Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Docker attestation and provenance #445

Merged
merged 3 commits into from
Feb 23, 2024
Merged

Add Docker attestation and provenance #445

merged 3 commits into from
Feb 23, 2024

Commits on Feb 19, 2024

  1. Dockerfile 

    - change user to nonroot
- add the BUILDKIT_SBOM_SCAN_CONTEXT buildarg for proper SBOM creation
Docker/build.py
- add provenance
- add sbom attestation
- some formattíng
    @dkuegler
    dkuegler committed Feb 19, 2024
    Configuration menu
    Copy the full SHA
    4e45d83 View commit details
    Browse the repository at this point in the history

  2. Docker/Dockerfile 

    - add FREESURFER_URL build-arg and pass the URL to install_fs_pruned.sh
Docker/install_fs_pruned.sh
- add option to download FreeSurfer froma different URL
- optimize upx option for multiple threads
- reorder so upx runs before link are created
Docker/build.py
- add --attest argument
- change building logic, so it works with docker-container
- add attestation logic
    @dkuegler
    dkuegler committed Feb 19, 2024
    Configuration menu
    Copy the full SHA
    9123515 View commit details
    Browse the repository at this point in the history

Commits on Feb 23, 2024

  1. build.py 

    - Add action push (no containerd requirement for attestation build)
- TODO: FastSurfer/FreeSurfer are not found by the scanner and thus are not in the SBOM

Docker/README.md
- Add documentation on how to build with attestation
    @dkuegler
    dkuegler committed Feb 23, 2024
    Configuration menu
    Copy the full SHA
    0f08ecd View commit details
    Browse the repository at this point in the history