diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS new file mode 100644 index 0000000..f6a87d2 --- /dev/null +++ b/.github/CODEOWNERS @@ -0,0 +1 @@ +* @castrojo diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..92c44a8 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,11 @@ +# To get started with Dependabot version updates, you'll need to specify which +# package ecosystems to update and where the package manifests are located. +# Please see the documentation for all configuration options: +# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates + +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" diff --git a/.github/pull.yml b/.github/pull.yml new file mode 100644 index 0000000..75cb884 --- /dev/null +++ b/.github/pull.yml @@ -0,0 +1,6 @@ +version: "1" +rules: + - base: main + upstream: ublue-os:main + mergeMethod: merge + mergeUnstable: false diff --git a/.github/semantic.yml b/.github/semantic.yml new file mode 100644 index 0000000..b5161df --- /dev/null +++ b/.github/semantic.yml @@ -0,0 +1,2 @@ +enabled: true +titleOnly: true diff --git a/.github/workflows/build-bluefin-toolbox.yml b/.github/workflows/build-bluefin-toolbox.yml new file mode 100644 index 0000000..82dbcd1 --- /dev/null +++ b/.github/workflows/build-bluefin-toolbox.yml @@ -0,0 +1,110 @@ +name: Build and Push Bluefin Toolbox Image +on: + schedule: + - cron: '20 22 * * *' # 10:20pm everyday + pull_request: + merge_group: + workflow_dispatch: +env: + IMAGE_NAME: bluefin-cli + IMAGE_TAGS: latest + IMAGE_REGISTRY: ghcr.io/${{ github.repository_owner }} + +concurrency: + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true + +jobs: + push-ghcr: + name: Build and push image + runs-on: ubuntu-22.04 + permissions: + contents: read + packages: write + id-token: write + strategy: + fail-fast: false + steps: + # Checkout push-to-registry action GitHub repository + - name: Checkout Push to Registry action + uses: actions/checkout@v4 + + - name: Verify base container + uses: EyeCantCU/cosign-action/verify@v0.2.1 + with: + containers: wolfi-base + cert-identity: https://github.com/chainguard-images/images/.github/workflows/release.yaml@refs/heads/main + oidc-issuer: https://token.actions.githubusercontent.com + registry: cgr.dev/chainguard + + # Build metadata + - name: Image Metadata + uses: docker/metadata-action@v5 + id: meta + with: + images: | + ${{ env.IMAGE_NAME }} + labels: | + io.artifacthub.package.readme-url=https://raw.githubusercontent.com/ublue-os/boxkit/main/README.md + + # Build image using Buildah action + - name: Build Image + id: build_image + uses: redhat-actions/buildah-build@v2 + with: + containerfiles: | + ./toolboxes/bluefin-cli/Containerfile.bluefin-cli + image: ${{ env.IMAGE_NAME }} + tags: ${{ env.IMAGE_TAGS }} + labels: ${{ steps.meta.outputs.labels }} + oci: false + + # Workaround bug where capital letters in your GitHub username make it impossible to push to GHCR. + # https://github.com/macbre/push-to-ghcr/issues/12 + - name: Lowercase Registry + id: registry_case + uses: ASzc/change-string-case-action@v6 + with: + string: ${{ env.IMAGE_REGISTRY }} + + # Push the image to GHCR (Image Registry) + - name: Push To GHCR + uses: redhat-actions/push-to-registry@v2 + if: github.event_name != 'pull_request' + id: push + env: + REGISTRY_USER: ${{ github.actor }} + REGISTRY_PASSWORD: ${{ github.token }} + with: + image: ${{ steps.build_image.outputs.image }} + tags: ${{ steps.build_image.outputs.tags }} + registry: ${{ steps.registry_case.outputs.lowercase }} + username: ${{ env.REGISTRY_USER }} + password: ${{ env.REGISTRY_PASSWORD }} + + - name: Login to GitHub Container Registry + uses: docker/login-action@v3 + if: github.event_name != 'pull_request' + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + # Sign container + - uses: sigstore/cosign-installer@v3.3.0 + if: github.event_name != 'pull_request' + + - name: Sign container image + if: github.event_name != 'pull_request' + run: | + echo "${{ env.COSIGN_PRIVATE_KEY }}" > cosign.key + wc -c cosign.key + cosign sign -y --key cosign.key ${{ steps.registry_case.outputs.lowercase }}/${{ env.IMAGE_NAME }}@${TAGS} + env: + TAGS: ${{ steps.push.outputs.digest }} + COSIGN_EXPERIMENTAL: false + COSIGN_PRIVATE_KEY: ${{ secrets.SIGNING_SECRET }} + + - name: Echo outputs + run: | + echo "${{ toJSON(steps.push.outputs) }}" diff --git a/.github/workflows/build-fedora-toolbox.yml b/.github/workflows/build-fedora-toolbox.yml new file mode 100644 index 0000000..ae4504b --- /dev/null +++ b/.github/workflows/build-fedora-toolbox.yml @@ -0,0 +1,106 @@ +name: Build and Push Fedora Toolbox Image +on: + schedule: + - cron: '20 22 * * *' # 10:20pm everyday + pull_request: + merge_group: + workflow_dispatch: +env: + IMAGE_NAME: fedora-toolbox + IMAGE_TAGS: latest + IMAGE_REGISTRY: ghcr.io/${{ github.repository_owner }} + +concurrency: + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true + +jobs: + push-ghcr: + name: Build and push image + runs-on: ubuntu-22.04 + permissions: + contents: read + packages: write + id-token: write + strategy: + fail-fast: false + steps: + # Checkout push-to-registry action GitHub repository + - name: Checkout Push to Registry action + uses: actions/checkout@v4 + + - name: Verify Fedora distrobox + uses: EyeCantCU/cosign-action/verify@v0.2.1 + with: + containers: fedora-distrobox:latest + + # Build metadata + - name: Image Metadata + uses: docker/metadata-action@v5 + id: meta + with: + images: | + ${{ env.IMAGE_NAME }} + labels: | + io.artifacthub.package.readme-url=https://raw.githubusercontent.com/ublue-os/boxkit/main/README.md + + # Build image using Buildah action + - name: Build Image + id: build_image + uses: redhat-actions/buildah-build@v2 + with: + containerfiles: | + ./toolboxes/fedora-toolbox/Containerfile.fedora + image: ${{ env.IMAGE_NAME }} + tags: ${{ env.IMAGE_TAGS }} + labels: ${{ steps.meta.outputs.labels }} + oci: false + + # Workaround bug where capital letters in your GitHub username make it impossible to push to GHCR. + # https://github.com/macbre/push-to-ghcr/issues/12 + - name: Lowercase Registry + id: registry_case + uses: ASzc/change-string-case-action@v6 + with: + string: ${{ env.IMAGE_REGISTRY }} + + # Push the image to GHCR (Image Registry) + - name: Push To GHCR + uses: redhat-actions/push-to-registry@v2 + if: github.event_name != 'pull_request' + id: push + env: + REGISTRY_USER: ${{ github.actor }} + REGISTRY_PASSWORD: ${{ github.token }} + with: + image: ${{ steps.build_image.outputs.image }} + tags: ${{ steps.build_image.outputs.tags }} + registry: ${{ steps.registry_case.outputs.lowercase }} + username: ${{ env.REGISTRY_USER }} + password: ${{ env.REGISTRY_PASSWORD }} + - name: Login to GitHub Container Registry + uses: docker/login-action@v3 + if: github.event_name != 'pull_request' + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + # Sign container + - uses: sigstore/cosign-installer@v3.3.0 + if: github.event_name != 'pull_request' + + - name: Sign container image + if: github.event_name != 'pull_request' + run: | + echo "${{ env.COSIGN_PRIVATE_KEY }}" > cosign.key + wc -c cosign.key + cosign sign -y --key cosign.key ${{ steps.registry_case.outputs.lowercase }}/${{ env.IMAGE_NAME }}@${TAGS} + env: + TAGS: ${{ steps.push.outputs.digest }} + COSIGN_EXPERIMENTAL: false + COSIGN_PRIVATE_KEY: ${{ secrets.SIGNING_SECRET }} + + - name: Echo outputs + run: | + echo "${{ toJSON(steps.push.outputs) }}" diff --git a/.github/workflows/build-ubuntu-toolbox.yml b/.github/workflows/build-ubuntu-toolbox.yml new file mode 100644 index 0000000..665ab4f --- /dev/null +++ b/.github/workflows/build-ubuntu-toolbox.yml @@ -0,0 +1,108 @@ +name: Build and Push Ubuntu Toolbox Image +on: + schedule: + - cron: '20 22 * * *' # 10:20pm everyday + pull_request: + merge_group: + workflow_dispatch: +env: + IMAGE_NAME: ubuntu-toolbox + IMAGE_TAGS: latest + IMAGE_REGISTRY: ghcr.io/${{ github.repository_owner }} + +concurrency: + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true + +jobs: + push-ghcr: + name: Build and push image + runs-on: ubuntu-22.04 + permissions: + contents: read + packages: write + id-token: write + strategy: + fail-fast: false + steps: + # Checkout push-to-registry action GitHub repository + - name: Checkout Push to Registry action + uses: actions/checkout@v4 + + - name: Verify Ubuntu toolbox + uses: EyeCantCU/cosign-action/verify@v0.2.1 + with: + containers: ubuntu-toolbox:22.04 + pubkey: https://raw.githubusercontent.com/toolbx-images/images/main/quay.io-toolbx-images.pub + registry: quay.io/toolbx-images + + # Build metadata + - name: Image Metadata + uses: docker/metadata-action@v5 + id: meta + with: + images: | + ${{ env.IMAGE_NAME }} + labels: | + io.artifacthub.package.readme-url=https://raw.githubusercontent.com/ublue-os/boxkit/main/README.md + + # Build image using Buildah action + - name: Build Image + id: build_image + uses: redhat-actions/buildah-build@v2 + with: + containerfiles: | + ./toolboxes/ubuntu-toolbox/Containerfile.ubuntu + image: ${{ env.IMAGE_NAME }} + tags: ${{ env.IMAGE_TAGS }} + labels: ${{ steps.meta.outputs.labels }} + oci: false + + # Workaround bug where capital letters in your GitHub username make it impossible to push to GHCR. + # https://github.com/macbre/push-to-ghcr/issues/12 + - name: Lowercase Registry + id: registry_case + uses: ASzc/change-string-case-action@v6 + with: + string: ${{ env.IMAGE_REGISTRY }} + + # Push the image to GHCR (Image Registry) + - name: Push To GHCR + uses: redhat-actions/push-to-registry@v2 + if: github.event_name != 'pull_request' + id: push + env: + REGISTRY_USER: ${{ github.actor }} + REGISTRY_PASSWORD: ${{ github.token }} + with: + image: ${{ steps.build_image.outputs.image }} + tags: ${{ steps.build_image.outputs.tags }} + registry: ${{ steps.registry_case.outputs.lowercase }} + username: ${{ env.REGISTRY_USER }} + password: ${{ env.REGISTRY_PASSWORD }} + - name: Login to GitHub Container Registry + uses: docker/login-action@v3 + if: github.event_name != 'pull_request' + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + # Sign container + - uses: sigstore/cosign-installer@v3.3.0 + if: github.event_name != 'pull_request' + + - name: Sign container image + if: github.event_name != 'pull_request' + run: | + echo "${{ env.COSIGN_PRIVATE_KEY }}" > cosign.key + wc -c cosign.key + cosign sign -y --key cosign.key ${{ steps.registry_case.outputs.lowercase }}/${{ env.IMAGE_NAME }}@${TAGS} + env: + TAGS: ${{ steps.push.outputs.digest }} + COSIGN_EXPERIMENTAL: false + COSIGN_PRIVATE_KEY: ${{ secrets.SIGNING_SECRET }} + + - name: Echo outputs + run: | + echo "${{ toJSON(steps.push.outputs) }}" diff --git a/.github/workflows/build-wolfi-toolbox.yml b/.github/workflows/build-wolfi-toolbox.yml new file mode 100644 index 0000000..c53955a --- /dev/null +++ b/.github/workflows/build-wolfi-toolbox.yml @@ -0,0 +1,110 @@ +name: Build and Push Wolfi Toolbox Image +on: + schedule: + - cron: '20 22 * * *' # 10:20pm everyday + pull_request: + merge_group: + workflow_dispatch: +env: + IMAGE_NAME: wolfi-toolbox + IMAGE_TAGS: latest + IMAGE_REGISTRY: ghcr.io/${{ github.repository_owner }} + +concurrency: + group: ${{ github.workflow }}-${{ github.ref || github.run_id }} + cancel-in-progress: true + +jobs: + push-ghcr: + name: Build and push image + runs-on: ubuntu-22.04 + permissions: + contents: read + packages: write + id-token: write + strategy: + fail-fast: false + steps: + # Checkout push-to-registry action GitHub repository + - name: Checkout Push to Registry action + uses: actions/checkout@v4 + + - name: Verify base container + uses: EyeCantCU/cosign-action/verify@v0.2.1 + with: + containers: wolfi-base + cert-identity: https://github.com/chainguard-images/images/.github/workflows/release.yaml@refs/heads/main + oidc-issuer: https://token.actions.githubusercontent.com + registry: cgr.dev/chainguard + + # Build metadata + - name: Image Metadata + uses: docker/metadata-action@v5 + id: meta + with: + images: | + ${{ env.IMAGE_NAME }} + labels: | + io.artifacthub.package.readme-url=https://raw.githubusercontent.com/ublue-os/boxkit/main/README.md + + # Build image using Buildah action + - name: Build Image + id: build_image + uses: redhat-actions/buildah-build@v2 + with: + containerfiles: | + ./toolboxes/wolfi-toolbox/Containerfile.wolfi + image: ${{ env.IMAGE_NAME }} + tags: ${{ env.IMAGE_TAGS }} + labels: ${{ steps.meta.outputs.labels }} + oci: false + + # Workaround bug where capital letters in your GitHub username make it impossible to push to GHCR. + # https://github.com/macbre/push-to-ghcr/issues/12 + - name: Lowercase Registry + id: registry_case + uses: ASzc/change-string-case-action@v6 + with: + string: ${{ env.IMAGE_REGISTRY }} + + # Push the image to GHCR (Image Registry) + - name: Push To GHCR + uses: redhat-actions/push-to-registry@v2 + if: github.event_name != 'pull_request' + id: push + env: + REGISTRY_USER: ${{ github.actor }} + REGISTRY_PASSWORD: ${{ github.token }} + with: + image: ${{ steps.build_image.outputs.image }} + tags: ${{ steps.build_image.outputs.tags }} + registry: ${{ steps.registry_case.outputs.lowercase }} + username: ${{ env.REGISTRY_USER }} + password: ${{ env.REGISTRY_PASSWORD }} + + - name: Login to GitHub Container Registry + uses: docker/login-action@v3 + if: github.event_name != 'pull_request' + with: + registry: ghcr.io + username: ${{ github.actor }} + password: ${{ secrets.GITHUB_TOKEN }} + + # Sign container + - uses: sigstore/cosign-installer@v3.3.0 + if: github.event_name != 'pull_request' + + - name: Sign container image + if: github.event_name != 'pull_request' + run: | + echo "${{ env.COSIGN_PRIVATE_KEY }}" > cosign.key + wc -c cosign.key + cosign sign -y --key cosign.key ${{ steps.registry_case.outputs.lowercase }}/${{ env.IMAGE_NAME }}@${TAGS} + env: + TAGS: ${{ steps.push.outputs.digest }} + COSIGN_EXPERIMENTAL: false + COSIGN_PRIVATE_KEY: ${{ secrets.SIGNING_SECRET }} + + - name: Echo outputs + run: | + echo "${{ toJSON(steps.push.outputs) }}" diff --git a/.github/workflows/release-please.yml b/.github/workflows/release-please.yml new file mode 100644 index 0000000..7b82819 --- /dev/null +++ b/.github/workflows/release-please.yml @@ -0,0 +1,26 @@ +on: + push: + branches: + - main + +permissions: + contents: write + checks: write + actions: read + packages: write + pull-requests: write + +name: Release Please +jobs: + release-please: + runs-on: ubuntu-latest + outputs: + releases_created: ${{ steps.release-please.outputs.releases_created }} + tag: ${{ steps.release-please.outputs.tag_name }} + upload_url: ${{ steps.release-please.outputs.upload_url }} + steps: + - uses: google-github-actions/release-please-action@v4 + id: release-please + with: + release-type: simple + package-name: release-please-action diff --git a/cosign.pub b/cosign.pub new file mode 100644 index 0000000..f9482c4 --- /dev/null +++ b/cosign.pub @@ -0,0 +1,4 @@ +-----BEGIN PUBLIC KEY----- +MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE7lh7fJMV4dBT2jT1XafixUJa7OVA +cT+QFVD8IfIJIS/KBAc8hx1aslzkH3tfeM0cwyCLB7kOStZ4sh6RyFQD9w== +-----END PUBLIC KEY----- diff --git a/toolboxes/bluefin-cli/Containerfile.bluefin-cli b/toolboxes/bluefin-cli/Containerfile.bluefin-cli new file mode 100644 index 0000000..04de0a7 --- /dev/null +++ b/toolboxes/bluefin-cli/Containerfile.bluefin-cli @@ -0,0 +1,42 @@ +FROM cgr.dev/chainguard/wolfi-base + +LABEL com.github.containers.toolbox="true" \ + usage="This image is meant to be used with the toolbox or distrobox command" \ + summary="A new cloud-native terminal experience powered by Wolfi and Homebrew" \ + maintainer="jorge.castro@gmail.com" + +COPY ./toolboxes/bluefin-cli/packages.bluefin-cli /toolbox-packages +COPY ./toolboxes/bluefin-cli/files/etc /etc + +# Update image +RUN apk update && \ + apk upgrade + +# Add optional packages +RUN grep -v '^#' /toolbox-packages | xargs apk add + +RUN rm /toolbox-packages + +# Have Linuxbrew owned by UID = 1000 +RUN chown -R 1000 /home/linuxbrew + +# Give UID = 1000 sudo +RUN echo "#1000 ALL = (root) NOPASSWD:ALL" >> /etc/sudoers + +# Get Distrobox-host-exec and host-spawn +RUN git clone https://github.com/89luca89/distrobox.git --single-branch /tmp/distrobox && \ + cp /tmp/distrobox/distrobox-host-exec /usr/bin/distrobox-host-exec && \ + wget https://github.com/1player/host-spawn/releases/download/$(cat /tmp/distrobox/distrobox-host-exec | grep host_spawn_version= | cut -d "\"" -f 2)/host-spawn-$(uname -m) -O /usr/bin/host-spawn && \ + chmod +x /usr/bin/host-spawn && \ + rm -drf /tmp/distrobox && \ + ln -fs /bin/sh /usr/bin/sh + +# Make some symlinks +RUN mkdir -p /usr/local/bin && \ + ln -fs /usr/bin/distrobox-host-exec /usr/local/bin/docker && \ + ln -fs /usr/bin/distrobox-host-exec /usr/local/bin/flatpak && \ + ln -fs /usr/bin/distrobox-host-exec /usr/local/bin/podman && \ + ln -fs /usr/bin/distrobox-host-exec /usr/local/bin/rpm-ostree + +# Change root shell to BASH +RUN sed -i -e '/^root/s/\/bin\/ash/\/bin\/bash/' /etc/passwd \ No newline at end of file diff --git a/toolboxes/bluefin-cli/files/etc/profile.d/bluefin-cli-brew-firstrun.sh b/toolboxes/bluefin-cli/files/etc/profile.d/bluefin-cli-brew-firstrun.sh new file mode 100644 index 0000000..b316431 --- /dev/null +++ b/toolboxes/bluefin-cli/files/etc/profile.d/bluefin-cli-brew-firstrun.sh @@ -0,0 +1,16 @@ +if test "$(id -u)" -gt "0" && test ! -f /home/linuxbrew/.firstrun && test -d /home/linuxbrew/.linuxbrew/Cellar; then + touch /home/linuxbrew/.firstrun + if test -n "$(ls -A /home/linuxbrew/.linuxbrew/Cellar)"; then + echo "Relinking Homebrew Cellar" + /home/linuxbrew/.linuxbrew/bin/brew list -1 | while read line + do + /home/linuxbrew/.linuxbrew/bin/brew unlink $line + /home/linuxbrew/.linuxbrew/bin/brew link $line + done + echo "Reinstalling explicictly installed Homebrew packages" + /home/linuxbrew/.linuxbrew/bin/brew leaves | while read line + do + /home/linuxbrew/.linuxbrew/bin/brew reinstall $line + done + fi +fi \ No newline at end of file diff --git a/toolboxes/bluefin-cli/packages.bluefin-cli