Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: Full revamp of Dockerfile #319

Closed
wants to merge 14 commits into from
+884 −140
Closed

feat: Full revamp of Dockerfile #319

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
d629017
few scipts
balihb Jan 3, 2022
de7c22e
Merge branch 'master' into scripts
balihb Jan 3, 2022
8e41414
midway
balihb Jan 5, 2022
7e67c04
comond codes
balihb Jan 5, 2022
522b232
fix echo
balihb Jan 5, 2022
f2bf4b3
build for arm too
balihb Jan 6, 2022
83ce353
echo-versions
balihb Jan 6, 2022
924708b
ci tests
balihb Jan 7, 2022
35d94a2
remove verbose logging from scripts
balihb Jan 11, 2022
b5c5a12
Merge remote-tracking branch 'o/master' into scripts
balihb Jan 11, 2022
3e4fac3
remove docker tests
balihb Jan 11, 2022
d76df2c
install hadolint
balihb Jan 11, 2022
84f238c
hadolint url fix
balihb Jan 11, 2022
e7df8d0
fix install_all dependencies
balihb Jan 11, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
44 changes: 44 additions & 0 deletions .container-structure-test-config.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,44 @@
schemaVersion: '2.0.0'
commandTests:
- name: "pre-commit"
command: "pre-commit"
args: ["-V"]
expectedOutput: ["^pre-commit ([0-9]+\\.){2}[0-9]+\\n$"]
- name: "terraform"
command: "terraform"
args: ["-version"]
expectedOutput: ["^Terraform v([0-9]+\\.){2}[0-9]+\\non linux_amd64\\n$"]
- name: "checkov"
command: "checkov"
args: ["--version"]
expectedOutput: ["^([0-9]+\\.){2}[0-9]+\\n$"]
- name: "infracost"
command: "infracost"
args: ["--version"]
expectedOutput: ["^Infracost v([0-9]+\\.){2}[0-9]+\\n$"]
- name: "terraform-docs"
command: "terraform-docs"
args: ["--version"]
expectedOutput: ["^terraform-docs version v([0-9]+\\.){2}[0-9]+ [a-z0-9]+ linux/amd64\\n$"]
- name: "terragrunt"
command: "terragrunt"
args: ["--version"]
expectedOutput: ["^terragrunt version v([0-9]+\\.){2}[0-9]+\\n$"]
- name: "terrascan"
command: "terrascan"
args: [ "version" ]
expectedOutput: [ "^version: v([0-9]+\\.){2}[0-9]+\\n$" ]
- name: "tflint"
command: "tflint"
args: [ "--version" ]
expectedOutput: [ "TFLint version ([0-9]+\\.){2}[0-9]+\\n$" ]
- name: "tfsec"
command: "tfsec"
args: [ "--version" ]
expectedOutput: [ "([0-9]+\\.){2}[0-9]+\\n$" ]
fileExistenceTests:
- name: 'terrascan init'
path: '/root/.terrascan/pkg/policies/opa/rego/github/github_repository/privateRepoEnabled.rego'
shouldExist: true
uid: 0
gid: 0
13 changes: 13 additions & 0 deletions .dive-ci.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
rules:
# If the efficiency is measured below X%, mark as failed.
# Expressed as a ratio between 0-1.
lowestEfficiency: 0.99

# If the amount of wasted space is at least X or larger than X, mark as failed.
# Expressed in B, KB, MB, and GB.
highestWastedBytes: 1MB

# If the amount of wasted space makes up for X% or more of the image, mark as failed.
# Note: the base image layer is NOT included in the total image size.
# Expressed as a ratio between 0-1; fails if the threshold is met or crossed.
highestUserWastedPercent: 0.5
10 changes: 7 additions & 3 deletions .dockerignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,7 @@
*
!.dockerignore
!Dockerfile
Dockerfile
.dockerignore
.editorconfig
.pre-commit-config.yaml
.github
.gitignore
.hadolint.yaml
27 changes: 26 additions & 1 deletion .github/workflows/build-image.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,8 +12,13 @@ jobs:
steps:
- name: Checkout code
uses: actions/checkout@v2
- uses: hadolint/[email protected]
with:
dockerfile: ./Dockerfile
- name: Set up QEMU
uses: docker/setup-qemu-action@v1
with:
platforms: arm64
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v1
- name: Login to GitHub Container Registry
Expand All @@ -31,7 +36,27 @@ jobs:
context: .
build-args: |
INSTALL_ALL=true
platforms: linux/amd64
load: true
tags: |
ghcr.io/${{ github.repository }}:${{ env.IMAGE_TAG }}
- name: run structure tests
uses: plexsystems/[email protected]
with:
image: ghcr.io/${{ github.repository }}:${{ env.IMAGE_TAG }}
config: ${{ github.workspace }}/.container-structure-test-config.yaml
- name: Dive
uses: yuichielectric/[email protected]
with:
image: ghcr.io/${{ github.repository }}:${{ env.IMAGE_TAG }}
config-file: ${{ github.workspace }}/.dive-ci.yml
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Build and Push
uses: docker/build-push-action@v2
with:
context: .
build-args: |
INSTALL_ALL=true
platforms: linux/amd64,linux/arm64
push: true
tags: |
ghcr.io/${{ github.repository }}:${{ env.IMAGE_TAG }}
7 changes: 7 additions & 0 deletions .github/workflows/pre-commit.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,13 @@ jobs:
- name: Install shellcheck
run: |
sudo apt update && sudo apt install shellcheck


- name: Install hadolint
run: |
curl -L "$(curl -s https://api.github.com/repos/hadolint/hadolint/releases/latest | grep -o -E -m 1 "https://.+?/hadolint-Linux-x86_64")" > hadolint \
&& chmod +x hadolint && sudo mv hadolint /usr/bin/

# Need to success pre-commit fix push
- uses: actions/checkout@v2
with:
Expand Down
Loading