From 0da8fce8f5ede29859fea0f85ec7587a0b439869 Mon Sep 17 00:00:00 2001 From: Nicolas Vuillamy Date: Sun, 11 Aug 2024 10:35:53 +0200 Subject: [PATCH] Fix docker warnings (#3853) * [automation] Auto-update linters version, help and documentation * [MegaLinter] Apply linters fixes * Remove swiftlint deprecated --path argument * Fix docker issues * build --------- Co-authored-by: nvuillam --- .automation/build.py | 2 +- CHANGELOG.md | 4 + Dockerfile | 177 +++++++++--------- flavors/c_cpp/Dockerfile | 69 ++++--- flavors/ci_light/Dockerfile | 33 ++-- flavors/cupcake/Dockerfile | 111 ++++++----- flavors/documentation/Dockerfile | 69 ++++--- flavors/dotnet/Dockerfile | 89 +++++---- flavors/dotnetweb/Dockerfile | 89 +++++---- flavors/formatters/Dockerfile | 23 +-- flavors/go/Dockerfile | 75 ++++---- flavors/java/Dockerfile | 79 ++++---- flavors/javascript/Dockerfile | 69 ++++--- flavors/php/Dockerfile | 81 ++++---- flavors/python/Dockerfile | 71 ++++--- flavors/ruby/Dockerfile | 69 ++++--- flavors/rust/Dockerfile | 69 ++++--- flavors/salesforce/Dockerfile | 79 ++++---- flavors/security/Dockerfile | 57 +++--- flavors/swift/Dockerfile | 69 ++++--- flavors/terraform/Dockerfile | 89 +++++---- linters/action_actionlint/Dockerfile | 9 +- linters/ansible_ansible_lint/Dockerfile | 3 - linters/api_spectral/Dockerfile | 3 - linters/arm_arm_ttk/Dockerfile | 7 +- linters/bash_exec/Dockerfile | 5 +- linters/bash_shellcheck/Dockerfile | 7 +- linters/bash_shfmt/Dockerfile | 7 +- linters/bicep_bicep_linter/Dockerfile | 5 +- linters/c_clang_format/Dockerfile | 3 - linters/c_cpplint/Dockerfile | 3 - linters/clojure_clj_kondo/Dockerfile | 7 +- linters/clojure_cljstyle/Dockerfile | 7 +- linters/cloudformation_cfn_lint/Dockerfile | 3 - linters/coffee_coffeelint/Dockerfile | 3 - linters/copypaste_jscpd/Dockerfile | 3 - linters/cpp_clang_format/Dockerfile | 3 - linters/cpp_cpplint/Dockerfile | 3 - linters/csharp_csharpier/Dockerfile | 7 +- linters/csharp_dotnet_format/Dockerfile | 5 +- linters/csharp_roslynator/Dockerfile | 7 +- linters/css_scss_lint/Dockerfile | 3 - linters/css_stylelint/Dockerfile | 3 - linters/dart_dartanalyzer/Dockerfile | 7 +- linters/dockerfile_hadolint/Dockerfile | 7 +- .../Dockerfile | 7 +- linters/env_dotenv_linter/Dockerfile | 5 +- linters/gherkin_gherkin_lint/Dockerfile | 3 - linters/go_golangci_lint/Dockerfile | 5 +- linters/go_revive/Dockerfile | 7 +- .../graphql_graphql_schema_linter/Dockerfile | 3 - linters/groovy_npm_groovy_lint/Dockerfile | 5 +- linters/html_djlint/Dockerfile | 3 - linters/html_htmlhint/Dockerfile | 3 - linters/java_checkstyle/Dockerfile | 7 +- linters/java_pmd/Dockerfile | 7 +- linters/javascript_es/Dockerfile | 3 - linters/javascript_prettier/Dockerfile | 3 - linters/javascript_standard/Dockerfile | 3 - linters/json_eslint_plugin_jsonc/Dockerfile | 3 - linters/json_jsonlint/Dockerfile | 3 - linters/json_npm_package_json_lint/Dockerfile | 3 - linters/json_prettier/Dockerfile | 3 - linters/json_v8r/Dockerfile | 3 - linters/jsx_eslint/Dockerfile | 3 - linters/kotlin_detekt/Dockerfile | 7 +- linters/kotlin_ktlint/Dockerfile | 7 +- linters/kubernetes_helm/Dockerfile | 3 - linters/kubernetes_kubeconform/Dockerfile | 7 +- linters/kubernetes_kubescape/Dockerfile | 5 +- linters/latex_chktex/Dockerfile | 7 +- linters/lua_luacheck/Dockerfile | 5 +- linters/makefile_checkmake/Dockerfile | 7 +- .../markdown_markdown_link_check/Dockerfile | 3 - .../Dockerfile | 3 - linters/markdown_markdownlint/Dockerfile | 3 - linters/markdown_remark_lint/Dockerfile | 3 - linters/openapi_spectral/Dockerfile | 3 - linters/perl_perlcritic/Dockerfile | 5 +- linters/php_phpcs/Dockerfile | 7 +- linters/php_phpcsfixer/Dockerfile | 7 +- linters/php_phplint/Dockerfile | 7 +- linters/php_phpstan/Dockerfile | 7 +- linters/php_psalm/Dockerfile | 7 +- linters/powershell_powershell/Dockerfile | 7 +- .../Dockerfile | 7 +- linters/protobuf_protolint/Dockerfile | 7 +- linters/puppet_puppet_lint/Dockerfile | 3 - linters/python_bandit/Dockerfile | 3 - linters/python_black/Dockerfile | 3 - linters/python_flake8/Dockerfile | 3 - linters/python_isort/Dockerfile | 3 - linters/python_mypy/Dockerfile | 5 +- linters/python_pylint/Dockerfile | 3 - linters/python_pyright/Dockerfile | 3 - linters/python_ruff/Dockerfile | 3 - linters/r_lintr/Dockerfile | 5 +- linters/raku_raku/Dockerfile | 5 +- linters/repository_checkov/Dockerfile | 3 - linters/repository_devskim/Dockerfile | 5 +- linters/repository_dustilock/Dockerfile | 7 +- linters/repository_git_diff/Dockerfile | 3 - linters/repository_gitleaks/Dockerfile | 7 +- linters/repository_grype/Dockerfile | 5 +- linters/repository_kics/Dockerfile | 7 +- linters/repository_ls_lint/Dockerfile | 3 - linters/repository_secretlint/Dockerfile | 3 - linters/repository_semgrep/Dockerfile | 3 - linters/repository_syft/Dockerfile | 5 +- linters/repository_trivy/Dockerfile | 5 +- linters/repository_trivy_sbom/Dockerfile | 5 +- linters/repository_trufflehog/Dockerfile | 7 +- linters/rst_rst_lint/Dockerfile | 3 - linters/rst_rstcheck/Dockerfile | 3 - linters/rst_rstfmt/Dockerfile | 3 - linters/ruby_rubocop/Dockerfile | 3 - linters/rust_clippy/Dockerfile | 3 - .../Dockerfile | 7 +- .../salesforce_sfdx_scanner_apex/Dockerfile | 7 +- .../salesforce_sfdx_scanner_aura/Dockerfile | 7 +- .../salesforce_sfdx_scanner_lwc/Dockerfile | 7 +- linters/scala_scalafix/Dockerfile | 7 +- linters/snakemake_lint/Dockerfile | 3 - linters/snakemake_snakefmt/Dockerfile | 3 - linters/spell_cspell/Dockerfile | 3 - linters/spell_lychee/Dockerfile | 7 +- linters/spell_proselint/Dockerfile | 3 - linters/spell_vale/Dockerfile | 7 +- linters/sql_sql_lint/Dockerfile | 3 - linters/sql_sqlfluff/Dockerfile | 3 - linters/sql_tsqllint/Dockerfile | 5 +- linters/swift_swiftlint/Dockerfile | 3 - linters/tekton_tekton_lint/Dockerfile | 3 - linters/terraform_terraform_fmt/Dockerfile | 7 +- linters/terraform_terragrunt/Dockerfile | 7 +- linters/terraform_terrascan/Dockerfile | 7 +- linters/terraform_tflint/Dockerfile | 7 +- linters/tsx_eslint/Dockerfile | 3 - linters/typescript_es/Dockerfile | 3 - linters/typescript_prettier/Dockerfile | 3 - linters/typescript_standard/Dockerfile | 3 - linters/vbdotnet_dotnet_format/Dockerfile | 5 +- linters/xml_xmllint/Dockerfile | 3 - linters/yaml_prettier/Dockerfile | 3 - linters/yaml_v8r/Dockerfile | 3 - linters/yaml_yamllint/Dockerfile | 3 - .../action.megalinter-descriptor.yml | 4 +- .../bash.megalinter-descriptor.yml | 4 +- .../dockerfile.megalinter-descriptor.yml | 2 +- .../editorconfig.megalinter-descriptor.yml | 2 +- .../descriptors/go.megalinter-descriptor.yml | 6 +- .../kubernetes.megalinter-descriptor.yml | 2 +- .../latex.megalinter-descriptor.yml | 2 +- .../makefile.megalinter-descriptor.yml | 2 +- .../protobuf.megalinter-descriptor.yml | 2 +- .../repository.megalinter-descriptor.yml | 8 +- .../spell.megalinter-descriptor.yml | 4 +- .../terraform.megalinter-descriptor.yml | 8 +- 158 files changed, 837 insertions(+), 1265 deletions(-) diff --git a/.automation/build.py b/.automation/build.py index 4ec1588bae6..a4f8e016402 100644 --- a/.automation/build.py +++ b/.automation/build.py @@ -397,7 +397,7 @@ def build_dockerfile( is_docker_other_run = False docker_other += [dockerfile_item] all_dockerfile_items += [dockerfile_item] - docker_other += [""] + docker_other += ["#"] # Collect python packages if "apk" in item["install"]: apk_packages += item["install"]["apk"] diff --git a/CHANGELOG.md b/CHANGELOG.md index e745d9b0106..ec1aca4861f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -32,6 +32,10 @@ Note: Can be used with `oxsecurity/megalinter@beta` in your GitHub Action mega-l - Flavors - CI + - Fix docker warnings + - FromAsCasing: 'as' and 'FROM' keywords' casing do not match + - NoEmptyContinuation: Empty continuation line + - SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data - Linter versions upgrades - [protolint](https://github.com/yoheimuta/protolint) from 0.50.2 to **0.50.3** on 2024-07-07 diff --git a/Dockerfile b/Dockerfile index 58d5e600841..a37dc4b43fd 100644 --- a/Dockerfile +++ b/Dockerfile @@ -43,36 +43,36 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM golang:1-alpine as revive +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM golang:1-alpine AS revive ## The golang image used as a builder is a temporary workaround (https://github.com/mgechev/revive/issues/787) ## for the released revive binaries not returning version numbers (devel). ## The install command should then be what is commented in the go.megalinter-descriptor.yml # renovate: datasource=github-tags depName=mgechev/revive ARG GO_REVIVE_VERSION=v1.3.7 RUN GOBIN=/usr/bin go install github.com/mgechev/revive@$GO_REVIVE_VERSION -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM ghcr.io/assignuser/chktex-alpine:latest as chktex -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM golang:alpine as dustilock +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM ghcr.io/assignuser/chktex-alpine:latest AS chktex +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM golang:alpine AS dustilock RUN GOBIN=/usr/bin go install github.com/checkmarx/dustilock@v1.2.0 -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee -FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint -FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee +FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint +FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt # Next FROM line commented because already managed by another linter -# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -112,9 +112,6 @@ ARG SALESFORCE_SFDX_SCANNER_VERSION=4.4.0 ARG LIGHTNING_FLOW_SCANNER_VERSION=2.33.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -383,7 +380,7 @@ RUN rc-update add docker boot && rc-service docker start || true \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh - +# # CLOJURE installation ENV LANG=C.UTF-8 RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases/download" && \ @@ -425,11 +422,11 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BASE_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" \ - +# # CSHARP installation && apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # DART installation # Next line commented because already managed by another linter # ENV LANG=C.UTF-8 @@ -473,17 +470,17 @@ ENV PATH="${PATH}:/root/.dotnet/tools" # "$ALPINE_GLIBC_BASE_PACKAGE_FILENAME" \ # "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ # "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" - +# # JAVA installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # KOTLIN installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk # Next line commented because already managed by another linter # ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # PHP installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" \ && export GITHUB_AUTH_TOKEN \ @@ -502,7 +499,7 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # POWERSHELL installation # Next line commented because already managed by another linter # RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/powershell-7.4.2-linux-musl-x64.tar.gz -o /tmp/powershell.tar.gz \ @@ -510,7 +507,7 @@ ENV PATH="/root/.composer/vendor/bin:${PATH}" # && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ # && chmod +x /opt/microsoft/powershell/7/pwsh \ # && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh - +# # SALESFORCE installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk @@ -520,7 +517,7 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # SCALA installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk @@ -529,18 +526,18 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && curl --retry-all-errors --retry 10 -fLo coursier https://git.io/coursier-cli && \ chmod +x coursier - +# # VBDOTNET installation # Next line commented because already managed by another linter # RUN apk add --no-cache dotnet8-sdk # Next line commented because already managed by another linter # ENV PATH="${PATH}:/root/.dotnet/tools" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # arm-ttk installation ENV ARM_TTK_PSD1="${ARM_TTK_DIRECTORY}/arm-ttk-master/arm-ttk/arm-ttk.psd1" RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ @@ -548,60 +545,60 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ && rm "${ARM_TTK_NAME}" \ && ln -sTf "${ARM_TTK_PSD1}" /usr/bin/arm-ttk \ && chmod a+x /usr/bin/arm-ttk \ - +# # bash-exec installation && printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # bicep_linter installation && curl --retry 5 --retry-delay 5 -sLo ${BICEP_EXE} "${BICEP_URI}" \ && chmod +x "${BICEP_EXE}" \ && mv "${BICEP_EXE}" "${BICEP_DIR}" \ - +# # clj-kondo installation && curl --retry 5 --retry-delay 5 -sLO https://raw.githubusercontent.com/clj-kondo/clj-kondo/master/script/install-clj-kondo \ && chmod +x install-clj-kondo \ && ./install-clj-kondo \ - +# # csharpier installation && dotnet tool install --global csharpier \ - +# # roslynator installation && dotnet tool install -g roslynator.dotnet.cli \ - +# # dartanalyzer installation && wget --tries=5 