#!/bin/sh # # Copyright (c) 2021 Sambo Chea "${DOCKER_ROOT}/Dockerfile" FROM scratch USER cubetiq ADD $(basename $BUILD_TAR) / CMD ["/bin/sh"] DOCKERFILE cd $DOCKER_ROOT docker build --no-cache -t "${DOCKER_USERNAME}/${DOCKER_IMAGE_NAME}:${ALPINE_VERSION}" . cd - # Scanner for docker build docker for security for os container docker build --build-arg BASE_IMAGE="${DOCKER_USERNAME}/${DOCKER_IMAGE_NAME}:${ALPINE_VERSION}" --build-arg MS_TOKEN="${MS_TOKEN}" - <<'DOCKERFILE' ARG BASE_IMAGE FROM $BASE_IMAGE ARG MS_TOKEN RUN wget https://get.aquasec.com/microscanner -O /home/cubetiq/microscanner \ && echo "8e01415d364a4173c9917832c2e64485d93ac712a18611ed5099b75b6f44e3a5 /home/cubetiq/microscanner" | sha256sum -c - \ && chmod +x /home/cubetiq/microscanner \ && /home/cubetiq/microscanner $MS_TOKEN DOCKERFILE