mirror of
https://github.com/distribution/distribution
synced 2024-11-12 05:45:51 +01:00
36dd5b79ca
This addresses CVE-2023-29402, CVE-2023-29403, CVE-2023-29404, CVE-2023-29405 which were patched in 1.19.10. Signed-off-by: Ben Manuel <ben.manuel@procore.com>
19 lines
531 B
Docker
19 lines
531 B
Docker
# syntax=docker/dockerfile:1
|
|
|
|
ARG GO_VERSION=1.19.10
|
|
ARG ALPINE_VERSION=3.18
|
|
ARG GOLANGCI_LINT_VERSION=v1.52
|
|
|
|
FROM golangci/golangci-lint:${GOLANGCI_LINT_VERSION}-alpine AS golangci-lint
|
|
|
|
FROM golang:${GO_VERSION}-alpine${ALPINE_VERSION} AS base
|
|
RUN apk add --no-cache gcc musl-dev
|
|
WORKDIR /src
|
|
|
|
FROM base
|
|
ENV GOFLAGS="-buildvcs=false"
|
|
RUN --mount=type=bind,target=. \
|
|
--mount=type=cache,target=/root/.cache \
|
|
--mount=from=golangci-lint,source=/usr/bin/golangci-lint,target=/usr/bin/golangci-lint \
|
|
golangci-lint run
|