add apt-get uppgrade to Dockerfile

add triviy-imagge-scan-job for all platforms
remove unnecessary venv
2026-02-15 14:17:02 +01:00 · 2026-02-15 14:13:37 +01:00 · 2026-02-04 22:41:28 +01:00 · 2026-01-19 00:04:31 +01:00
3 changed files with 38 additions and 5 deletions
--- a/.gitea/workflows/create_and_push_multiarch_container.yml
+++ b/.gitea/workflows/create_and_push_multiarch_container.yml
@@ -16,7 +16,7 @@ env:
 jobs:
  release-image:
-    runs-on: ubuntu-latest
+    runs-on: build-ubuntu-latest
    steps:
      - name: Checkout
--- a/.gitea/workflows/trivy_image_scan.yml
+++ b/.gitea/workflows/trivy_image_scan.yml
@@ -22,7 +22,7 @@ jobs:
    runs-on: ubuntu-latest
    container: aquasec/trivy:latest
    steps:
-      - name: Scan image with trivy
+      - name: Scan linux/amd64-image
        run: |
          trivy image \
          --username ${{ env.user }} \
@@ -31,4 +31,38 @@ jobs:
          --scanners vuln,misconfig,secret \
          --severity HIGH,CRITICAL \
          --ignore-unfixed \
          --platform linux/amd64 \
          ${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
      - name: Scan linux/386-image
        run: |
          trivy image \
          --username ${{ env.user }} \
          --password ${{ secrets.DOCKER_PULL_TOKEN }} \
          --exit-code 1 \
          --scanners vuln,misconfig,secret \
          --severity HIGH,CRITICAL \
          --ignore-unfixed \
          --platform linux/386 \
          ${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
      - name: Scan linux/arm64-image
        run: |
          trivy image \
          --username ${{ env.user }} \
          --password ${{ secrets.DOCKER_PULL_TOKEN }} \
          --exit-code 1 \
          --scanners vuln,misconfig,secret \
          --severity HIGH,CRITICAL \
          --ignore-unfixed \
          --platform linux/arm64 \
          ${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
      - name: Scan linux/arm/v7-image
        run: |
          trivy image \
          --username ${{ env.user }} \
          --password ${{ secrets.DOCKER_PULL_TOKEN }} \
          --exit-code 1 \
          --scanners vuln,misconfig,secret \
          --severity HIGH,CRITICAL \
          --ignore-unfixed \
          --platform linux/arm/v7 \
          ${{ env.registry_gitea }}/${{ env.user }}/${{ env.image_name }}:${{ env.image_tag }}
--- a/5
+++ b/5
@@ -7,10 +7,10 @@ LABEL authors="tebarius"
 LABEL description="netdata-DocRudi"
 ENV PYTHONDONTWRITEBYTECODE=1
 ENV PYTHONUNBUFFERED=1
 ENV PATH="/rudi-venv/bin:$PATH"
 ENV SERVER_PORT=19998
 RUN apt-get update && \
    apt-get upgrade -y && \
    if [ "$TARGETPLATFORM" = "linux/arm/v7" ] || [ "$TARGETPLATFORM" = "linux/386" ]; then \
        apt-get install -y --no-install-recommends zlib1g-dev libjpeg-dev gcc; \
    fi && \
@@ -21,8 +21,7 @@ WORKDIR /app
 COPY ./app /app/
-RUN python -m venv /rudi-venv \
+RUN python -m pip install --upgrade pip \
    && python -m pip install --upgrade pip \
    && pip install --no-cache-dir -r requirements.txt \
    && useradd -m -u 1000 rudi \
    && chown -R rudi:rudi /app
Author	SHA1	Message	Date
tebarius	d68f660595	add apt-get uppgrade to Dockerfile Some checks failed trivy-scan-image / trivy_image_scan (push) Failing after 39s Details	2026-02-15 14:17:02 +01:00
tebarius	ac40105449	add triviy-imagge-scan-job for all platforms	2026-02-15 14:13:37 +01:00
tebarius	49679e8c93	remove unnecessary venv All checks were successful trivy-scan-image / trivy_image_scan (push) Successful in 27s Details	2026-02-04 22:41:28 +01:00
tebarius	39e65f675b	rework build, requirements and pipline Some checks failed trivy-scan-image / trivy_image_scan (push) Failing after 35s Details	2026-01-19 00:04:31 +01:00