https://storage.googleapis.com/dart-archive/channels/stable/release/${DART_VERSION}/sdk/dartsdk-linux-x64-release.zip -O - -q | unzip -q - \ && chmod +x dart-sdk/bin/dart* \ && mv dart-sdk/bin/* /usr/bin/ && mv dart-sdk/lib/* /usr/lib/ && mv dart-sdk/include/* /usr/include/ \ && rm -r dart-sdk/ \ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s \ - +# # golangci-lint installation && wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh \ && golangci-lint --version - +# # revive installation # Managed with COPY --link --from=revive /usr/bin/revive /usr/bin/revive - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # checkstyle installation RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ -H "Accept: application/vnd.github+json" \ @@ -613,19 +610,19 @@ RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ && curl --retry 5 --retry-delay 5 -sSL $CHECKSTYLE_LATEST \ --output /usr/bin/checkstyle - +# # pmd installation RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${PMD_VERSION}/pmd-dist-${PMD_VERSION}-bin.zip && \ unzip pmd-dist-${PMD_VERSION}-bin.zip || echo "Error unzipping" && \ rm pmd-dist-${PMD_VERSION}-bin.zip || echo "Error rm" && \ mv pmd-bin-${PMD_VERSION} /usr/bin/pmd || echo "Error mv" && \ chmod +x /usr/bin/pmd/bin/pmd || echo "Error chmod" \ - +# # ktlint installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -633,18 +630,18 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # chktex installation # Managed with COPY --link --from=chktex /usr/bin/chktex /usr/bin/ && cd ~ && touch .chktexrc && cd / \ - +# # luacheck installation && wget --tries=5 https://www.lua.org/ftp/lua-5.3.5.tar.gz -O - -q | tar -xzf - \ && cd lua-5.3.5 \ @@ -659,50 +656,50 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P && cd .. && rm -r luarocks-3.3.1-super-linter/ \ && luarocks install luacheck \ && cd / \ - +# # perlcritic installation && curl -fsSL https://raw.githubusercontent.com/skaji/cpm/main/cpm | perl - install -g --show-build-log-on-failure --without-build --without-test --without-runtime Perl::Critic \ && rm -rf /root/.perl-cpm - +# # phpcs installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require squizlabs/php_codesniffer bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # phpstan installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require phpstan/phpstan bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # psalm installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && phive --no-progress install psalm -g --trust-gpg-keys 8A03EA3B385DBAA1,12CE0F1D262429A5 - +# # phplint installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require overtrue/phplint bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # php-cs-fixer installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require friendsofphp/php-cs-fixer - +# # powershell installation RUN pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# # powershell_formatter installation # Next line commented because already managed by another linter # RUN pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # mypy installation ENV MYPY_CACHE_DIR=/tmp - +# # lintr installation RUN mkdir -p /home/r-library \ && cp -r /usr/lib/R/library/ /home/r-library/ \ && Rscript -e "install.packages(c('lintr','purrr'), repos = 'https://cloud.r-project.org/')" \ && R -e "install.packages(list.dirs('/home/r-library',recursive = FALSE), repos = NULL, type = 'source')" \ - +# # raku installation && curl -L https://github.com/nxadm/rakudo-pkg/releases/download/v2020.10-02/rakudo-pkg-Alpine3.12_2020.10-02_x86_64.apk > rakudo-pkg-Alpine3.12_2020.10-02_x86_64.apk \ && apk add --no-cache --allow-untrusted rakudo-pkg-Alpine3.12_2020.10-02_x86_64.apk \ @@ -712,84 +709,84 @@ RUN mkdir -p /home/r-library \ && /opt/rakudo-pkg/bin/install-zef-as-user ENV PATH="~/.raku/bin:/opt/rakudo-pkg/bin:/opt/rakudo-pkg/share/perl6/site/bin:$PATH" - +# # devskim installation # Next line commented because already managed by another linter # RUN apk add --no-cache dotnet8-sdk # Next line commented because already managed by another linter # ENV PATH="${PATH}:/root/.dotnet/tools" RUN dotnet tool install --global Microsoft.CST.DevSkim.CLI \ - +# # dustilock installation # Managed with COPY --link --from=dustilock /usr/bin/dustilock /usr/bin/dustilock - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - +# # kics installation # Managed with COPY --link --from=kics /app/bin/kics /usr/bin/kics ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries # Managed with COPY --from=kics /app/bin/assets /usr/bin/assets - +# # syft installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # sfdx-scanner-apex installation && sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # sfdx-scanner-aura installation # Next line commented because already managed by another linter # RUN sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ # && npm cache clean --force || true \ # && rm -rf /root/.npm/_cacache - +# # sfdx-scanner-lwc installation # Next line commented because already managed by another linter # RUN sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ # && npm cache clean --force || true \ # && rm -rf /root/.npm/_cacache - +# # lightning-flow-scanner installation && echo y|sf plugins install lightning-flow-scanner@${LIGHTNING_FLOW_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # scalafix installation && ./coursier install scalafix --quiet --install-dir /usr/bin && rm -rf /root/.cache - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# # tflint installation # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ - +# # terrascan installation # Managed with COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ - +# # terragrunt installation # Managed with COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ - +# # terraform-fmt installation # Managed with COPY --link --from=terragrunt /bin/terraform /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/c_cpp/Dockerfile b/flavors/c_cpp/Dockerfile index 6969d7a0584..2e1c5b2e7a0 100644 --- a/flavors/c_cpp/Dockerfile +++ b/flavors/c_cpp/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -250,40 +247,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -291,40 +288,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/ci_light/Dockerfile b/flavors/ci_light/Dockerfile index 4be3eb25ae1..564d4644889 100644 --- a/flavors/ci_light/Dockerfile +++ b/flavors/ci_light/Dockerfile @@ -26,11 +26,11 @@ ARG REPOSITORY_TRUFFLEHOG_VERSION=3.81.6 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog #FROM__END ################## @@ -45,9 +45,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -183,36 +180,36 @@ COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ #OTHER__START # shellcheck installation # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # dotenv-linter installation RUN wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/cupcake/Dockerfile b/flavors/cupcake/Dockerfile index b3077b669d8..116965ba034 100644 --- a/flavors/cupcake/Dockerfile +++ b/flavors/cupcake/Dockerfile @@ -40,31 +40,31 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM golang:1-alpine as revive +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM golang:1-alpine AS revive ## The golang image used as a builder is a temporary workaround (https://github.com/mgechev/revive/issues/787) ## for the released revive binaries not returning version numbers (devel). ## The install command should then be what is commented in the go.megalinter-descriptor.yml # renovate: datasource=github-tags depName=mgechev/revive ARG GO_REVIVE_VERSION=v1.3.7 RUN GOBIN=/usr/bin go install github.com/mgechev/revive@$GO_REVIVE_VERSION -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM lycheeverse/lychee:latest-alpine as lychee -FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint -FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM lycheeverse/lychee:latest-alpine AS lychee +FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint +FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt # Next FROM line commented because already managed by another linter -# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -84,9 +84,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -365,17 +362,17 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" - +# # JAVA installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # KOTLIN installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk # Next line commented because already managed by another linter # ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # PHP installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" \ && export GITHUB_AUTH_TOKEN \ @@ -394,48 +391,48 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # clj-kondo installation && curl --retry 5 --retry-delay 5 -sLO https://raw.githubusercontent.com/clj-kondo/clj-kondo/master/script/install-clj-kondo \ && chmod +x install-clj-kondo \ && ./install-clj-kondo \ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s \ - +# # golangci-lint installation && wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh \ && golangci-lint --version - +# # revive installation # Managed with COPY --link --from=revive /usr/bin/revive /usr/bin/revive - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # checkstyle installation RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ -H "Accept: application/vnd.github+json" \ @@ -447,19 +444,19 @@ RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ && curl --retry 5 --retry-delay 5 -sSL $CHECKSTYLE_LATEST \ --output /usr/bin/checkstyle - +# # pmd installation RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${PMD_VERSION}/pmd-dist-${PMD_VERSION}-bin.zip && \ unzip pmd-dist-${PMD_VERSION}-bin.zip || echo "Error unzipping" && \ rm pmd-dist-${PMD_VERSION}-bin.zip || echo "Error rm" && \ mv pmd-bin-${PMD_VERSION} /usr/bin/pmd || echo "Error mv" && \ chmod +x /usr/bin/pmd/bin/pmd || echo "Error chmod" \ - +# # ktlint installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -467,73 +464,73 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 - +# # phpcs installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require squizlabs/php_codesniffer bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # phpstan installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require phpstan/phpstan bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # psalm installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && phive --no-progress install psalm -g --trust-gpg-keys 8A03EA3B385DBAA1,12CE0F1D262429A5 - +# # phplint installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require overtrue/phplint bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # php-cs-fixer installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require friendsofphp/php-cs-fixer - +# # mypy installation ENV MYPY_CACHE_DIR=/tmp - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - +# # kics installation # Managed with COPY --link --from=kics /app/bin/kics /usr/bin/kics ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries # Managed with COPY --from=kics /app/bin/assets /usr/bin/assets - +# # trivy installation RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# # tflint installation # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ - +# # terrascan installation # Managed with COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ - +# # terragrunt installation # Managed with COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ - +# # terraform-fmt installation # Managed with COPY --link --from=terragrunt /bin/terraform /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/documentation/Dockerfile b/flavors/documentation/Dockerfile index 1ff772b4c0e..12a3b8c0ec6 100644 --- a/flavors/documentation/Dockerfile +++ b/flavors/documentation/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -247,40 +244,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -288,40 +285,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/dotnet/Dockerfile b/flavors/dotnet/Dockerfile index 2f23ff792ff..6b8f6fde83c 100644 --- a/flavors/dotnet/Dockerfile +++ b/flavors/dotnet/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -75,9 +75,6 @@ ARG PSSA_VERSION='1.22.0' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -264,15 +261,15 @@ RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/po && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh \ - +# # CSHARP installation && apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # POWERSHELL installation # Next line commented because already managed by another linter # RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/powershell-7.4.2-linux-musl-x64.tar.gz -o /tmp/powershell.tar.gz \ @@ -280,18 +277,18 @@ ENV PATH="$JAVA_HOME/bin:${PATH}" # && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ # && chmod +x /opt/microsoft/powershell/7/pwsh \ # && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh - +# # VBDOTNET installation # Next line commented because already managed by another linter # RUN apk add --no-cache dotnet8-sdk # Next