github-mirrors/VictoriaMetrics
1
0
Fork 0
mirror of https://github.com/VictoriaMetrics/VictoriaMetrics.git synced 2024-11-21 14:44:00 +00:00
Code Issues Projects Releases Packages Wiki Activity

deployment/docker/Makefile: added docker-scan (#2916)

Browse source 
* deployment/docker/Makefile: added docker-scan

docker-scan based on native 'docker scan' function that use snyk.io, see https://docs.docker.com/engine/scan/

* set to call 'docker-scan after release binaries but before publishing
This commit is contained in:
Denys Holius 2022-08-02 09:54:39 +03:00 committed by GitHub
parent bf65709540
commit 5d364545bd
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Makefile
View file

@ -29,7 +29,7 @@ all: \
clean: clean:
rm -rf bin/* rm -rf bin/*
publish: \ publish: docker-scan \
publish-victoria-metrics \ publish-victoria-metrics \
publish-vmagent \ publish-vmagent \
publish-vmalert \ publish-vmalert \

3
deployment/docker/Makefile
View file

@ -16,6 +16,9 @@ package-base:
--tag $(BASE_IMAGE) \ --tag $(BASE_IMAGE) \
deployment/docker/base deployment/docker/base
docker-scan: package-base
docker scan --accept-license $(BASE_IMAGE) || (echo "❌ The build has been terminated because critical vulnerabilities were found in $(BASE_IMAGE)"; exit 1)
package-builder: package-builder:
(docker image ls --format '{{.Repository}}:{{.Tag}}' | grep -q '$(BUILDER_IMAGE)$$') \ (docker image ls --format '{{.Repository}}:{{.Tag}}' | grep -q '$(BUILDER_IMAGE)$$') \
|| docker build \ || docker build \