mirror of
https://github.com/goharbor/harbor.git
synced 2024-12-24 09:38:09 +01:00
08a4d8efd2
We should use a golang that isn't having security issues. This includes: * go1.14.6 (released 2020/07/16) includes fixes to the go command, the compiler, the linker, vet, and the database/sql, encoding/json, net/http, reflect, and testing packages. See the Go 1.14.6 milestone on our issue tracker for details. * go1.14.7 (released 2020/08/06) includes security fixes to the encoding/binary package. See the Go 1.14.7 milestone on our issue tracker for details (CVE-2020-16845) Signed-off-by: Dirk Mueller <dirk@dmllr.de> Signed-off-by: Dirk Mueller <dmueller@suse.com>
40 lines
1.1 KiB
Bash
Executable File
40 lines
1.1 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
set +e
|
|
|
|
if [ -z $1 ]; then
|
|
error "Please set the 'version' variable"
|
|
exit 1
|
|
fi
|
|
|
|
VERSION="$1"
|
|
|
|
set -e
|
|
|
|
# the temp folder to store binary file...
|
|
mkdir -p binary
|
|
rm -rf binary/harbor-scanner-clair || true
|
|
|
|
cd $(dirname $0)
|
|
cur=$PWD
|
|
|
|
# The temporary directory to clone Clair adapter source code
|
|
TEMP=$(mktemp -d ${TMPDIR-/tmp}/clair-adapter.XXXXXX)
|
|
git clone https://github.com/goharbor/harbor-scanner-clair.git $TEMP
|
|
cd $TEMP; git checkout $VERSION; export COMMIT=$(git rev-list -1 HEAD); cd -
|
|
|
|
echo "Building Clair adapter binary based on golang:1.14.7..."
|
|
cp Dockerfile.binary $TEMP
|
|
docker build --build-arg VERSION=${VERSION} --build-arg COMMIT=${COMMIT} -f $TEMP/Dockerfile.binary -t clair-adapter-golang $TEMP
|
|
|
|
echo "Copying Clair adapter binary from the container to the local directory..."
|
|
ID=$(docker create clair-adapter-golang)
|
|
docker cp $ID:/go/src/github.com/goharbor/harbor-scanner-clair/harbor-scanner-clair binary
|
|
|
|
docker rm -f $ID
|
|
docker rmi -f clair-adapter-golang
|
|
|
|
echo "Building Clair adapter binary finished successfully"
|
|
cd $cur
|
|
rm -rf $TEMP
|