Skip to content
build

Replaces useradd with adduser in th ealpine build of fastcgi client #9

Sign in to view logs

Replaces useradd with adduser in th ealpine build of fastcgi client

Replaces useradd with adduser in th ealpine build of fastcgi client #9

Workflow file for this run

.github/workflows/ci-redcap-httpd-shibd.yaml at cb2f158
name: build
on:
push:
branches:
- main
- dev
pull_request:
jobs:
lint-redcap-httpd-shibd:
name: lint-redcap-httpd-shibd
runs-on: ubuntu-20.04
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Lint Dockerfile with Hadolint
uses: hadolint/[email protected]
with:
dockerfile: ./httpd-shibd/Dockerfile
override-info: DL3008,DL3018,DL3041,SC2046
failure-threshold: warning
scan-redcap-httpd-shibd:
name: scan-redcap-httpd-shibd
needs: lint-redcap-httpd-shibd
runs-on: ubuntu-20.04
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Build container from Dockerfile
run: docker build -t ghcr.io/aphp/redcap-httpd-shibd:${{ github.sha }} ./httpd-shibd
- name: Run Dockle
uses: erzz/[email protected]
with:
image: ghcr.io/aphp/redcap-httpd-shibd:${{ github.sha }}
report-format: json
failure-threshold: fatal
exit-code: 1
- name: Scan container for vulnerabilities with Trivy
uses: aquasecurity/[email protected]
with:
image-ref: 'ghcr.io/aphp/redcap-httpd-shibd:${{ github.sha }}'
format: 'table'
exit-code: '1'
ignore-unfixed: true
scanners: 'vuln,secret,license'
vuln-type: 'os,library'
severity: 'CRITICAL'
push-redcap-httpd-shibd:
name: push-redcap-httpd-shibd
needs: scan-redcap-httpd-shibd
runs-on: ubuntu-24.04
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: 'Login to GitHub Container Registry'
uses: docker/[email protected]
with:
registry: ghcr.io
username: ${{github.actor}}
password: ${{secrets.GITHUB_TOKEN}}
- name: Build and push
uses: docker/[email protected]
with:
context: "{{defaultContext}}:httpd-shibd"
push: true
tags: ghcr.io/aphp/redcap-httpd-shibd:${{ github.sha }}