Skip to content

Commit

Permalink
Add Docker image scan
Browse files Browse the repository at this point in the history 
Signed-off-by: Bartosz Zurkowski <zurkowski.bartosz@gmail.com>
  • Loading branch information
@bzurkowski
bzurkowski committed Sep 11, 2022
1 parent 3b3ddcb commit fd37b26
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 2 deletions.
5 changes: 4 additions & 1 deletion .github/workflows/integrate.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -67,10 +67,13 @@ jobs:
- name: Check coverage
run: make coverage

test-build:
test-docker:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3

- name: Build Docker image
run: make docker-build

- name: Scan Docker image for vulnerabilities
run: make docker-scan
8 changes: 7 additions & 1 deletion Makefile
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,5 @@
IMAGE ?= openrca/orca

.PHONY: format
format:
@tox -e test-tools -- black .
Expand All @@ -20,4 +22,8 @@ coverage:

.PHONY: docker-build
docker-build:
@docker build . -f Dockerfile -t openrca/orca
@docker build . -f Dockerfile -t $(IMAGE)

.PHONY: docker-scan
docker-scan:
@docker scan --accept-license --file Dockerfile --dependency-tree $(IMAGE)

0 comments on commit fd37b26

Please sign in to comment.