b/toolboxes/bluefin-cli/packages.bluefin-cli new file mode 100644 index 0000000..c9e0d63 --- /dev/null +++ b/toolboxes/bluefin-cli/packages.bluefin-cli @@ -0,0 +1,6 @@ +bash +brew +command-not-found +git +procps +sudo-rs diff --git a/toolboxes/fedora-toolbox/Containerfile.fedora b/toolboxes/fedora-toolbox/Containerfile.fedora new file mode 100644 index 0000000..4af5b84 --- /dev/null +++ b/toolboxes/fedora-toolbox/Containerfile.fedora @@ -0,0 +1,14 @@ +FROM ghcr.io/ublue-os/fedora-distrobox:latest +# From https://github.com/ublue-os/fedora-distrobox + +LABEL com.github.containers.toolbox="true" \ + usage="This image is meant to be used with the toolbox or distrobox command" \ + summary="A cloud-native terminal experience powered by Fedora" + +COPY ./toolboxes/fedora-toolbox/packages.fedora /toolbox-packages + +RUN dnf -y upgrade && \ + dnf -y install $(> /etc/sudoers \ No newline at end of file diff --git a/toolboxes/ubuntu-toolbox/packages.ubuntu b/toolboxes/ubuntu-toolbox/packages.ubuntu new file mode 100644 index 0000000..8a141ed --- /dev/null +++ b/toolboxes/ubuntu-toolbox/packages.ubuntu @@ -0,0 +1,89 @@ +bc +dbus-x11 +direnv +fzf +libegl1-mesa +libgl1-mesa-glx +libvte-common +make +neofetch +plocate +progress +apt-utils +dialog +dirmngr +gnupg +gnupg-l10n +gnupg-utils +gnupg2 +gpg +ca-certificates +libnsl2 +libpython3-stdlib +gpg-agent +gpg-wks-client +gpg-wks-server +gpgsm +libksba8 +libnpth0 +libpython3.11-minimal +gpgconf +libnss-myhostname +libsqlite3-0 +libtirpc-common +libtirpc3 +libvte-2.91-common +openssl +lsof +pinentry-curses +time +libpython3.11-stdlib +libvulkan1 +media-types +mesa-vulkan-drivers +libbsd0 +libdrm-amdgpu1 +libdrm-common +libdrm-nouveau2 +libdrm-radeon1 +libdrm2 +libedit2 +libegl-mesa0 +libegl1 +libegl1-mesa +libelf1 +libexpat1 +libgbm1 +libgl1 +libgl1-amber-dri +libgl1-mesa-dri +libgl1-mesa-glx +libglapi-mesa +libglvnd0 +libglx-mesa0 +libglx0 +libicu70 +libllvm15 +libpciaccess0 +libsensors-config +libsensors5 +libwayland-client0 +libwayland-server0 +libx11-6 +libx11-data +libx11-xcb1 +libxau6 +libxcb-dri2-0 +libxcb-dri3-0 +libxcb-glx0 +libxcb-present0 +libxcb-randr0 +libxcb-shm0 +libxcb-sync1 +libxcb-xfixes0 +libxcb1 +libxdmcp6 +libxext6 +libxfixes3 +libxml2 +pigz diff --git a/toolboxes/wolfi-toolbox/Containerfile.wolfi b/toolboxes/wolfi-toolbox/Containerfile.wolfi new file mode 100644 index 0000000..219f0f2 --- /dev/null +++ b/toolboxes/wolfi-toolbox/Containerfile.wolfi @@ -0,0 +1,21 @@ +FROM cgr.dev/chainguard/wolfi-base +# Thanks to Nuno do Carmo for the initial prototype + +LABEL com.github.containers.toolbox="true" \ + usage="This image is meant to be used with the toolbox or distrobox command" \ + summary="A blank Wolfi distrobox, suitable for development" \ + maintainer="jorge.castro@gmail.com" + +COPY ./toolboxes/wolfi-toolbox/packages.wolfi /toolbox-packages + +# Update image +RUN apk update && \ + apk upgrade + +# Add optional packages +RUN grep -v '^#' /toolbox-packages | xargs apk add + +RUN rm /toolbox-packages + +# Change root shell to BASH +RUN sed -i -e '/^root/s/\/bin\/ash/\/bin\/bash/' /etc/passwd diff --git a/toolboxes/wolfi-toolbox/packages.wolfi b/toolboxes/wolfi-toolbox/packages.wolfi new file mode 100644 index 0000000..f582ccd --- /dev/null +++ b/toolboxes/wolfi-toolbox/packages.wolfi @@ -0,0 +1,33 @@ +bash +bzip2 +coreutils +curl +diffutils +findmnt +findutils +gnupg +gpg +iproute2 +iputils +keyutils +libcap +mount +ncurses +ncurses-terminfo +net-tools +openssh-client +pigz +posix-libc-utils +procps +rsync +su-exec +tcpdump +tree +tzdata +umount +util-linux +util-linux-misc +wget +xz +zip +vulkan-loader