f08898c2c3
It'd appear 1.20.10 is triggering some scanner alerts. Though these are not critical, it costs us very little effort to bump the runtime one minor version higher. Signed-off-by: Milos Gajdos <milosthegajdos@gmail.com>
23 lines
849 B
Docker
23 lines
849 B
Docker
# syntax=docker/dockerfile:1
|
|
|
|
ARG GO_VERSION=1.20.11
|
|
ARG ALPINE_VERSION=3.18
|
|
|
|
FROM alpine:${ALPINE_VERSION} AS base
|
|
RUN apk add --no-cache git gpg
|
|
|
|
FROM golang:${GO_VERSION}-alpine${ALPINE_VERSION} AS gitvalidation
|
|
ARG GIT_VALIDATION_VERSION=v1.1.0
|
|
RUN --mount=type=cache,target=/root/.cache \
|
|
--mount=type=cache,target=/go/pkg/mod \
|
|
GOBIN=/out go install "github.com/vbatts/git-validation@${GIT_VALIDATION_VERSION}"
|
|
|
|
FROM base AS validate
|
|
ARG COMMIT_RANGE
|
|
RUN if [ -z "$COMMIT_RANGE" ]; then echo "COMMIT_RANGE required" && exit 1; fi
|
|
ENV GIT_CHECK_EXCLUDE="./vendor"
|
|
WORKDIR /src
|
|
RUN --mount=type=bind,target=. \
|
|
--mount=type=cache,target=/root/.cache \
|
|
--mount=from=gitvalidation,source=/out/git-validation,target=/usr/bin/git-validation \
|
|
git-validation -q -range "${COMMIT_RANGE}" -run short-subject,dangling-whitespace
|