-
Notifications
You must be signed in to change notification settings - Fork 6
/
Dockerfile.dind
35 lines (27 loc) · 1.14 KB
/
Dockerfile.dind
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
FROM python:3.11-slim
ENV LW_SCANNER_VERSION=0.14.1
RUN apt-get update && apt-get install -y \
ca-certificates \
curl \
gnupg \
lsb-release \
wget
RUN curl -fsSL https://download.docker.com/linux/debian/gpg | gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg \
&& echo "deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/debian \
$(lsb_release -cs) stable" | tee /etc/apt/sources.list.d/docker.list > /dev/null \
&& apt-get update \
&& apt-get install docker-ce docker-ce-cli -y \
&& rm -rf /var/lib/apt/lists/*
RUN wget https://github.com/lacework/lacework-vulnerability-scanner/releases/download/v${LW_SCANNER_VERSION}/lw-scanner-linux-amd64 \
&& mv lw-scanner-linux-amd64 /usr/local/bin/lw-scanner \
&& chmod +x /usr/local/bin/lw-scanner \
&& apt-get purge curl gnupg lsb-release wget -y
ENV LC_ALL=C.UTF-8
ENV LANG=C.UTF-8
WORKDIR /app
RUN mkdir cache
COPY requirements.txt ./
RUN pip install -r requirements.txt
COPY utils/*.py utils/
COPY auto_scan.py ./
ENTRYPOINT [ "python", "-u", "/app/auto_scan.py" ]