From ccf9e3a4a828df1ec741f6c8e6ed9d0acaef3490 Mon Sep 17 00:00:00 2001 From: Jason Birchall <31217584+jasonBirchall@users.noreply.github.com> Date: Tue, 29 Oct 2024 15:35:46 +0000 Subject: [PATCH] :recycle: Update Dockerfile to use CMD for passing GitHub Action inputs (#287) * :recycle: Update Dockerfile to use CMD for passing GitHub Action inputs * :recycle: Use the entrypoint method of collecting inputs As per the instructions here --- check-version-pinning/Dockerfile | 6 +++++- check-version-pinning/check_version_pinning.py | 2 ++ check-version-pinning/entrypoint.sh | 6 ++++++ 3 files changed, 13 insertions(+), 1 deletion(-) create mode 100644 check-version-pinning/entrypoint.sh diff --git a/check-version-pinning/Dockerfile b/check-version-pinning/Dockerfile index 52489d3..e8c28cb 100644 --- a/check-version-pinning/Dockerfile +++ b/check-version-pinning/Dockerfile @@ -9,4 +9,8 @@ RUN pip install --no-cache-dir -r requirements.txt COPY check_version_pinning.py /app/check_version_pinning.py -ENTRYPOINT ["python", "/app/check_version_pinning.py", "${{ inputs.workflow_directory }}", "${{ inputs.scan_mode }}"] +COPY entrypoint.sh /entrypoint.sh + +RUN chmod +x /entrypoint.sh + +ENTRYPOINT ["/entrypoint.sh"] diff --git a/check-version-pinning/check_version_pinning.py b/check-version-pinning/check_version_pinning.py index bfcd17b..9bec909 100644 --- a/check-version-pinning/check_version_pinning.py +++ b/check-version-pinning/check_version_pinning.py @@ -87,4 +87,6 @@ def check_version_pinning(workflow_directory=".github/workflows", scan_mode="ful if __name__ == "__main__": workflow_directory = sys.argv[1] if len(sys.argv) > 1 else ".github/workflows" scan_mode = sys.argv[2] if len(sys.argv) > 2 else "full" + print(f"Scan mode: {scan_mode}") + check_version_pinning(workflow_directory, scan_mode) diff --git a/check-version-pinning/entrypoint.sh b/check-version-pinning/entrypoint.sh new file mode 100644 index 0000000..8e8204a --- /dev/null +++ b/check-version-pinning/entrypoint.sh @@ -0,0 +1,6 @@ +#!/bin/bash + +WORKFLOW_DIRECTORY="${1:-.github/workflows}" +SCAN_MODE="${2:-full}" + +python /app/check_version_pinning.py "$WORKFLOW_DIRECTORY" "$SCAN_MODE"