-
Notifications
You must be signed in to change notification settings - Fork 19
/
Dockerfile
56 lines (40 loc) · 2.02 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
#
# Build
#
FROM registry.redhat.io/openshift4/ose-tools-rhel9@sha256:683fe19d6624335d60fcfdd9b53aedac6d299205c4c573e4f334008d92591eb5 AS ose-tools
FROM registry.access.redhat.com/ubi9/go-toolset:1.22.5-1730550521 AS builder
USER root
WORKDIR /workdir/rhtap-cli
COPY installer/ ./installer/
COPY cmd/ ./cmd/
COPY pkg/ ./pkg/
COPY vendor/ ./vendor/
COPY go.mod go.sum Makefile ./
RUN make GOFLAGS='-buildvcs=false'
#
# Run
#
FROM registry.access.redhat.com/ubi9-minimal:9.5-1731604394
LABEL \
name="rhtap-cli" \
com.redhat.component="rhtap-cli" \
description="Red Hat Trusted Application Pipeline allows organizations to curate their own trusted, repeatable pipelines \
that stay compliant with industry requirements. Built on proven, trusted open source technologies, Red Hat \
Trusted Application Pipeline is part of Red Hat Trusted Software Supply Chain, a set of solutions to protect \
users, customers, and partners from risks and vulnerabilities in their software factory." \
io.k8s.description="Red Hat Trusted Application Pipeline allows organizations to curate their own trusted, repeatable pipelines \
that stay compliant with industry requirements. Built on proven, trusted open source technologies, Red Hat \
Trusted Application Pipeline is part of Red Hat Trusted Software Supply Chain, a set of solutions to protect \
users, customers, and partners from risks and vulnerabilities in their software factory." \
summary="Provides the binaries for downloading the RHTAP CLI." \
io.k8s.display-name="Red Hat Trusted Application Pipeline CLI" \
io.openshift.tags="rhtap-cli tas tpa rhdh ec tap openshift"
WORKDIR /rhtap-cli
COPY --from=ose-tools /usr/bin/kubectl /usr/bin/
COPY --from=builder /workdir/rhtap-cli/installer ./
COPY --from=builder /workdir/rhtap-cli/bin/rhtap-cli /usr/local/bin/rhtap-cli
RUN groupadd --gid 1000 -r rhtap-cli && \
useradd -r -d /rhtap-cli -g rhtap-cli -s /sbin/nologin --uid 1000 rhtap-cli
USER rhtap-cli
RUN kubectl version --client
ENTRYPOINT ["rhtap-cli"]