mirror of
https://github.com/moby/buildkit.git
synced 2026-06-24 08:47:57 +00:00
25 lines
606 B
Docker
25 lines
606 B
Docker
# syntax=docker/dockerfile:1
|
|
|
|
ARG GO_VERSION=1.26
|
|
ARG GOVULNCHECK_VERSION=v1.3.0
|
|
ARG FORMAT="text"
|
|
|
|
FROM golang:${GO_VERSION}-alpine AS base
|
|
WORKDIR /go/src/github.com/moby/buildkit
|
|
RUN apk add --no-cache jq moreutils
|
|
ARG GOVULNCHECK_VERSION
|
|
RUN --mount=type=cache,target=/root/.cache \
|
|
--mount=type=cache,target=/go/pkg/mod \
|
|
go install golang.org/x/vuln/cmd/govulncheck@$GOVULNCHECK_VERSION
|
|
|
|
FROM base AS run
|
|
ARG FORMAT
|
|
RUN --mount=type=bind,target=. <<EOT
|
|
set -ex
|
|
mkdir /out
|
|
govulncheck -format ${FORMAT} ./... | tee /out/govulncheck.out
|
|
EOT
|
|
|
|
FROM scratch AS output
|
|
COPY --from=run /out /
|