Skip to content

Commit

Permalink
ci: fix trivy action
Browse files Browse the repository at this point in the history 
By default it also checks for secrets in compiled Python binary files
(/var/lib/syslog-ng-venv/lib/python3.12/site-packages/google/auth/crypt/__pycache__/_python_rsa.cpython-312.pyc)

See Python docs for more details
https://docs.python.org/3/using/cmdline.html#envvar-PYTHONDONTWRITEBYTECODE

Signed-off-by: Szilard Parrag <[email protected]>
  • Loading branch information
@OverOrion
OverOrion committed Oct 9, 2024
1 parent ba344fa commit f96f5ce
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions docker/alpine.dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,6 +77,7 @@ LABEL org.opencontainers.image.url="https://axoflow.io/"
COPY --from=apkbuilder /home/builder/packages/ /tmp/
COPY --from=apkbuilder /home/builder/.abuild/*.pub /etc/apk/keys/

ENV PYTHONDONTWRITEBYTECODE TRUE
RUN apk add --repository /tmp/axoflow -U --upgrade --no-cache \
jemalloc \
libdbi-drivers \
Expand Down

0 comments on commit f96f5ce

Please sign in to comment.