Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Commitc2ad23c

Browse files
authored
fix: go back to using root user in Dockerfile (#600)
We have to do this because we have no active way to changepermissions to $GITHUB_OUTPUT to a specific user whenrunning the containerAdd trivy ignore to top of Dockerfile to pass lintingSigned-off-by: jmeridth <jmeridth@gmail.com>
1 parent5ee2efc commitc2ad23c

File tree

1 file changed

+2
-7
lines changed

1 file changed

+2
-7
lines changed

‎Dockerfile‎

Lines changed: 2 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,6 @@
11
#checkov:skip=CKV_DOCKER_2
22
#checkov:skip=CKV_DOCKER_3
3+
#trivy:ignore:AVD-DS-0002
34
FROM python:3.13-slim@sha256:58c30f5bfaa718b5803a53393190b9c68bd517c44c6c94c1b6c8c172bcfad040
45
LABEL com.github.actions.name="issue-metrics" \
56
com.github.actions.description="Gather metrics on issues/prs/discussions such as time to first response, count of issues opened, closed, etc." \
@@ -18,13 +19,7 @@ COPY requirements.txt *.py /action/workspace/
1819
RUN python3 -m pip install --no-cache-dir -r requirements.txt \
1920
&& apt-get -y update \
2021
&& apt-get -y install --no-install-recommends git=1:2.47.3-0+deb13u1 \
21-
&& rm -rf /var/lib/apt/lists/* \
22-
&& addgroup --system appuser \
23-
&& adduser --system --ingroup appuser --home /action/workspace --disabled-login appuser \
24-
&& chown -R appuser:appuser /action/workspace
25-
26-
# Run the action as a non-root user
27-
USER appuser
22+
&& rm -rf /var/lib/apt/lists/*
2823

2924
# Add a simple healthcheck to satisfy container scanners
3025
HEALTHCHECK --interval=30s --timeout=10s --start-period=10s --retries=3 \

0 commit comments

Comments
 (0)
[8]ページ先頭
©2009-2025 Movatter.jp