-
Notifications
You must be signed in to change notification settings - Fork 14
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
5 changed files
with
150 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -1895,6 +1895,110 @@ jobs: | |
| - name: Image Digest 🔖 | ||
| run: echo ${{ steps.image_build.outputs.digest }} | ||
|
|
||
| ############################ | ||
| # ploigos-tool-cpp_ubi8 # | ||
| ############################ | ||
| ploigos-tool-cpp_ubi8: | ||
| needs: | ||
| - ploigos-base_ubi8 | ||
|
|
||
| runs-on: ubuntu-latest | ||
|
|
||
| env: | ||
| IMAGE_CONTEXT: ./ploigos-tool-cpp | ||
| IMAGE_FILE: Containerfile.ubi8 | ||
| IMAGE_NAME: ploigos-tool-cpp | ||
| IMAGE_TAG_LOCAL: localhost:5000/${{ secrets.REGISTRY_REPOSITORY }}/ploigos-tool-cpp:latest.ubi8 | ||
| IMAGE_TAG_FLAVOR: .ubi8 | ||
| IMAGE_IS_DEFAULT_FLAVOR: true | ||
| BASE_IMAGE_NAME: ploigos-base | ||
| BASE_IMAGE_VERSION: ${{ needs.ploigos-base_ubi8.outputs.version }} | ||
|
|
||
| services: | ||
| registry: | ||
| image: registry:2 | ||
| ports: | ||
| - 5000:5000 | ||
|
|
||
| outputs: | ||
| version: ${{ steps.prep.outputs.version }} | ||
|
|
||
| steps: | ||
| - name: Checkout 🛎️ | ||
| uses: actions/checkout@v2 | ||
|
|
||
| - name: Determine Image Version and Tags ⚙️ | ||
| id: prep | ||
| run: ${GITHUB_WORKSPACE}/.github/scripts/determine-image-version.sh | ||
|
|
||
| - name: Version 📌 | ||
| run: echo ${{ steps.prep.outputs.version }} | ||
|
|
||
| - name: Image Tags 🏷 | ||
| run: echo ${{ steps.prep.outputs.tags }} | ||
|
|
||
| - name: Set up QEMU 🧰 | ||
| uses: docker/[email protected] | ||
|
|
||
| - name: Set up Docker Buildx 🧰 | ||
| uses: docker/[email protected] | ||
| with: | ||
| driver-opts: network=host | ||
|
|
||
| - name: Cache Docker layers 🗃 | ||
| uses: actions/[email protected] | ||
| with: | ||
| path: /tmp/.buildx-cache | ||
| key: ${{ runner.os }}-buildx-${{ github.sha }} | ||
| restore-keys: | | ||
| ${{ runner.os }}-buildx- | ||
| - name: Build Image 🛠 | ||
| id: image_build | ||
| uses: docker/[email protected] | ||
| env: | ||
| IMAGE_BUILD_ARGS: BASE_IMAGE=${{ secrets.REGISTRY_URI }}/${{ secrets.REGISTRY_REPOSITORY }}/${{ env.BASE_IMAGE_NAME }}:${{ env.BASE_IMAGE_VERSION }} | ||
| with: | ||
| context: ${{ env.IMAGE_CONTEXT }} | ||
| file: ${{ env.IMAGE_CONTEXT }}/${{ env.IMAGE_FILE }} | ||
| build-args: ${{ env.IMAGE_BUILD_ARGS }} | ||
| push: true | ||
| tags: ${{ env.IMAGE_TAG_LOCAL }} | ||
| labels: | | ||
| org.opencontainers.image.created=${{ steps.prep.outputs.created }} | ||
| org.opencontainers.image.source=${{ github.repositoryUrl }} | ||
| org.opencontainers.image.version=${{ steps.prep.outputs.version }} | ||
| org.opencontainers.image.revision=${{ github.sha }} | ||
| org.opencontainers.image.licenses=${{ github.event.repository.license.name }} | ||
| cache-from: type=local,src=/tmp/.buildx-cache | ||
| cache-to: type=local,dest=/tmp/.buildx-cache | ||
|
|
||
| - name: Test Image 🧪 | ||
| run: | | ||
| echo "Verify GCC installed" | ||
| docker run ${{ env.IMAGE_TAG_LOCAL }} gcc --help | ||
| - name: Login to External Registry 🔑 | ||
| uses: docker/login-action@v1 | ||
| with: | ||
| registry: ${{ secrets.REGISTRY_URI }} | ||
| username: ${{ secrets.REGISTRY_USERNAME }} | ||
| password: ${{ secrets.REGISTRY_PASSWORD }} | ||
|
|
||
| - name: Push to External Registry 🔺 | ||
| id: push | ||
| run: | | ||
| docker pull ${{ env.IMAGE_TAG_LOCAL }} | ||
| TAGS=${{ steps.prep.outputs.tags }} | ||
| for TAG in ${TAGS//,/ }; do | ||
| docker tag ${{ env.IMAGE_TAG_LOCAL }} ${TAG} | ||
| docker push ${TAG} | ||
| done | ||
| - name: Image Digest 🔖 | ||
| run: echo ${{ steps.image_build.outputs.digest }} | ||
|
|
||
| ############################## | ||
| # ploigos-tool-openscap_ubi8 # | ||
| ############################## | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| Containerfile.ubi8 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| ARG BASE_IMAGE=quay.io/ploigos/ploigos-base:latest.ubi8 | ||
|
|
||
| FROM $BASE_IMAGE | ||
| ARG PLOIGOS_USER_UID | ||
|
|
||
| # labels | ||
| ENV DESCRIPTION="Ploigos tool container with C++." | ||
| LABEL \ | ||
| maintainer="Ploigos <[email protected]>" \ | ||
| name="ploigos/ploigos-tool-cpp" \ | ||
| summary="$DESCRIPTION" \ | ||
| description="$DESCRIPTION" \ | ||
| License="GPLv2+" \ | ||
| architecture="x86_64" \ | ||
| io.k8s.display-name="Ploigos - Tool - C++" \ | ||
| io.k8s.description="$DESCRIPTION" \ | ||
| io.openshift.expose-services="" \ | ||
| io.openshift.tags="ploigos,cpp,c++" \ | ||
| com.redhat.component="ploigos-tool-cpp-container" | ||
|
|
||
| USER root | ||
|
|
||
| RUN INSTALL_PKGS="gcc" && \ | ||
| dnf update -y --allowerasing --nobest && \ | ||
| dnf install -y --setopt=tsflags=nodocs $INSTALL_PKGS && \ | ||
| dnf clean all && \ | ||
| rm -rf /var/cache /var/log/dnf* /var/log/yum.* | ||
|
|
||
| # may not actually be able to run as this user at runtime | ||
| # but platforms like OpenShift will still respect users home directory | ||
| # so still worth setting | ||
| USER ${PLOIGOS_USER_UID} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,7 @@ | ||
| # ploigos-tool-cpp | ||
|
|
||
| This repository contains the container definition for creating the Ploigos workflow | ||
| C++ CLI tools container image. | ||
|
|
||
| This container image is intended to be used as the container image to run Ploigos workflow steps | ||
| in that require access to C++ dev tools |