Skip to content

Commit f13ad16

Browse files
committed
fix: remove trivy from Docker build while assessing compromise impact
1 parent 3e779a9 commit f13ad16

File tree

1 file changed

+3
-3
lines changed

1 file changed

+3
-3
lines changed

Dockerfile

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,7 @@ ARG UV_VERSION=0.10.11
1212
ARG OPENGREP_VERSION=v1.16.5
1313

1414
# ─── Stage: trivy (Dependabot-trackable) ──────────────────────────────────────
15-
FROM aquasec/trivy:${TRIVY_VERSION} AS trivy
15+
# FROM aquasec/trivy:${TRIVY_VERSION} AS trivy
1616

1717
# ─── Stage: trufflehog (Dependabot-trackable) ─────────────────────────────────
1818
FROM trufflesecurity/trufflehog:${TRUFFLEHOG_VERSION} AS trufflehog
@@ -42,7 +42,7 @@ WORKDIR /socket-basics
4242
COPY --from=uv /uv /uvx /bin/
4343

4444
# Binary tools from immutable build stages
45-
COPY --from=trivy /usr/local/bin/trivy /usr/local/bin/trivy
45+
# COPY --from=trivy /usr/local/bin/trivy /usr/local/bin/trivy
4646
COPY --from=trufflehog /usr/bin/trufflehog /usr/local/bin/trufflehog
4747
COPY --from=opengrep-installer /root/.opengrep /root/.opengrep
4848

@@ -84,4 +84,4 @@ LABEL org.opencontainers.image.title="Socket Basics" \
8484

8585
ENV PATH="/socket-basics/.venv/bin:/root/.opengrep/cli/latest:/usr/local/bin:$PATH"
8686

87-
ENTRYPOINT ["socket-basics"]
87+
ENTRYPOINT ["socket-basics"]

0 commit comments

Comments
 (0)