line commented because already managed by another linter # ENV PATH="${PATH}:/root/.dotnet/tools" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # arm-ttk installation ENV ARM_TTK_PSD1="${ARM_TTK_DIRECTORY}/arm-ttk-master/arm-ttk/arm-ttk.psd1" RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ @@ -299,46 +296,46 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ && rm "${ARM_TTK_NAME}" \ && ln -sTf "${ARM_TTK_PSD1}" /usr/bin/arm-ttk \ && chmod a+x /usr/bin/arm-ttk \ - +# # bash-exec installation && printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # bicep_linter installation && curl --retry 5 --retry-delay 5 -sLo ${BICEP_EXE} "${BICEP_URI}" \ && chmod +x "${BICEP_EXE}" \ && mv "${BICEP_EXE}" "${BICEP_DIR}" \ - +# # csharpier installation && dotnet tool install --global csharpier \ - +# # roslynator installation && dotnet tool install -g roslynator.dotnet.cli \ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -346,47 +343,47 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # powershell installation && pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' \ - +# # powershell_formatter installation # Next line commented because already managed by another linter # RUN pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/dotnetweb/Dockerfile b/flavors/dotnetweb/Dockerfile index 1793c1063df..7db3a1776bb 100644 --- a/flavors/dotnetweb/Dockerfile +++ b/flavors/dotnetweb/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -75,9 +75,6 @@ ARG PSSA_VERSION='1.22.0' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -286,15 +283,15 @@ RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/po && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh \ - +# # CSHARP installation && apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # POWERSHELL installation # Next line commented because already managed by another linter # RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/powershell-7.4.2-linux-musl-x64.tar.gz -o /tmp/powershell.tar.gz \ @@ -302,18 +299,18 @@ ENV PATH="$JAVA_HOME/bin:${PATH}" # && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ # && chmod +x /opt/microsoft/powershell/7/pwsh \ # && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh - +# # VBDOTNET installation # Next line commented because already managed by another linter # RUN apk add --no-cache dotnet8-sdk # Next line commented because already managed by another linter # ENV PATH="${PATH}:/root/.dotnet/tools" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # arm-ttk installation ENV ARM_TTK_PSD1="${ARM_TTK_DIRECTORY}/arm-ttk-master/arm-ttk/arm-ttk.psd1" RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ @@ -321,46 +318,46 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ && rm "${ARM_TTK_NAME}" \ && ln -sTf "${ARM_TTK_PSD1}" /usr/bin/arm-ttk \ && chmod a+x /usr/bin/arm-ttk \ - +# # bash-exec installation && printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # bicep_linter installation && curl --retry 5 --retry-delay 5 -sLo ${BICEP_EXE} "${BICEP_URI}" \ && chmod +x "${BICEP_EXE}" \ && mv "${BICEP_EXE}" "${BICEP_DIR}" \ - +# # csharpier installation && dotnet tool install --global csharpier \ - +# # roslynator installation && dotnet tool install -g roslynator.dotnet.cli \ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -368,47 +365,47 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # powershell installation && pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' \ - +# # powershell_formatter installation # Next line commented because already managed by another linter # RUN pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/formatters/Dockerfile b/flavors/formatters/Dockerfile index 4ede1bda91f..76a01784146 100644 --- a/flavors/formatters/Dockerfile +++ b/flavors/formatters/Dockerfile @@ -20,8 +20,8 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM mvdan/shfmt:latest-alpine as shfmt -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -38,9 +38,6 @@ ARG PSSA_VERSION='1.22.0' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -167,35 +164,35 @@ COPY --link --from=terragrunt /bin/terraform /usr/bin/ # CSHARP installation RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # POWERSHELL installation RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/powershell-7.4.2-linux-musl-x64.tar.gz -o /tmp/powershell.tar.gz \ && mkdir -p /opt/microsoft/powershell/7 \ && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh \ - +# # VBDOTNET installation # Next line commented because already managed by another linter # RUN apk add --no-cache dotnet8-sdk # Next line commented because already managed by another linter # ENV PATH="${PATH}:/root/.dotnet/tools" - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # csharpier installation && dotnet tool install --global csharpier \ - +# # roslynator installation && dotnet tool install -g roslynator.dotnet.cli \ - +# # powershell_formatter installation && pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# # terraform-fmt installation # Managed with COPY --link --from=terragrunt /bin/terraform /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/go/Dockerfile b/flavors/go/Dockerfile index 936158931b9..9e720557a94 100644 --- a/flavors/go/Dockerfile +++ b/flavors/go/Dockerfile @@ -36,27 +36,27 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM golang:1-alpine as revive +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM golang:1-alpine AS revive ## The golang image used as a builder is a temporary workaround (https://github.com/mgechev/revive/issues/787) ## for the released revive binaries not returning version numbers (devel). ## The install command should then be what is commented in the go.megalinter-descriptor.yml # renovate: datasource=github-tags depName=mgechev/revive ARG GO_REVIVE_VERSION=v1.3.7 RUN GOBIN=/usr/bin go install github.com/mgechev/revive@$GO_REVIVE_VERSION -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -73,9 +73,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -256,48 +253,48 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s \ - +# # golangci-lint installation && wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh \ && golangci-lint --version - +# # revive installation # Managed with COPY --link --from=revive /usr/bin/revive /usr/bin/revive - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -305,40 +302,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/java/Dockerfile b/flavors/java/Dockerfile index 4df4c6677ab..cc8dab4075e 100644 --- a/flavors/java/Dockerfile +++ b/flavors/java/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -69,9 +69,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -289,50 +286,50 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" - +# # JAVA installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # KOTLIN installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk # Next line commented because already managed by another linter # ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # clj-kondo installation && curl --retry 5 --retry-delay 5 -sLO https://raw.githubusercontent.com/clj-kondo/clj-kondo/master/script/install-clj-kondo \ && chmod +x install-clj-kondo \ && ./install-clj-kondo \ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # checkstyle installation RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ -H "Accept: application/vnd.github+json" \ @@ -344,19 +341,19 @@ RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ && curl --retry 5 --retry-delay 5 -sSL $CHECKSTYLE_LATEST \ --output /usr/bin/checkstyle - +# # pmd installation RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${PMD_VERSION}/pmd-dist-${PMD_VERSION}-bin.zip && \ unzip pmd-dist-${PMD_VERSION}-bin.zip || echo "Error unzipping" && \ rm pmd-dist-${PMD_VERSION}-bin.zip || echo "Error rm" && \ mv pmd-bin-${PMD_VERSION} /usr/bin/pmd || echo "Error mv" && \ chmod +x /usr/bin/pmd/bin/pmd || echo "Error chmod" \ - +# # ktlint installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -364,40 +361,40 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/javascript/Dockerfile b/flavors/javascript/Dockerfile index 1ac37f4032d..7293a7f51e3 100644 --- a/flavors/javascript/Dockerfile +++ b/flavors/javascript/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -271,40 +268,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -312,40 +309,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/php/Dockerfile b/flavors/php/Dockerfile index fcab5fb9d03..8d38a35ff9c 100644 --- a/flavors/php/Dockerfile +++ b/flavors/php/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -262,7 +259,7 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # PHP installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" \ && export GITHUB_AUTH_TOKEN \ @@ -281,40 +278,40 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -322,59 +319,59 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 - +# # phpcs installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require squizlabs/php_codesniffer bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # phpstan installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require phpstan/phpstan bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # psalm installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && phive --no-progress install psalm -g --trust-gpg-keys 8A03EA3B385DBAA1,12CE0F1D262429A5 - +# # phplint installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require overtrue/phplint bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# # php-cs-fixer installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require friendsofphp/php-cs-fixer - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/python/Dockerfile b/flavors/python/Dockerfile index 355b470ed0e..07131ff9a9f 100644 --- a/flavors/python/Dockerfile +++ b/flavors/python/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -259,40 +256,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -300,43 +297,43 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # mypy installation ENV MYPY_CACHE_DIR=/tmp - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/ruby/Dockerfile b/flavors/ruby/Dockerfile index 6516b021f28..dc4d6e0f296 100644 --- a/flavors/ruby/Dockerfile +++ b/flavors/ruby/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -253,40 +250,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -294,40 +291,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/rust/Dockerfile b/flavors/rust/Dockerfile index a04ddac42f1..0ac9cf18f7c 100644 --- a/flavors/rust/Dockerfile +++ b/flavors/rust/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -247,40 +244,40 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -288,40 +285,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/salesforce/Dockerfile b/flavors/salesforce/Dockerfile index 7d90e4fd82b..a1e0bba7bb0 100644 --- a/flavors/salesforce/Dockerfile +++ b/flavors/salesforce/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -76,9 +76,6 @@ ARG SALESFORCE_SFDX_SCANNER_VERSION=4.4.0 ARG LIGHTNING_FLOW_SCANNER_VERSION=2.33.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -260,7 +257,7 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # SALESFORCE installation # Next line commented because already managed by another linter # ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk @@ -270,40 +267,40 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation && printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -311,61 +308,61 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # sfdx-scanner-apex installation && sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # sfdx-scanner-aura installation # Next line commented because already managed by another linter # RUN sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ # && npm cache clean --force || true \ # && rm -rf /root/.npm/_cacache - +# # sfdx-scanner-lwc installation # Next line commented because already managed by another linter # RUN sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ # && npm cache clean --force || true \ # && rm -rf /root/.npm/_cacache - +# # lightning-flow-scanner installation && echo y|sf plugins install lightning-flow-scanner@${LIGHTNING_FLOW_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/security/Dockerfile b/flavors/security/Dockerfile index 575ef749bed..f778d568ea7 100644 --- a/flavors/security/Dockerfile +++ b/flavors/security/Dockerfile @@ -36,17 +36,17 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM golang:alpine as dustilock +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM golang:alpine AS dustilock RUN GOBIN=/usr/bin go install github.com/checkmarx/dustilock@v1.2.0 -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint -FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint +FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -61,9 +61,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -202,62 +199,62 @@ COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # devskim installation && apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" RUN dotnet tool install --global Microsoft.CST.DevSkim.CLI \ - +# # dustilock installation # Managed with COPY --link --from=dustilock /usr/bin/dustilock /usr/bin/dustilock - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - +# # kics installation # Managed with COPY --link --from=kics /app/bin/kics /usr/bin/kics ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries # Managed with COPY --from=kics /app/bin/assets /usr/bin/assets - +# # syft installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # tflint installation # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ - +# # terrascan installation # Managed with COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ - +# # terragrunt installation # Managed with COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/swift/Dockerfile b/flavors/swift/Dockerfile index 2116623ed0d..e239a9596c3 100644 --- a/flavors/swift/Dockerfile +++ b/flavors/swift/Dockerfile @@ -36,20 +36,20 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -66,9 +66,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -250,40 +247,40 @@ RUN rc-update add docker boot && rc-service docker start || true # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -291,40 +288,40 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin \ - +# # trivy installation && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/flavors/terraform/Dockerfile b/flavors/terraform/Dockerfile index 162f6aee90d..52271a96385 100644 --- a/flavors/terraform/Dockerfile +++ b/flavors/terraform/Dockerfile @@ -44,26 +44,26 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck # Next FROM line commented because already managed by another linter -# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck -FROM mvdan/shfmt:latest-alpine as shfmt -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks -FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale -FROM lycheeverse/lychee:latest-alpine as lychee -FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint -FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +# FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck +FROM mvdan/shfmt:latest-alpine AS shfmt +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks +FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale +FROM lycheeverse/lychee:latest-alpine AS lychee +FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint +FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt # Next FROM line commented because already managed by another linter -# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +# FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -80,9 +80,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -267,40 +264,40 @@ COPY --link --from=terragrunt /bin/terraform /usr/bin/ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # actionlint installation # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # bash-exec installation RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec \ - +# # shellcheck installation # Managed with # Next COPY line commented because already managed by another linter # # COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# # dotenv-linter installation && wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ \ - +# # detekt installation && curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -308,57 +305,57 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/rel chmod a+x detekt-cli-${DETEKT_VERSION}/lib/* && \ mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib \ - +# # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# # kubescape installation && ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 \ - +# # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# # grype installation && curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - +# # kics installation # Managed with COPY --link --from=kics /app/bin/kics /usr/bin/kics ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries # Managed with COPY --from=kics /app/bin/assets /usr/bin/assets - +# # trivy installation RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trivy-sbom installation # Next line commented because already managed by another linter # RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# # tflint installation # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ - +# # terrascan installation # Managed with COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ - +# # terragrunt installation # Managed with COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ - +# # terraform-fmt installation # Managed with COPY --link --from=terragrunt /bin/terraform /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/action_actionlint/Dockerfile b/linters/action_actionlint/Dockerfile index 4c29a6680b5..af34551d653 100644 --- a/linters/action_actionlint/Dockerfile +++ b/linters/action_actionlint/Dockerfile @@ -21,9 +21,9 @@ ARG BASH_SHELLCHECK_VERSION=v0.10.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint +FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck #FROM__END ################## @@ -38,9 +38,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -142,7 +139,7 @@ COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck # Managed with COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # # shellcheck is a dependency for actionlint # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# #OTHER__END ################################ diff --git a/linters/ansible_ansible_lint/Dockerfile b/linters/ansible_ansible_lint/Dockerfile index 8d55070afa7..31cd62d6e54 100644 --- a/linters/ansible_ansible_lint/Dockerfile +++ b/linters/ansible_ansible_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/api_spectral/Dockerfile b/linters/api_spectral/Dockerfile index f42f5d9955e..e628a494890 100644 --- a/linters/api_spectral/Dockerfile +++ b/linters/api_spectral/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/arm_arm_ttk/Dockerfile b/linters/arm_arm_ttk/Dockerfile index 02c1026faeb..59f2af84c68 100644 --- a/linters/arm_arm_ttk/Dockerfile +++ b/linters/arm_arm_ttk/Dockerfile @@ -35,9 +35,6 @@ ARG ARM_TTK_URI='https://github.com/Azure/arm-ttk/archive/master.zip' ARG ARM_TTK_DIRECTORY='/opt/microsoft' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -140,7 +137,7 @@ RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/po && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh - +# # arm-ttk installation ENV ARM_TTK_PSD1="${ARM_TTK_DIRECTORY}/arm-ttk-master/arm-ttk/arm-ttk.psd1" RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ @@ -149,7 +146,7 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \ && ln -sTf "${ARM_TTK_PSD1}" /usr/bin/arm-ttk \ && chmod a+x /usr/bin/arm-ttk - +# #OTHER__END ################################ diff --git a/linters/bash_exec/Dockerfile b/linters/bash_exec/Dockerfile index ac5c49350e3..6c93b9aebc4 100644 --- a/linters/bash_exec/Dockerfile +++ b/linters/bash_exec/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -134,7 +131,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: File:[$1] is not executable"; exit 1; fi' > /usr/bin/bash-exec \ && chmod +x /usr/bin/bash-exec - +# #OTHER__END ################################ diff --git a/linters/bash_shellcheck/Dockerfile b/linters/bash_shellcheck/Dockerfile index ff543462e5c..f67c838f06a 100644 --- a/linters/bash_shellcheck/Dockerfile +++ b/linters/bash_shellcheck/Dockerfile @@ -19,7 +19,7 @@ ARG BASH_SHELLCHECK_VERSION=v0.10.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck +FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -137,7 +134,7 @@ COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck #OTHER__START # shellcheck installation # Managed with COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck - +# #OTHER__END ################################ diff --git a/linters/bash_shfmt/Dockerfile b/linters/bash_shfmt/Dockerfile index 651d02d08a7..4252d3944a8 100644 --- a/linters/bash_shfmt/Dockerfile +++ b/linters/bash_shfmt/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM mvdan/shfmt:latest-alpine as shfmt +FROM mvdan/shfmt:latest-alpine AS shfmt #FROM__END ################## @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ COPY --link --from=shfmt /bin/shfmt /usr/bin/ #OTHER__START # shfmt installation # Managed with COPY --link --from=shfmt /bin/shfmt /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/bicep_bicep_linter/Dockerfile b/linters/bicep_bicep_linter/Dockerfile index 9b1b91fe7fb..109372d41ba 100644 --- a/linters/bicep_bicep_linter/Dockerfile +++ b/linters/bicep_bicep_linter/Dockerfile @@ -35,9 +35,6 @@ ARG BICEP_URI='https://github.com/Azure/bicep/releases/latest/download/bicep-lin ARG BICEP_DIR='/usr/local/bin' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -138,7 +135,7 @@ RUN curl --retry 5 --retry-delay 5 -sLo ${BICEP_EXE} "${BICEP_URI}" \ && chmod +x "${BICEP_EXE}" \ && mv "${BICEP_EXE}" "${BICEP_DIR}" - +# #OTHER__END ################################ diff --git a/linters/c_clang_format/Dockerfile b/linters/c_clang_format/Dockerfile index da3ac98f2d4..f18289d5b0f 100644 --- a/linters/c_clang_format/Dockerfile +++ b/linters/c_clang_format/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/c_cpplint/Dockerfile b/linters/c_cpplint/Dockerfile index 231d083ceb2..69069af76dc 100644 --- a/linters/c_cpplint/Dockerfile +++ b/linters/c_cpplint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/clojure_clj_kondo/Dockerfile b/linters/clojure_clj_kondo/Dockerfile index 5f49f4578a3..165d7418030 100644 --- a/linters/clojure_clj_kondo/Dockerfile +++ b/linters/clojure_clj_kondo/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -171,13 +168,13 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BASE_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" \ - +# # clj-kondo installation && curl --retry 5 --retry-delay 5 -sLO https://raw.githubusercontent.com/clj-kondo/clj-kondo/master/script/install-clj-kondo \ && chmod +x install-clj-kondo \ && ./install-clj-kondo - +# #OTHER__END ################################ diff --git a/linters/clojure_cljstyle/Dockerfile b/linters/clojure_cljstyle/Dockerfile index 0633a9ad072..dd93eef97fb 100644 --- a/linters/clojure_cljstyle/Dockerfile +++ b/linters/clojure_cljstyle/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -171,13 +168,13 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BASE_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" \ - +# # cljstyle installation && curl --retry 5 --retry-delay 5 -sLO https://raw.githubusercontent.com/greglook/cljstyle/main/util/install-cljstyle \ && chmod +x install-cljstyle \ && ./install-cljstyle - +# #OTHER__END ################################ diff --git a/linters/cloudformation_cfn_lint/Dockerfile b/linters/cloudformation_cfn_lint/Dockerfile index 80e7bd7e917..65566bf96d9 100644 --- a/linters/cloudformation_cfn_lint/Dockerfile +++ b/linters/cloudformation_cfn_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/coffee_coffeelint/Dockerfile b/linters/coffee_coffeelint/Dockerfile index 705862dcb7a..0ec55919120 100644 --- a/linters/coffee_coffeelint/Dockerfile +++ b/linters/coffee_coffeelint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/copypaste_jscpd/Dockerfile b/linters/copypaste_jscpd/Dockerfile index f1637873684..b104855921f 100644 --- a/linters/copypaste_jscpd/Dockerfile +++ b/linters/copypaste_jscpd/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/cpp_clang_format/Dockerfile b/linters/cpp_clang_format/Dockerfile index c3849c48813..4b4b40fa158 100644 --- a/linters/cpp_clang_format/Dockerfile +++ b/linters/cpp_clang_format/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/cpp_cpplint/Dockerfile b/linters/cpp_cpplint/Dockerfile index fe816f71b6c..a8f698a8f11 100644 --- a/linters/cpp_cpplint/Dockerfile +++ b/linters/cpp_cpplint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/csharp_csharpier/Dockerfile b/linters/csharp_csharpier/Dockerfile index ae79c80b7c2..044fddbc3ed 100644 --- a/linters/csharp_csharpier/Dockerfile +++ b/linters/csharp_csharpier/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,10 +130,10 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # CSHARP installation RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # csharpier installation RUN dotnet tool install --global csharpier - +# #OTHER__END ################################ diff --git a/linters/csharp_dotnet_format/Dockerfile b/linters/csharp_dotnet_format/Dockerfile index 9f7936474c5..f5855ceba18 100644 --- a/linters/csharp_dotnet_format/Dockerfile +++ b/linters/csharp_dotnet_format/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # CSHARP installation RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# #OTHER__END ################################ diff --git a/linters/csharp_roslynator/Dockerfile b/linters/csharp_roslynator/Dockerfile index f58ad14c31e..2f08c0a51c1 100644 --- a/linters/csharp_roslynator/Dockerfile +++ b/linters/csharp_roslynator/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,10 +130,10 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # CSHARP installation RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# # roslynator installation RUN dotnet