docker/attest-provider
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
1fce13823c91c94b0fdac4f2356fa93905092308
attest-provider/Dockerfile
attest-release[bot] 6b99024a27 chore: update attest to 0.5.1 
- also set user agent in context
2024-09-10 13:00:42 +01:00

40 lines
1014 B
Docker
Raw Blame History

ARG BUILDERIMAGE="golang:1.22"
ARG BASEIMAGE="gcr.io/distroless/static:nonroot"
FROM ${BUILDERIMAGE} AS builder
ENV CGO_ENABLED=0
WORKDIR /app
# --- This block can be removed when github.com/docker/attest is public
ENV GOPRIVATE="github.com/docker/attest"
RUN --mount=type=secret,id=GITHUB_TOKEN <<EOT
set -e
GITHUB_TOKEN=${GITHUB_TOKEN:-$(cat /run/secrets/GITHUB_TOKEN)}
if [ -n "$GITHUB_TOKEN" ]; then
echo "Setting GitHub access token"
git config --global "url.https://x-access-token:${GITHUB_TOKEN}@github.com.insteadof" "https://github.com"
fi
EOT
# ---
ARG VERSION="dev"
RUN --mount=type=bind,source=.,target=/app \
--mount=type=cache,target=$GOPATH/pkg/mod \
--mount=type=cache,target=/root/.cache/go-build \
go build -ldflags "-X main.version=$VERSION" -o /bin/attest main.go
FROM ${BASEIMAGE} AS production
COPY --from=builder /bin/attest /
USER 65532:65532
ENTRYPOINT ["/attest"]
FROM production AS dev
COPY --chown=65532:65532 certs/tls.crt certs/tls.key /certs/
Reference in New Issue View Git Blame Copy Permalink