fix: limit scope of testing repo

This commit is contained in:
Stefan Reimer 2022-06-27 20:40:57 +02:00
parent dac6a11564
commit 7a707c781a

View File

@ -7,9 +7,7 @@ FROM jenkins/inbound-agent:${BASE}
ARG USER=jenkins
USER root
RUN echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories \
&& apk upgrade -U --available --no-cache \
&& apk add --no-cache \
RUN apk upgrade -U --available --no-cache && apk add --no-cache \
tini \
make \
yq \
@ -17,7 +15,10 @@ RUN echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/reposit
fuse-overlayfs \
podman \
buildah \
aws-cli \
aws-cli
RUN echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories && \
apk upgrade -U --available --no-cache && apk add --no-cache \
trivy
# Trivy html template
@ -48,9 +49,9 @@ ENV _CONTAINERS_USERNS_CONFIGURED=""
ENV BUILDAH_ISOLATION=chroot
ENV TRIVY_TEMPLATE="@/home/jenkins/html.tpl"
USER jenkins
USER $USER
# Allow container layers to be stored in PVCs
VOLUME /home/jenkins/.local/share/containers
VOLUME /home/$USER/.local/share/containers
ENTRYPOINT ["/sbin/tini", "--", "/usr/local/bin/jenkins-agent"]