yq /usr/bin/yq
|
|
RUN chmod +x /usr/bin/yq
|
|
|
|
ARG VERSION=none
|
|
LABEL version=${VERSION}
|
|
|
|
WORKDIR /workdir
|