forked from jumanjihouse/docker-ssllabs-scan
/
Dockerfile
68 lines (56 loc) · 1.9 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
FROM alpine:3.8 as scanner_builder
ARG VERSION
RUN apk add --no-cache \
curl \
musl-dev \
&& :
RUN apk add --no-cache -X http://dl-4.alpinelinux.org/alpine/edge/community \
'go>=1.10.1-r0' \
&& :
RUN apk add --no-cache -X http://dl-4.alpinelinux.org/alpine/edge/main \
'ca-certificates>=20171114-r3' \
&& :
RUN adduser -D developer
# Run subsequent commands as "developer".
USER developer
# https://github.com/golang/go/issues/9344#issuecomment-69944514
RUN cd /tmp && \
curl -sSLO https://github.com/ssllabs/ssllabs-scan/archive/v${VERSION}.tar.gz && \
tar xvzf v${VERSION}.tar.gz && \
cd ssllabs-scan-${VERSION} && \
GOPATH=~ \
CGO_ENABLED=0 \
GOOS=linux \
LIBRARY_PATH=/usr/lib/x86_64-linux-gnu:$LIBRARY_PATH \
go build \
-a \
-tags netgo \
-ldflags '-extldflags "-static" -s' \
-buildmode exe \
ssllabs-scan.go
#
# Build the runtime image.
#
FROM scratch
USER user
ENTRYPOINT ["/ssllabs-scan"]
CMD ["--help"]
ARG VERSION
COPY --from=scanner_builder /tmp/ssllabs-scan-${VERSION}/ssllabs-scan /
COPY --from=scanner_builder /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
COPY . /
ARG CIRCLE_BUILD_URL
ARG BUILD_DATE
ARG VCS_REF
LABEL \
io.github.jumanjiman.ci-build-url=$CIRCLE_BUILD_URL \
org.label-schema.name="jumanjiman/ssllabs-scan" \
org.label-schema.description="scans secure websites with the Qualys SSL Labs service" \
org.label-schema.url="https://github.com/jumanjihouse/docker-ssllabs-scan" \
org.label-schema.vcs-url="https://github.com/jumanjihouse/docker-ssllabs-scan.git" \
org.label-schema.docker.dockerfile="/Dockerfile.runtime" \
org.label-schema.vcs-type="Git" \
org.label-schema.license="https://www.ssllabs.com/about/terms.html" \
org.label-schema.build-date=$BUILD_DATE \
org.label-schema.vcs-ref=$VCS_REF \
org.label-schema.version=$VERSION