tool install -g roslynator.dotnet.cli - +# #OTHER__END ################################ diff --git a/linters/css_scss_lint/Dockerfile b/linters/css_scss_lint/Dockerfile index e14f5d8341a..0d178254173 100644 --- a/linters/css_scss_lint/Dockerfile +++ b/linters/css_scss_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/css_stylelint/Dockerfile b/linters/css_stylelint/Dockerfile index 5ea995a8f12..75e6d84e2bb 100644 --- a/linters/css_stylelint/Dockerfile +++ b/linters/css_stylelint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/dart_dartanalyzer/Dockerfile b/linters/dart_dartanalyzer/Dockerfile index 819650f126c..2430ad23ead 100644 --- a/linters/dart_dartanalyzer/Dockerfile +++ b/linters/dart_dartanalyzer/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 ARG DART_VERSION='2.8.4' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -171,14 +168,14 @@ RUN ALPINE_GLIBC_BASE_URL="https://github.com/sgerrand/alpine-pkg-glibc/releases "$ALPINE_GLIBC_BASE_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_BIN_PACKAGE_FILENAME" \ "$ALPINE_GLIBC_I18N_PACKAGE_FILENAME" \ - +# # dartanalyzer installation && wget --tries=5 https://storage.googleapis.com/dart-archive/channels/stable/release/${DART_VERSION}/sdk/dartsdk-linux-x64-release.zip -O - -q | unzip -q - \ && chmod +x dart-sdk/bin/dart* \ && mv dart-sdk/bin/* /usr/bin/ && mv dart-sdk/lib/* /usr/lib/ && mv dart-sdk/include/* /usr/include/ \ && rm -r dart-sdk/ - +# #OTHER__END ################################ diff --git a/linters/dockerfile_hadolint/Dockerfile b/linters/dockerfile_hadolint/Dockerfile index 119c65d1c72..312ded73674 100644 --- a/linters/dockerfile_hadolint/Dockerfile +++ b/linters/dockerfile_hadolint/Dockerfile @@ -19,7 +19,7 @@ ARG DOCKERFILE_HADOLINT_VERSION=v2.12.0-alpine ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint +FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint #OTHER__START # hadolint installation # Managed with COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint - +# #OTHER__END ################################ diff --git a/linters/editorconfig_editorconfig_checker/Dockerfile b/linters/editorconfig_editorconfig_checker/Dockerfile index c2d1d689fb2..5fa40d5f3bb 100644 --- a/linters/editorconfig_editorconfig_checker/Dockerfile +++ b/linters/editorconfig_editorconfig_checker/Dockerfile @@ -19,7 +19,7 @@ ARG EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION=v3.0.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker +FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checke #OTHER__START # editorconfig-checker installation # Managed with COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker - +# #OTHER__END ################################ diff --git a/linters/env_dotenv_linter/Dockerfile b/linters/env_dotenv_linter/Dockerfile index 745e76a3ee0..87fcfecbd03 100644 --- a/linters/env_dotenv_linter/Dockerfile +++ b/linters/env_dotenv_linter/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ #OTHER__START # dotenv-linter installation RUN wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/master/install.sh | sh -s - +# #OTHER__END ################################ diff --git a/linters/gherkin_gherkin_lint/Dockerfile b/linters/gherkin_gherkin_lint/Dockerfile index 4ec2f05ce57..fc600452bdd 100644 --- a/linters/gherkin_gherkin_lint/Dockerfile +++ b/linters/gherkin_gherkin_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/go_golangci_lint/Dockerfile b/linters/go_golangci_lint/Dockerfile index 4cde8c9dc54..5e9d5e4e803 100644 --- a/linters/go_golangci_lint/Dockerfile +++ b/linters/go_golangci_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -135,7 +132,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ RUN wget -O- -nv https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh \ && golangci-lint --version - +# #OTHER__END ################################ diff --git a/linters/go_revive/Dockerfile b/linters/go_revive/Dockerfile index e8b4c8787d4..75801cce3cf 100644 --- a/linters/go_revive/Dockerfile +++ b/linters/go_revive/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM golang:1-alpine as revive +FROM golang:1-alpine AS revive ## The golang image used as a builder is a temporary workaround (https://github.com/mgechev/revive/issues/787) ## for the released revive binaries not returning version numbers (devel). ## The install command should then be what is commented in the go.megalinter-descriptor.yml @@ -39,9 +39,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -138,7 +135,7 @@ COPY --link --from=revive /usr/bin/revive /usr/bin/revive #OTHER__START # revive installation # Managed with COPY --link --from=revive /usr/bin/revive /usr/bin/revive - +# #OTHER__END ################################ diff --git a/linters/graphql_graphql_schema_linter/Dockerfile b/linters/graphql_graphql_schema_linter/Dockerfile index c5fd10212c0..9b4763c476e 100644 --- a/linters/graphql_graphql_schema_linter/Dockerfile +++ b/linters/graphql_graphql_schema_linter/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/groovy_npm_groovy_lint/Dockerfile b/linters/groovy_npm_groovy_lint/Dockerfile index 8db99189e9a..0bbb5802cb8 100644 --- a/linters/groovy_npm_groovy_lint/Dockerfile +++ b/linters/groovy_npm_groovy_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -146,7 +143,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ #OTHER__START # npm-groovy-lint installation ENV JAVA_HOME_17=/usr/lib/jvm/java-17-openjdk - +# #OTHER__END ################################ diff --git a/linters/html_djlint/Dockerfile b/linters/html_djlint/Dockerfile index bed1af09e3f..70cd3719f16 100644 --- a/linters/html_djlint/Dockerfile +++ b/linters/html_djlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/html_htmlhint/Dockerfile b/linters/html_htmlhint/Dockerfile index 8be49e9b1cc..612b1411a51 100644 --- a/linters/html_htmlhint/Dockerfile +++ b/linters/html_htmlhint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/java_checkstyle/Dockerfile b/linters/java_checkstyle/Dockerfile index 6f13debfb91..54d14a13818 100644 --- a/linters/java_checkstyle/Dockerfile +++ b/linters/java_checkstyle/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -134,7 +131,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # JAVA installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # checkstyle installation RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ -H "Accept: application/vnd.github+json" \ @@ -146,7 +143,7 @@ RUN --mount=type=secret,id=GITHUB_TOKEN CHECKSTYLE_LATEST=$(curl -s \ && curl --retry 5 --retry-delay 5 -sSL $CHECKSTYLE_LATEST \ --output /usr/bin/checkstyle - +# #OTHER__END ################################ diff --git a/linters/java_pmd/Dockerfile b/linters/java_pmd/Dockerfile index 699b3079921..3a8eb82d5ac 100644 --- a/linters/java_pmd/Dockerfile +++ b/linters/java_pmd/Dockerfile @@ -35,9 +35,6 @@ ARG PMD_VERSION=7.4.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # JAVA installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # pmd installation RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${PMD_VERSION}/pmd-dist-${PMD_VERSION}-bin.zip && \ unzip pmd-dist-${PMD_VERSION}-bin.zip || echo "Error unzipping" && \ @@ -144,7 +141,7 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P mv pmd-bin-${PMD_VERSION} /usr/bin/pmd || echo "Error mv" && \ chmod +x /usr/bin/pmd/bin/pmd || echo "Error chmod" - +# #OTHER__END ################################ diff --git a/linters/javascript_es/Dockerfile b/linters/javascript_es/Dockerfile index ae5b55ac1f9..e8627a5c485 100644 --- a/linters/javascript_es/Dockerfile +++ b/linters/javascript_es/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/javascript_prettier/Dockerfile b/linters/javascript_prettier/Dockerfile index 4451287969f..00aa8aa839b 100644 --- a/linters/javascript_prettier/Dockerfile +++ b/linters/javascript_prettier/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/javascript_standard/Dockerfile b/linters/javascript_standard/Dockerfile index fdb9c5e1aed..f76b2d5599a 100644 --- a/linters/javascript_standard/Dockerfile +++ b/linters/javascript_standard/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/json_eslint_plugin_jsonc/Dockerfile b/linters/json_eslint_plugin_jsonc/Dockerfile index 8903828bbf2..a0d976b59fe 100644 --- a/linters/json_eslint_plugin_jsonc/Dockerfile +++ b/linters/json_eslint_plugin_jsonc/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/json_jsonlint/Dockerfile b/linters/json_jsonlint/Dockerfile index 784ff205a73..dcdbe9c1940 100644 --- a/linters/json_jsonlint/Dockerfile +++ b/linters/json_jsonlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/json_npm_package_json_lint/Dockerfile b/linters/json_npm_package_json_lint/Dockerfile index 1dfb49cd98c..5f6ba56f5e1 100644 --- a/linters/json_npm_package_json_lint/Dockerfile +++ b/linters/json_npm_package_json_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/json_prettier/Dockerfile b/linters/json_prettier/Dockerfile index 1a685c06265..5ff720c221f 100644 --- a/linters/json_prettier/Dockerfile +++ b/linters/json_prettier/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/json_v8r/Dockerfile b/linters/json_v8r/Dockerfile index 2216a18cd68..9b0dcce012c 100644 --- a/linters/json_v8r/Dockerfile +++ b/linters/json_v8r/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/jsx_eslint/Dockerfile b/linters/jsx_eslint/Dockerfile index b5b26f91932..8f0d9e15f19 100644 --- a/linters/jsx_eslint/Dockerfile +++ b/linters/jsx_eslint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/kotlin_detekt/Dockerfile b/linters/kotlin_detekt/Dockerfile index 3ec3c833d45..1f32aba2c2f 100644 --- a/linters/kotlin_detekt/Dockerfile +++ b/linters/kotlin_detekt/Dockerfile @@ -35,9 +35,6 @@ ARG DETEKT_VERSION=1.23.6 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # detekt installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releases/download/v${DETEKT_VERSION}/detekt-cli-${DETEKT_VERSION}.zip && \ unzip detekt-cli-${DETEKT_VERSION}.zip && \ @@ -145,7 +142,7 @@ RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/detekt/detekt/releas mv -n detekt-cli-${DETEKT_VERSION}/bin/* usr/bin && \ mv -n detekt-cli-${DETEKT_VERSION}/lib/* usr/lib - +# #OTHER__END ################################ diff --git a/linters/kotlin_ktlint/Dockerfile b/linters/kotlin_ktlint/Dockerfile index af035d2952f..8f0af311138 100644 --- a/linters/kotlin_ktlint/Dockerfile +++ b/linters/kotlin_ktlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -134,13 +131,13 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # KOTLIN installation ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" - +# # ktlint installation RUN curl --retry 5 --retry-delay 5 -sSLO https://github.com/pinterest/ktlint/releases/latest/download/ktlint && \ chmod a+x ktlint && \ mv "ktlint" /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/kubernetes_helm/Dockerfile b/linters/kubernetes_helm/Dockerfile index 678f11de41d..35e22f3cceb 100644 --- a/linters/kubernetes_helm/Dockerfile +++ b/linters/kubernetes_helm/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/kubernetes_kubeconform/Dockerfile b/linters/kubernetes_kubeconform/Dockerfile index 7fd2b12c159..1e6babeafc6 100644 --- a/linters/kubernetes_kubeconform/Dockerfile +++ b/linters/kubernetes_kubeconform/Dockerfile @@ -19,7 +19,7 @@ ARG KUBERNETES_KUBECONFORM_VERSION=v0.6.7-alpine ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform +FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=kubeconform /kubeconform /usr/bin/ #OTHER__START # kubeconform installation # Managed with COPY --link --from=kubeconform /kubeconform /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/kubernetes_kubescape/Dockerfile b/linters/kubernetes_kubescape/Dockerfile index afc77ecf39a..6ee9143dae4 100644 --- a/linters/kubernetes_kubescape/Dockerfile +++ b/linters/kubernetes_kubescape/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # kubescape installation RUN ln -s /lib/libc.so.6 /usr/lib/libresolv.so.2 && \ curl --retry 5 --retry-delay 5 -sLv https://raw.githubusercontent.com/kubescape/kubescape/master/install.sh | /bin/bash -s -- -v v2.9.0 - +# #OTHER__END ################################ diff --git a/linters/latex_chktex/Dockerfile b/linters/latex_chktex/Dockerfile index d7a1f83ba77..a4837f084ab 100644 --- a/linters/latex_chktex/Dockerfile +++ b/linters/latex_chktex/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM ghcr.io/assignuser/chktex-alpine:latest as chktex +FROM ghcr.io/assignuser/chktex-alpine:latest AS chktex #FROM__END ################## @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=chktex /usr/bin/chktex /usr/bin/ # chktex installation # Managed with COPY --link --from=chktex /usr/bin/chktex /usr/bin/ RUN cd ~ && touch .chktexrc && cd / - +# #OTHER__END ################################ diff --git a/linters/lua_luacheck/Dockerfile b/linters/lua_luacheck/Dockerfile index 07e36af4160..8656e8fa0f4 100644 --- a/linters/lua_luacheck/Dockerfile +++ b/linters/lua_luacheck/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -147,7 +144,7 @@ RUN wget --tries=5 https://www.lua.org/ftp/lua-5.3.5.tar.gz -O - -q | tar -xzf - && luarocks install luacheck \ && cd / - +# #OTHER__END ################################ diff --git a/linters/makefile_checkmake/Dockerfile b/linters/makefile_checkmake/Dockerfile index e9e285872e0..a84687d5a86 100644 --- a/linters/makefile_checkmake/Dockerfile +++ b/linters/makefile_checkmake/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM mrtazz/checkmake:latest as checkmake +FROM mrtazz/checkmake:latest AS checkmake #FROM__END ################## @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ COPY --link --from=checkmake /checkmake /usr/bin/checkmake #OTHER__START # checkmake installation # Managed with COPY --link --from=checkmake /checkmake /usr/bin/checkmake - +# #OTHER__END ################################ diff --git a/linters/markdown_markdown_link_check/Dockerfile b/linters/markdown_markdown_link_check/Dockerfile index a09c8fd5698..a9efe102a1a 100644 --- a/linters/markdown_markdown_link_check/Dockerfile +++ b/linters/markdown_markdown_link_check/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/markdown_markdown_table_formatter/Dockerfile b/linters/markdown_markdown_table_formatter/Dockerfile index a35a7de1b7b..fa06e51c573 100644 --- a/linters/markdown_markdown_table_formatter/Dockerfile +++ b/linters/markdown_markdown_table_formatter/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/markdown_markdownlint/Dockerfile b/linters/markdown_markdownlint/Dockerfile index 3daafa8438d..92035fea950 100644 --- a/linters/markdown_markdownlint/Dockerfile +++ b/linters/markdown_markdownlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/markdown_remark_lint/Dockerfile b/linters/markdown_remark_lint/Dockerfile index f278cddffaa..e73dc915bd0 100644 --- a/linters/markdown_remark_lint/Dockerfile +++ b/linters/markdown_remark_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/openapi_spectral/Dockerfile b/linters/openapi_spectral/Dockerfile index d9aa0b9b3e7..2fcb7e4f266 100644 --- a/linters/openapi_spectral/Dockerfile +++ b/linters/openapi_spectral/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/perl_perlcritic/Dockerfile b/linters/perl_perlcritic/Dockerfile index 9693584288d..ce1ecefcce3 100644 --- a/linters/perl_perlcritic/Dockerfile +++ b/linters/perl_perlcritic/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ RUN curl -fsSL https://raw.githubusercontent.com/skaji/cpm/main/cpm | perl - install -g --show-build-log-on-failure --without-build --without-test --without-runtime Perl::Critic \ && rm -rf /root/.perl-cpm - +# #OTHER__END ################################ diff --git a/linters/php_phpcs/Dockerfile b/linters/php_phpcs/Dockerfile index 2934ff53f82..d2e623ce2fa 100644 --- a/linters/php_phpcs/Dockerfile +++ b/linters/php_phpcs/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -162,11 +159,11 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # phpcs installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require squizlabs/php_codesniffer bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# #OTHER__END ################################ diff --git a/linters/php_phpcsfixer/Dockerfile b/linters/php_phpcsfixer/Dockerfile index b1aba0928cf..2869cbb22da 100644 --- a/linters/php_phpcsfixer/Dockerfile +++ b/linters/php_phpcsfixer/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -162,11 +159,11 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # php-cs-fixer installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require friendsofphp/php-cs-fixer - +# #OTHER__END ################################ diff --git a/linters/php_phplint/Dockerfile b/linters/php_phplint/Dockerfile index 12c7cb5bc80..6d3b4a98ea7 100644 --- a/linters/php_phplint/Dockerfile +++ b/linters/php_phplint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -162,11 +159,11 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # phplint installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require overtrue/phplint bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# #OTHER__END ################################ diff --git a/linters/php_phpstan/Dockerfile b/linters/php_phpstan/Dockerfile index 568f76ecb9e..36c867fe267 100644 --- a/linters/php_phpstan/Dockerfile +++ b/linters/php_phpstan/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -162,10 +159,10 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # phpstan installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && composer global require phpstan/phpstan bartlett/sarif-php-converters "1.0.x-dev#8ed4611 as 1.0.0" - +# #OTHER__END ################################ diff --git a/linters/php_psalm/Dockerfile b/linters/php_psalm/Dockerfile index a33be05953d..7118a844fd1 100644 --- a/linters/php_psalm/Dockerfile +++ b/linters/php_psalm/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -162,11 +159,11 @@ RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GI # Managed with COPY --from=composer/composer:2-bin /composer /usr/bin/composer ENV PATH="/root/.composer/vendor/bin:${PATH}" - +# # psalm installation RUN --mount=type=secret,id=GITHUB_TOKEN GITHUB_AUTH_TOKEN="$(cat /run/secrets/GITHUB_TOKEN)" && export GITHUB_AUTH_TOKEN && phive --no-progress install psalm -g --trust-gpg-keys 8A03EA3B385DBAA1,12CE0F1D262429A5 - +# #OTHER__END ################################ diff --git a/linters/powershell_powershell/Dockerfile b/linters/powershell_powershell/Dockerfile index 854e01d9c45..9b1f2853d2e 100644 --- a/linters/powershell_powershell/Dockerfile +++ b/linters/powershell_powershell/Dockerfile @@ -35,9 +35,6 @@ ARG PSSA_VERSION='1.22.0' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -139,10 +136,10 @@ RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/po && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh \ - +# # powershell installation && pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# #OTHER__END ################################ diff --git a/linters/powershell_powershell_formatter/Dockerfile b/linters/powershell_powershell_formatter/Dockerfile index a950fda3703..cab28b3033f 100644 --- a/linters/powershell_powershell_formatter/Dockerfile +++ b/linters/powershell_powershell_formatter/Dockerfile @@ -35,9 +35,6 @@ ARG PSSA_VERSION='1.22.0' #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -139,10 +136,10 @@ RUN curl -L https://github.com/PowerShell/PowerShell/releases/download/v7.4.2/po && tar zxf /tmp/powershell.tar.gz -C /opt/microsoft/powershell/7 \ && chmod +x /opt/microsoft/powershell/7/pwsh \ && ln -s /opt/microsoft/powershell/7/pwsh /usr/bin/pwsh \ - +# # powershell_formatter installation && pwsh -c 'Install-Module -Name PSScriptAnalyzer -RequiredVersion ${PSSA_VERSION} -Scope AllUsers -Force' - +# #OTHER__END ################################ diff --git a/linters/protobuf_protolint/Dockerfile b/linters/protobuf_protolint/Dockerfile index 9371b31905f..1ac4f436f70 100644 --- a/linters/protobuf_protolint/Dockerfile +++ b/linters/protobuf_protolint/Dockerfile @@ -19,7 +19,7 @@ ARG PROTOBUF_PROTOLINT_VERSION=0.50.4 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint +FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ #OTHER__START # protolint installation # Managed with COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/puppet_puppet_lint/Dockerfile b/linters/puppet_puppet_lint/Dockerfile index 6a38784f5ed..e79f800eb7c 100644 --- a/linters/puppet_puppet_lint/Dockerfile +++ b/linters/puppet_puppet_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_bandit/Dockerfile b/linters/python_bandit/Dockerfile index ea126e340e5..5eed81c284a 100644 --- a/linters/python_bandit/Dockerfile +++ b/linters/python_bandit/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_black/Dockerfile b/linters/python_black/Dockerfile index 559795accd9..f04334b2b6e 100644 --- a/linters/python_black/Dockerfile +++ b/linters/python_black/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_flake8/Dockerfile b/linters/python_flake8/Dockerfile index ee411b5e7f9..81a679a943d 100644 --- a/linters/python_flake8/Dockerfile +++ b/linters/python_flake8/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_isort/Dockerfile b/linters/python_isort/Dockerfile index 9ebbb54f790..260453b1cba 100644 --- a/linters/python_isort/Dockerfile +++ b/linters/python_isort/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_mypy/Dockerfile b/linters/python_mypy/Dockerfile index 26133c48595..13cc17f2e44 100644 --- a/linters/python_mypy/Dockerfile +++ b/linters/python_mypy/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ #OTHER__START # mypy installation ENV MYPY_CACHE_DIR=/tmp - +# #OTHER__END ################################ diff --git a/linters/python_pylint/Dockerfile b/linters/python_pylint/Dockerfile index b75d413ffca..f349870ecdf 100644 --- a/linters/python_pylint/Dockerfile +++ b/linters/python_pylint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_pyright/Dockerfile b/linters/python_pyright/Dockerfile index 932b3de0a45..2ebbb1df7a1 100644 --- a/linters/python_pyright/Dockerfile +++ b/linters/python_pyright/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/python_ruff/Dockerfile b/linters/python_ruff/Dockerfile index 2a56153ba84..3890126dafc 100644 --- a/linters/python_ruff/Dockerfile +++ b/linters/python_ruff/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/r_lintr/Dockerfile b/linters/r_lintr/Dockerfile index 4298fbb6b1f..085914f8b42 100644 --- a/linters/r_lintr/Dockerfile +++ b/linters/r_lintr/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -146,7 +143,7 @@ RUN mkdir -p /home/r-library \ && Rscript -e "install.packages(c('lintr','purrr'), repos = 'https://cloud.r-project.org/')" \ && R -e "install.packages(list.dirs('/home/r-library',recursive = FALSE), repos = NULL, type = 'source')" - +# #OTHER__END ################################ diff --git a/linters/raku_raku/Dockerfile b/linters/raku_raku/Dockerfile index b0304f860ce..389c05a623b 100644 --- a/linters/raku_raku/Dockerfile +++ b/linters/raku_raku/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -139,7 +136,7 @@ RUN curl -L https://github.com/nxadm/rakudo-pkg/releases/download/v2020.10-02/ra && /opt/rakudo-pkg/bin/install-zef-as-user ENV PATH="~/.raku/bin:/opt/rakudo-pkg/bin:/opt/rakudo-pkg/share/perl6/site/bin:$PATH" - +# #OTHER__END ################################ diff --git a/linters/repository_checkov/Dockerfile b/linters/repository_checkov/Dockerfile index 4ef9ae0df9b..7083492d39a 100644 --- a/linters/repository_checkov/Dockerfile +++ b/linters/repository_checkov/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/repository_devskim/Dockerfile b/linters/repository_devskim/Dockerfile index 9ade3dcd3b5..adc15ad9f1a 100644 --- a/linters/repository_devskim/Dockerfile +++ b/linters/repository_devskim/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -134,7 +131,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" RUN dotnet tool install --global Microsoft.CST.DevSkim.CLI - +# #OTHER__END ################################ diff --git a/linters/repository_dustilock/Dockerfile b/linters/repository_dustilock/Dockerfile index 924be833b8e..9af67f314ab 100644 --- a/linters/repository_dustilock/Dockerfile +++ b/linters/repository_dustilock/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM golang:alpine as dustilock +FROM golang:alpine AS dustilock RUN GOBIN=/usr/bin go install github.com/checkmarx/dustilock@v1.2.0 #FROM__END @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=dustilock /usr/bin/dustilock /usr/bin/dustilock #OTHER__START # dustilock installation # Managed with COPY --link --from=dustilock /usr/bin/dustilock /usr/bin/dustilock - +# #OTHER__END ################################ diff --git a/linters/repository_git_diff/Dockerfile b/linters/repository_git_diff/Dockerfile index 85acbd72b4d..c05e507dbc3 100644 --- a/linters/repository_git_diff/Dockerfile +++ b/linters/repository_git_diff/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/repository_gitleaks/Dockerfile b/linters/repository_gitleaks/Dockerfile index 79c64dfbfb5..546f4509c33 100644 --- a/linters/repository_gitleaks/Dockerfile +++ b/linters/repository_gitleaks/Dockerfile @@ -19,7 +19,7 @@ ARG REPOSITORY_GITLEAKS_VERSION=v8.18.4 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks +FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ #OTHER__START # gitleaks installation # Managed with COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/repository_grype/Dockerfile b/linters/repository_grype/Dockerfile index 1b19d242031..f8788a74725 100644 --- a/linters/repository_grype/Dockerfile +++ b/linters/repository_grype/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ #OTHER__START # grype installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin - +# #OTHER__END ################################ diff --git a/linters/repository_kics/Dockerfile b/linters/repository_kics/Dockerfile index 331af943641..13582975ddf 100644 --- a/linters/repository_kics/Dockerfile +++ b/linters/repository_kics/Dockerfile @@ -19,7 +19,7 @@ ARG REPOSITORY_KICS_VERSION=v2.1.1-alpine ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics +FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,7 +133,7 @@ COPY --from=kics /app/bin/assets /usr/bin/assets # Managed with COPY --link --from=kics /app/bin/kics /usr/bin/kics ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries # Managed with COPY --from=kics /app/bin/assets /usr/bin/assets - +# #OTHER__END ################################ diff --git a/linters/repository_ls_lint/Dockerfile b/linters/repository_ls_lint/Dockerfile index af7710160ee..2a24a191783 100644 --- a/linters/repository_ls_lint/Dockerfile +++ b/linters/repository_ls_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/repository_secretlint/Dockerfile b/linters/repository_secretlint/Dockerfile index 9dbb9db5c3d..5ca2c37f0fb 100644 --- a/linters/repository_secretlint/Dockerfile +++ b/linters/repository_secretlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/repository_semgrep/Dockerfile b/linters/repository_semgrep/Dockerfile index da95ac364e2..cb150204554 100644 --- a/linters/repository_semgrep/Dockerfile +++ b/linters/repository_semgrep/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/repository_syft/Dockerfile b/linters/repository_syft/Dockerfile index a30134c9801..b29be59e418 100644 --- a/linters/repository_syft/Dockerfile +++ b/linters/repository_syft/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ #OTHER__START # syft installation RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin - +# #OTHER__END ################################ diff --git a/linters/repository_trivy/Dockerfile b/linters/repository_trivy/Dockerfile index 4c5e20d7b16..5721dd4f8be 100644 --- a/linters/repository_trivy/Dockerfile +++ b/linters/repository_trivy/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # trivy installation RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# #OTHER__END ################################ diff --git a/linters/repository_trivy_sbom/Dockerfile b/linters/repository_trivy_sbom/Dockerfile index 7670305d684..cf1a72099db 100644 --- a/linters/repository_trivy_sbom/Dockerfile +++ b/linters/repository_trivy_sbom/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # trivy-sbom installation RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin - +# #OTHER__END ################################ diff --git a/linters/repository_trufflehog/Dockerfile b/linters/repository_trufflehog/Dockerfile index 4f3906eba6b..ab17b82685a 100644 --- a/linters/repository_trufflehog/Dockerfile +++ b/linters/repository_trufflehog/Dockerfile @@ -19,7 +19,7 @@ ARG REPOSITORY_TRUFFLEHOG_VERSION=3.81.6 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog +FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ #OTHER__START # trufflehog installation # Managed with COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/rst_rst_lint/Dockerfile b/linters/rst_rst_lint/Dockerfile index ee561629404..7f002c94b52 100644 --- a/linters/rst_rst_lint/Dockerfile +++ b/linters/rst_rst_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/rst_rstcheck/Dockerfile b/linters/rst_rstcheck/Dockerfile index 1a9834d4c31..dd048ac6df9 100644 --- a/linters/rst_rstcheck/Dockerfile +++ b/linters/rst_rstcheck/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/rst_rstfmt/Dockerfile b/linters/rst_rstfmt/Dockerfile index eaba6e48689..3128dbfa35c 100644 --- a/linters/rst_rstfmt/Dockerfile +++ b/linters/rst_rstfmt/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/ruby_rubocop/Dockerfile b/linters/ruby_rubocop/Dockerfile index 7fd87403811..36463c2d009 100644 --- a/linters/ruby_rubocop/Dockerfile +++ b/linters/ruby_rubocop/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/rust_clippy/Dockerfile b/linters/rust_clippy/Dockerfile index 5e5681969eb..f875802e798 100644 --- a/linters/rust_clippy/Dockerfile +++ b/linters/rust_clippy/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/salesforce_lightning_flow_scanner/Dockerfile b/linters/salesforce_lightning_flow_scanner/Dockerfile index c6b845001ab..ad971f5ea34 100644 --- a/linters/salesforce_lightning_flow_scanner/Dockerfile +++ b/linters/salesforce_lightning_flow_scanner/Dockerfile @@ -40,9 +40,6 @@ ARG SFDX_HARDIS_VERSION=4.52.0 ARG LIGHTNING_FLOW_SCANNER_VERSION=2.33.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -158,12 +155,12 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # lightning-flow-scanner installation && echo y|sf plugins install lightning-flow-scanner@${LIGHTNING_FLOW_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache - +# #OTHER__END ################################ diff --git a/linters/salesforce_sfdx_scanner_apex/Dockerfile b/linters/salesforce_sfdx_scanner_apex/Dockerfile index 10e22f07395..2a9a849a87f 100644 --- a/linters/salesforce_sfdx_scanner_apex/Dockerfile +++ b/linters/salesforce_sfdx_scanner_apex/Dockerfile @@ -40,9 +40,6 @@ ARG SFDX_HARDIS_VERSION=4.52.0 ARG SALESFORCE_SFDX_SCANNER_VERSION=4.4.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -158,12 +155,12 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # sfdx-scanner-apex installation && sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache - +# #OTHER__END ################################ diff --git a/linters/salesforce_sfdx_scanner_aura/Dockerfile b/linters/salesforce_sfdx_scanner_aura/Dockerfile index 2c5227cb798..814333ef2b2 100644 --- a/linters/salesforce_sfdx_scanner_aura/Dockerfile +++ b/linters/salesforce_sfdx_scanner_aura/Dockerfile @@ -40,9 +40,6 @@ ARG SFDX_HARDIS_VERSION=4.52.0 ARG SALESFORCE_SFDX_SCANNER_VERSION=4.4.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -158,12 +155,12 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # sfdx-scanner-aura installation && sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache - +# #OTHER__END ################################ diff --git a/linters/salesforce_sfdx_scanner_lwc/Dockerfile b/linters/salesforce_sfdx_scanner_lwc/Dockerfile index 16efad99627..eb53546d839 100644 --- a/linters/salesforce_sfdx_scanner_lwc/Dockerfile +++ b/linters/salesforce_sfdx_scanner_lwc/Dockerfile @@ -40,9 +40,6 @@ ARG SFDX_HARDIS_VERSION=4.52.0 ARG SALESFORCE_SFDX_SCANNER_VERSION=4.4.0 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -158,12 +155,12 @@ RUN sf plugins install @salesforce/plugin-packaging@${SALESFORCE_PLUGIN_PACKAGIN && echo y|sf plugins install sfdx-hardis@${SFDX_HARDIS_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache \ - +# # sfdx-scanner-lwc installation && sf plugins install @salesforce/sfdx-scanner@${SALESFORCE_SFDX_SCANNER_VERSION} \ && npm cache clean --force || true \ && rm -rf /root/.npm/_cacache - +# #OTHER__END ################################ diff --git a/linters/scala_scalafix/Dockerfile b/linters/scala_scalafix/Dockerfile index 9155d68cbfe..11d03c88aea 100644 --- a/linters/scala_scalafix/Dockerfile +++ b/linters/scala_scalafix/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -136,10 +133,10 @@ ENV JAVA_HOME=/usr/lib/jvm/java-21-openjdk ENV PATH="$JAVA_HOME/bin:${PATH}" RUN curl --retry-all-errors --retry 10 -fLo coursier https://git.io/coursier-cli && \ chmod +x coursier \ - +# # scalafix installation && ./coursier install scalafix --quiet --install-dir /usr/bin && rm -rf /root/.cache - +# #OTHER__END ################################ diff --git a/linters/snakemake_lint/Dockerfile b/linters/snakemake_lint/Dockerfile index 2361f129524..8d7674b7496 100644 --- a/linters/snakemake_lint/Dockerfile +++ b/linters/snakemake_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/snakemake_snakefmt/Dockerfile b/linters/snakemake_snakefmt/Dockerfile index 6d5c8c51861..ce7ca0d1d1a 100644 --- a/linters/snakemake_snakefmt/Dockerfile +++ b/linters/snakemake_snakefmt/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/spell_cspell/Dockerfile b/linters/spell_cspell/Dockerfile index 306bbd3417b..c2f2b8c40cb 100644 --- a/linters/spell_cspell/Dockerfile +++ b/linters/spell_cspell/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/spell_lychee/Dockerfile b/linters/spell_lychee/Dockerfile index 563ed671bf0..486edf10d4a 100644 --- a/linters/spell_lychee/Dockerfile +++ b/linters/spell_lychee/Dockerfile @@ -18,7 +18,7 @@ ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM lycheeverse/lychee:latest-alpine as lychee +FROM lycheeverse/lychee:latest-alpine AS lychee #FROM__END ################## @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -132,7 +129,7 @@ COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ #OTHER__START # lychee installation # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/spell_proselint/Dockerfile b/linters/spell_proselint/Dockerfile index 78b20b41bee..b8f57eca8f5 100644 --- a/linters/spell_proselint/Dockerfile +++ b/linters/spell_proselint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/spell_vale/Dockerfile b/linters/spell_vale/Dockerfile index 7b954eded16..999cb1803a3 100644 --- a/linters/spell_vale/Dockerfile +++ b/linters/spell_vale/Dockerfile @@ -19,7 +19,7 @@ ARG SPELL_VALE_VERSION=v3.7.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM jdkato/vale:${SPELL_VALE_VERSION} as vale +FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=vale /bin/vale /bin/vale #OTHER__START # vale installation # Managed with COPY --link --from=vale /bin/vale /bin/vale - +# #OTHER__END ################################ diff --git a/linters/sql_sql_lint/Dockerfile b/linters/sql_sql_lint/Dockerfile index 885526c4204..abb03b19228 100644 --- a/linters/sql_sql_lint/Dockerfile +++ b/linters/sql_sql_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/sql_sqlfluff/Dockerfile b/linters/sql_sqlfluff/Dockerfile index efd9d59db47..a0f0715b716 100644 --- a/linters/sql_sqlfluff/Dockerfile +++ b/linters/sql_sqlfluff/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/sql_tsqllint/Dockerfile b/linters/sql_tsqllint/Dockerfile index 945415abfa8..0e4effac6bb 100644 --- a/linters/sql_tsqllint/Dockerfile +++ b/linters/sql_tsqllint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -134,7 +131,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" RUN dotnet tool install --global TSQLLint - +# #OTHER__END ################################ diff --git a/linters/swift_swiftlint/Dockerfile b/linters/swift_swiftlint/Dockerfile index 03ed9f0b4ca..9cd9f9f4877 100644 --- a/linters/swift_swiftlint/Dockerfile +++ b/linters/swift_swiftlint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/tekton_tekton_lint/Dockerfile b/linters/tekton_tekton_lint/Dockerfile index f10b693db00..05460891088 100644 --- a/linters/tekton_tekton_lint/Dockerfile +++ b/linters/tekton_tekton_lint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/terraform_terraform_fmt/Dockerfile b/linters/terraform_terraform_fmt/Dockerfile index 600de51e5ef..a18a9b72490 100644 --- a/linters/terraform_terraform_fmt/Dockerfile +++ b/linters/terraform_terraform_fmt/Dockerfile @@ -19,7 +19,7 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=terragrunt /bin/terraform /usr/bin/ #OTHER__START # terraform-fmt installation # Managed with COPY --link --from=terragrunt /bin/terraform /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/terraform_terragrunt/Dockerfile b/linters/terraform_terragrunt/Dockerfile index b09ddb73a31..7d2f9285a46 100644 --- a/linters/terraform_terragrunt/Dockerfile +++ b/linters/terraform_terragrunt/Dockerfile @@ -19,7 +19,7 @@ ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt +FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ #OTHER__START # terragrunt installation # Managed with COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/terraform_terrascan/Dockerfile b/linters/terraform_terrascan/Dockerfile index da4f3b4fc2e..6db28b5e6e0 100644 --- a/linters/terraform_terrascan/Dockerfile +++ b/linters/terraform_terrascan/Dockerfile @@ -19,7 +19,7 @@ ARG TERRAFORM_TERRASCAN_VERSION=1.18.11 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan +FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ #OTHER__START # terrascan installation # Managed with COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/terraform_tflint/Dockerfile b/linters/terraform_tflint/Dockerfile index 0bc54609416..e4e206fdd4c 100644 --- a/linters/terraform_tflint/Dockerfile +++ b/linters/terraform_tflint/Dockerfile @@ -19,7 +19,7 @@ ARG TERRAFORM_TFLINT_VERSION=0.52.0 ## @generated by .automation/build.py using descriptor files, please do not update manually ## ############################################################################################# #FROM__START -FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint +FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint #FROM__END ################## @@ -34,9 +34,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ #OTHER__START # tflint installation # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ - +# #OTHER__END ################################ diff --git a/linters/tsx_eslint/Dockerfile b/linters/tsx_eslint/Dockerfile index 56f7bff07a7..17911a00f4d 100644 --- a/linters/tsx_eslint/Dockerfile +++ b/linters/tsx_eslint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/typescript_es/Dockerfile b/linters/typescript_es/Dockerfile index d6342b21310..3c353b4d542 100644 --- a/linters/typescript_es/Dockerfile +++ b/linters/typescript_es/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/typescript_prettier/Dockerfile b/linters/typescript_prettier/Dockerfile index bc517b60b39..8e078bf947a 100644 --- a/linters/typescript_prettier/Dockerfile +++ b/linters/typescript_prettier/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/typescript_standard/Dockerfile b/linters/typescript_standard/Dockerfile index 0155e686432..48d96fec1e0 100644 --- a/linters/typescript_standard/Dockerfile +++ b/linters/typescript_standard/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/vbdotnet_dotnet_format/Dockerfile b/linters/vbdotnet_dotnet_format/Dockerfile index c151bb8c31d..e62fbf949d5 100644 --- a/linters/vbdotnet_dotnet_format/Dockerfile +++ b/linters/vbdotnet_dotnet_format/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### @@ -133,7 +130,7 @@ ENV PATH="/node-deps/node_modules/.bin:${PATH}" \ # VBDOTNET installation RUN apk add --no-cache dotnet8-sdk ENV PATH="${PATH}:/root/.dotnet/tools" - +# #OTHER__END ################################ diff --git a/linters/xml_xmllint/Dockerfile b/linters/xml_xmllint/Dockerfile index 2782e4e0258..4f8d4bb9473 100644 --- a/linters/xml_xmllint/Dockerfile +++ b/linters/xml_xmllint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/yaml_prettier/Dockerfile b/linters/yaml_prettier/Dockerfile index f697633790a..cdffd6beca8 100644 --- a/linters/yaml_prettier/Dockerfile +++ b/linters/yaml_prettier/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/yaml_v8r/Dockerfile b/linters/yaml_v8r/Dockerfile index 2b4320e7240..6c4ee3f6084 100644 --- a/linters/yaml_v8r/Dockerfile +++ b/linters/yaml_v8r/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/linters/yaml_yamllint/Dockerfile b/linters/yaml_yamllint/Dockerfile index 9428061c3ff..00e5da960a1 100644 --- a/linters/yaml_yamllint/Dockerfile +++ b/linters/yaml_yamllint/Dockerfile @@ -33,9 +33,6 @@ FROM python:3.12.4-alpine3.20 #ARG__END -# Static args -ARG GITHUB_TOKEN - #################### # Run APK installs # #################### diff --git a/megalinter/descriptors/action.megalinter-descriptor.yml b/megalinter/descriptors/action.megalinter-descriptor.yml index 724fcafcc4c..6695946ad0e 100644 --- a/megalinter/descriptors/action.megalinter-descriptor.yml +++ b/megalinter/descriptors/action.megalinter-descriptor.yml @@ -35,9 +35,9 @@ linters: # renovate: datasource=docker depName=koalaman/shellcheck ARG BASH_SHELLCHECK_VERSION=v0.10.0 - |- - FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} as actionlint + FROM rhysd/actionlint:${ACTION_ACTIONLINT_VERSION} AS actionlint # shellcheck is a dependency for actionlint - - FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck + - FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck - |- COPY --link --from=actionlint /usr/local/bin/actionlint /usr/bin/actionlint # shellcheck is a dependency for actionlint diff --git a/megalinter/descriptors/bash.megalinter-descriptor.yml b/megalinter/descriptors/bash.megalinter-descriptor.yml index 8589006bcfd..b5c035d7486 100644 --- a/megalinter/descriptors/bash.megalinter-descriptor.yml +++ b/megalinter/descriptors/bash.megalinter-descriptor.yml @@ -81,7 +81,7 @@ linters: - |- # renovate: datasource=docker depName=koalaman/shellcheck ARG BASH_SHELLCHECK_VERSION=v0.10.0 - - FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} as shellcheck + - FROM koalaman/shellcheck:${BASH_SHELLCHECK_VERSION} AS shellcheck - COPY --link --from=shellcheck /bin/shellcheck /usr/bin/shellcheck ide: atom: @@ -127,7 +127,7 @@ linters: - "shfmt -w myfile.sh" # Fix install: dockerfile: - - FROM mvdan/shfmt:latest-alpine as shfmt + - FROM mvdan/shfmt:latest-alpine AS shfmt - COPY --link --from=shfmt /bin/shfmt /usr/bin/ ide: atom: diff --git a/megalinter/descriptors/dockerfile.megalinter-descriptor.yml b/megalinter/descriptors/dockerfile.megalinter-descriptor.yml index 1d755f2cc4b..04947a6c56c 100644 --- a/megalinter/descriptors/dockerfile.megalinter-descriptor.yml +++ b/megalinter/descriptors/dockerfile.megalinter-descriptor.yml @@ -40,7 +40,7 @@ linters: - |- # renovate: datasource=docker depName=hadolint/hadolint ARG DOCKERFILE_HADOLINT_VERSION=v2.12.0-alpine - - FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} as hadolint + - FROM hadolint/hadolint:${DOCKERFILE_HADOLINT_VERSION} AS hadolint - COPY --link --from=hadolint /bin/hadolint /usr/bin/hadolint ide: atom: diff --git a/megalinter/descriptors/editorconfig.megalinter-descriptor.yml b/megalinter/descriptors/editorconfig.megalinter-descriptor.yml index 1d34c2919e6..2f0a557a137 100644 --- a/megalinter/descriptors/editorconfig.megalinter-descriptor.yml +++ b/megalinter/descriptors/editorconfig.megalinter-descriptor.yml @@ -28,5 +28,5 @@ linters: - |- # renovate: datasource=docker depName=mstruebing/editorconfig-checker ARG EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION=v3.0.3 - - FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} as editorconfig-checker + - FROM mstruebing/editorconfig-checker:${EDITORCONFIG_EDITORCONFIG_CHECKER_VERSION} AS editorconfig-checker - COPY --link --from=editorconfig-checker /usr/bin/ec /usr/bin/editorconfig-checker diff --git a/megalinter/descriptors/go.megalinter-descriptor.yml b/megalinter/descriptors/go.megalinter-descriptor.yml index 8dbf4099885..e475f88d0de 100644 --- a/megalinter/descriptors/go.megalinter-descriptor.yml +++ b/megalinter/descriptors/go.megalinter-descriptor.yml @@ -79,11 +79,11 @@ linters: downgraded_reason: building fails in https://github.com/oxsecurity/megalinter/pull/3802 install: dockerfile: - ## Until "FROM ghcr.io/mgechev/revive:1.2.5 as revive" is available, use - # - FROM ghcr.io/mgechev/revive:1.2.5 as revive + ## Until "FROM ghcr.io/mgechev/revive:1.2.5 AS revive" is available, use + # - FROM ghcr.io/mgechev/revive:1.2.5 AS revive # - COPY --link --from=revive /usr/bin/revive /usr/bin/revive - |- - FROM golang:1-alpine as revive + FROM golang:1-alpine AS revive ## The golang image used as a builder is a temporary workaround (https://github.com/mgechev/revive/issues/787) ## for the released revive binaries not returning version numbers (devel). ## The install command should then be what is commented in the go.megalinter-descriptor.yml diff --git a/megalinter/descriptors/kubernetes.megalinter-descriptor.yml b/megalinter/descriptors/kubernetes.megalinter-descriptor.yml index 0eb091be8cc..cfdb6d61e26 100644 --- a/megalinter/descriptors/kubernetes.megalinter-descriptor.yml +++ b/megalinter/descriptors/kubernetes.megalinter-descriptor.yml @@ -41,7 +41,7 @@ linters: - |- # renovate: datasource=docker depName=ghcr.io/yannh/kubeconform ARG KUBERNETES_KUBECONFORM_VERSION=v0.6.7-alpine - - FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} as kubeconform + - FROM ghcr.io/yannh/kubeconform:${KUBERNETES_KUBECONFORM_VERSION} AS kubeconform - COPY --link --from=kubeconform /kubeconform /usr/bin/ # HELM LINT diff --git a/megalinter/descriptors/latex.megalinter-descriptor.yml b/megalinter/descriptors/latex.megalinter-descriptor.yml index 1af447b0010..f2ac5347bb9 100644 --- a/megalinter/descriptors/latex.megalinter-descriptor.yml +++ b/megalinter/descriptors/latex.megalinter-descriptor.yml @@ -19,7 +19,7 @@ linters: - "chktex -q -l .chktexrc myfile.tex" install: dockerfile: - - FROM ghcr.io/assignuser/chktex-alpine:latest as chktex + - FROM ghcr.io/assignuser/chktex-alpine:latest AS chktex - COPY --link --from=chktex /usr/bin/chktex /usr/bin/ - RUN cd ~ && touch .chktexrc && cd / ide: diff --git a/megalinter/descriptors/makefile.megalinter-descriptor.yml b/megalinter/descriptors/makefile.megalinter-descriptor.yml index 065f0e170c8..88bcc243056 100644 --- a/megalinter/descriptors/makefile.megalinter-descriptor.yml +++ b/megalinter/descriptors/makefile.megalinter-descriptor.yml @@ -36,5 +36,5 @@ linters: apk: - make dockerfile: - - FROM mrtazz/checkmake:latest as checkmake + - FROM mrtazz/checkmake:latest AS checkmake - COPY --link --from=checkmake /checkmake /usr/bin/checkmake diff --git a/megalinter/descriptors/protobuf.megalinter-descriptor.yml b/megalinter/descriptors/protobuf.megalinter-descriptor.yml index c69265b1a8d..faea64d2ad5 100644 --- a/megalinter/descriptors/protobuf.megalinter-descriptor.yml +++ b/megalinter/descriptors/protobuf.megalinter-descriptor.yml @@ -28,7 +28,7 @@ linters: - |- # renovate: datasource=docker depName=yoheimuta/protolint ARG PROTOBUF_PROTOLINT_VERSION=0.50.4 - - FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} as protolint + - FROM yoheimuta/protolint:${PROTOBUF_PROTOLINT_VERSION} AS protolint - COPY --link --from=protolint /usr/local/bin/protolint /usr/bin/ ide: idea: diff --git a/megalinter/descriptors/repository.megalinter-descriptor.yml b/megalinter/descriptors/repository.megalinter-descriptor.yml index a6b51d1bd26..95b3f4f71ee 100644 --- a/megalinter/descriptors/repository.megalinter-descriptor.yml +++ b/megalinter/descriptors/repository.megalinter-descriptor.yml @@ -137,7 +137,7 @@ linters: # The golang image used as a builder is a temporary workaround # Dustilock is not released as a binary or container - |- - FROM golang:alpine as dustilock + FROM golang:alpine AS dustilock RUN GOBIN=/usr/bin go install github.com/checkmarx/dustilock@v1.2.0 - COPY --link --from=dustilock /usr/bin/dustilock /usr/bin/dustilock @@ -249,7 +249,7 @@ linters: - |- # renovate: datasource=docker depName=zricethezav/gitleaks ARG REPOSITORY_GITLEAKS_VERSION=v8.18.4 - - FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} as gitleaks + - FROM zricethezav/gitleaks:${REPOSITORY_GITLEAKS_VERSION} AS gitleaks - COPY --link --from=gitleaks /usr/bin/gitleaks /usr/bin/ variables: - name: REPOSITORY_GITLEAKS_PR_COMMITS_SCAN @@ -337,7 +337,7 @@ linters: - |- # renovate: datasource=docker depName=checkmarx/kics ARG REPOSITORY_KICS_VERSION=v2.1.1-alpine - - FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} as kics + - FROM checkmarx/kics:${REPOSITORY_KICS_VERSION} AS kics - COPY --link --from=kics /app/bin/kics /usr/bin/kics - ENV KICS_QUERIES_PATH=/usr/bin/assets/queries KICS_LIBRARIES_PATH=/usr/bin/assets/libraries - COPY --from=kics /app/bin/assets /usr/bin/assets @@ -614,6 +614,6 @@ linters: - |- # renovate: datasource=docker depName=trufflesecurity/trufflehog ARG REPOSITORY_TRUFFLEHOG_VERSION=3.81.6 - - FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} as trufflehog + - FROM trufflesecurity/trufflehog:${REPOSITORY_TRUFFLEHOG_VERSION} AS trufflehog - COPY --link --from=trufflehog /usr/bin/trufflehog /usr/bin/ test_folder: gitleaks diff --git a/megalinter/descriptors/spell.megalinter-descriptor.yml b/megalinter/descriptors/spell.megalinter-descriptor.yml index a334c0706e7..de10b7e3ba3 100644 --- a/megalinter/descriptors/spell.megalinter-descriptor.yml +++ b/megalinter/descriptors/spell.megalinter-descriptor.yml @@ -124,7 +124,7 @@ linters: - |- # renovate: datasource=docker depName=jdkato/vale ARG SPELL_VALE_VERSION=v3.7.0 - - FROM jdkato/vale:${SPELL_VALE_VERSION} as vale + - FROM jdkato/vale:${SPELL_VALE_VERSION} AS vale - COPY --link --from=vale /bin/vale /bin/vale ide: emacs: @@ -209,5 +209,5 @@ linters: - 'lychee --format detailed --no-progress --glob-ignore-case --verbose "~/projects/**/[r]eadme.*"' install: dockerfile: - - FROM lycheeverse/lychee:latest-alpine as lychee + - FROM lycheeverse/lychee:latest-alpine AS lychee - COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/ diff --git a/megalinter/descriptors/terraform.megalinter-descriptor.yml b/megalinter/descriptors/terraform.megalinter-descriptor.yml index fb8f1316b17..7d14252ee5a 100644 --- a/megalinter/descriptors/terraform.megalinter-descriptor.yml +++ b/megalinter/descriptors/terraform.megalinter-descriptor.yml @@ -46,7 +46,7 @@ linters: - |- # renovate: datasource=docker depName=ghcr.io/terraform-linters/tflint ARG TERRAFORM_TFLINT_VERSION=0.52.0 - - FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} as tflint + - FROM ghcr.io/terraform-linters/tflint:v${TERRAFORM_TFLINT_VERSION} AS tflint - COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/ # TERRASCAN @@ -85,7 +85,7 @@ linters: - |- # renovate: datasource=docker depName=alpine/terragrunt ARG TERRAFORM_TERRASCAN_VERSION=1.18.11 - - FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} as terrascan + - FROM tenable/terrascan:${TERRAFORM_TERRASCAN_VERSION} AS terrascan - COPY --link --from=terrascan /go/bin/terrascan /usr/bin/ # TERRAGRUNT @@ -123,7 +123,7 @@ linters: - |- # renovate: datasource=docker depName=alpine/terragrunt ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 - - FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt + - FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt - COPY --link --from=terragrunt /usr/local/bin/terragrunt /usr/bin/ # TERRAFORM_FMT @@ -149,7 +149,7 @@ linters: - |- # renovate: datasource=docker depName=alpine/terragrunt ARG TERRAFORM_TERRAGRUNT_VERSION=1.9.3 - - FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} as terragrunt + - FROM alpine/terragrunt:${TERRAFORM_TERRAGRUNT_VERSION} AS terragrunt - COPY --link --from=terragrunt /bin/terraform /usr/bin/ ide: atom: