36dd5b79ca
This addresses CVE-2023-29402, CVE-2023-29403, CVE-2023-29404, CVE-2023-29405 which were patched in 1.19.10. Signed-off-by: Ben Manuel <ben.manuel@procore.com>
23 lines
849 B
Docker
23 lines
849 B
Docker
# syntax=docker/dockerfile:1
|
|
|
|
ARG GO_VERSION=1.19.10
|
|
ARG ALPINE_VERSION=3.18
|
|
|
|
FROM alpine:${ALPINE_VERSION} AS base
|
|
RUN apk add --no-cache git gpg
|
|
|
|
FROM golang:${GO_VERSION}-alpine${ALPINE_VERSION} AS gitvalidation
|
|
ARG GIT_VALIDATION_VERSION=v1.1.0
|
|
RUN --mount=type=cache,target=/root/.cache \
|
|
--mount=type=cache,target=/go/pkg/mod \
|
|
GOBIN=/out go install "github.com/vbatts/git-validation@${GIT_VALIDATION_VERSION}"
|
|
|
|
FROM base AS validate
|
|
ARG COMMIT_RANGE
|
|
RUN if [ -z "$COMMIT_RANGE" ]; then echo "COMMIT_RANGE required" && exit 1; fi
|
|
ENV GIT_CHECK_EXCLUDE="./vendor"
|
|
WORKDIR /src
|
|
RUN --mount=type=bind,target=. \
|
|
--mount=type=cache,target=/root/.cache \
|
|
--mount=from=gitvalidation,source=/out/git-validation,target=/usr/bin/git-validation \
|
|
git-validation -q -range "${COMMIT_RANGE}" -run short-subject,dangling-whitespace
|