Skip to content

Commit

Permalink
dockerfile changes
Browse files Browse the repository at this point in the history 
* fix libexpat CVE
* change dir to tmp to support both openshift and kubernetes for temp file store
* add apk upgrade to get latest package fixes
  • Loading branch information
@pgvishnuram
pgvishnuram committed Feb 10, 2022
1 parent 688ae5f commit eed18ff
Showing 1 changed file with 7 additions and 11 deletions.
18 changes: 7 additions & 11 deletions Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,9 +7,8 @@ RUN go get github.com/jsha/minica

FROM python:3.9-alpine3.15

# fix libexpat
RUN apk update \
&& apk add --no-cache expat
# upgrade apk packages
RUN apk upgrade

# Upgrade pip
RUN pip install --upgrade pip
Expand All @@ -18,21 +17,18 @@ RUN pip install --upgrade pip
RUN addgroup -g 1000 -S certgenerator \
&& adduser -u 1000 -S certgenerator -G certgenerator

USER certgenerator

WORKDIR /home/certgenerator
WORKDIR /certgenerator

COPY --from=builder /go/bin/minica /usr/bin/minica

COPY --chown=certgenerator:certgenerator . .

RUN pip install --user --no-cache-dir .
RUN pip install --no-cache-dir .

ENV PATH="/home/certgenerator/.local/bin:${PATH}"
WORKDIR /tmp

USER certgenerator

ENTRYPOINT ["certgenerator"]

CMD ["--help"]



0 comments on commit eed18ff

Please sign in to comment.