aaron/ansible-lint
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity

Set default to rootless but provide seperate root image
Some checks failed
ci/woodpecker/push/woodpecker Pipeline failed
Details

Browse source
This commit is contained in:
Aaron Riedel 2025-03-16 12:21:40 +01:00
parent 40754698e0
commit 25b3e875b0
Signed by: aaron
GPG key ID: 643004654D40D577
3 changed files with 49 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
.woodpecker.yaml
View file

@ -18,6 +18,28 @@ steps:
when: when:
- branch: main - branch: main
event: [push, manual] event: [push, manual]
- name: docker-root
image: woodpeckerci/plugin-docker-buildx
privileged: true
settings:
dockerfile: Dockerfile-root
registry: git.ar21.de
username:
from_secret: REGISTRY_USER
password:
from_secret: REGISTRY_PASS
repo: git.ar21.de/aaron/ansible-lint
tags:
- root
- root-${CI_PIPELINE_NUMBER}
platforms:
- linux/arm64
- linux/amd64
when:
- branch: main
event: [push, manual]
- name: docker-build - name: docker-build
image: woodpeckerci/plugin-docker-buildx image: woodpeckerci/plugin-docker-buildx
privileged: true privileged: true

16
Dockerfile
View file

@ -1,17 +1,17 @@
FROM python:3.13.2-slim-bookworm FROM python:3.13.2-slim-bookworm
RUN apt-get update -qq && apt-get install -qq git --no-install-recommends && rm -rf /var/lib/apt/lists/* RUN apt-get update -qq && apt-get install -qq git --no-install-recommends && rm -rf /var/lib/apt/lists/*
WORKDIR ./ WORKDIR ./
# ARG PUID=1000 ARG PUID=1000
# ENV GROUP dockergroup ENV GROUP dockergroup
# ENV USER docker ENV USER docker
# ENV HOMEDIR "/home/${USER}" ENV HOMEDIR "/home/${USER}"
# ENV PATH ${HOMEDIR}/.local/bin:$PATH ENV PATH ${HOMEDIR}/.local/bin:$PATH
ENV PLUGIN_PROFILE production ENV PLUGIN_PROFILE production
# RUN useradd -u "${PUID}" -m "${USER}" RUN useradd -u "${PUID}" -m "${USER}"
COPY script.sh /bin/ COPY script.sh /bin/
RUN chmod +x /bin/script.sh RUN chmod +x /bin/script.sh
# USER ${USER} USER ${USER}
# WORKDIR ${HOMEDIR} WORKDIR ${HOMEDIR}
COPY requirements.txt . COPY requirements.txt .
RUN pip install --no-cache-dir -r requirements.txt RUN pip install --no-cache-dir -r requirements.txt
RUN rm requirements.txt RUN rm requirements.txt

19
Dockerfile-root Normal file
View file

@ -0,0 +1,19 @@
FROM python:3.13.2-slim-bookworm
RUN apt-get update -qq && apt-get install -qq git --no-install-recommends && rm -rf /var/lib/apt/lists/*
WORKDIR ./
# ARG PUID=1000
# ENV GROUP dockergroup
# ENV USER docker
# ENV HOMEDIR "/home/${USER}"
# ENV PATH ${HOMEDIR}/.local/bin:$PATH
ENV PLUGIN_PROFILE production
# RUN useradd -u "${PUID}" -m "${USER}"
COPY script.sh /bin/
RUN chmod +x /bin/script.sh
# USER ${USER}
# WORKDIR ${HOMEDIR}
COPY requirements.txt .
RUN pip install --no-cache-dir -r requirements.txt
RUN rm requirements.txt
ENTRYPOINT [ "script.sh" ]