Kirari04
diff --git a/‎Dockerfile‎
Lines changed: 34 additions & 7 deletions b/‎Dockerfile‎
Lines changed: 34 additions & 7 deletions
diff --git a/‎cloud-config.yaml‎
Lines changed: 0 additions & 9 deletions b/‎cloud-config.yaml‎
Lines changed: 0 additions & 9 deletions
@@ -1,31 +1,58 @@
-FROM golang:latest AS stage
+FROM golang:latest AS builder
 
 WORKDIR /build
 
+# Install Syft for SBOM generation
+RUN go install github.com/anchore/syft/cmd/syft@latest
+
+# Copy source code
 COPY . .
+
+# Tidy dependencies
 RUN go mod tidy
+
+# Build the Go binary
 RUN CGO_ENABLED=1 GOOS=linux GOARCH=amd64 go build -ldflags "-linkmode external -extldflags -static" -a -installsuffix cgo -o main_linux_amd64.bin main.go
+
+# Generate SBOM for the application
+# This scans the built binary and vendor dependencies
+RUN /go/bin/syft packages . -o spdx-json=sbom.spdx.json
+
+# Generate a checksum for the binary
 RUN sha256sum main_linux_amd64.bin > main_linux_amd64.bin.sha256sum
 
+
 FROM alpine:latest
 
 WORKDIR /app
-VOLUME /app/videos
-VOLUME /app/public
-VOLUME /app/database
 
-RUN apk add ffmpeg bash
-COPY --from=stage ./build/main_linux_amd64.bin ./
-RUN mv ./main_linux_amd64.bin ./main.bin
+# System dependencies
+RUN apk add --no-cache ffmpeg bash
+
+# Copy the application binary from the builder stage
+COPY --from=builder /build/main_linux_amd64.bin ./main.bin
+
+# Copy the SBOM from the builder stage
+COPY --from=builder /build/sbom.spdx.json /app/sbom.spdx.json
+
+# Copy other necessary application files
 COPY ./views ./views/
 COPY ./public ./public/
 
+# Set up volumes for persistent data
+VOLUME /app/videos
+VOLUME /app/public
+VOLUME /app/database
+
+# Environment variables
 ENV Host=:3000
 ENV FolderVideoQualitysPriv=./videos/qualitys
 ENV FolderVideoQualitysPub=/videos/qualitys
 ENV FolderVideoUploadsPriv=./videos/uploads
 ENV StatsDriveName=nvme0n1
 
+# Expose the application port
 EXPOSE 3000
 
+# Define the command to run the application
 CMD ["./main.bin", "serve:main"]