release-2.3

devopstales · devopstales · commit 41a018c9d987 · 2022-02-04T14:17:50.000+01:00
diff --git a/Makefile b/Makefile
@@ -35,10 +35,12 @@ version:
 	docker build -t devopstales/trivy-operator:$(VERSION)-arm64v8 --build-arg ARCH=arm64v8/ docker/ -f docker/Dockerfile-arm
 	rm -f docker/trivy-operator.py
 
-push:
+push-version:
 	docker push devopstales/trivy-operator:$(VERSION)
 	docker push devopstales/trivy-operator:$(VERSION)-arm32v7
 	docker push devopstales/trivy-operator:$(VERSION)-arm64v8
+
+push-latest:
 	docker manifest create devopstales/trivy-operator:latest \
 		--amend devopstales/trivy-operator:$(VERSION) \
 		--amend devopstales/trivy-operator:$(VERSION)-arm32v7 \
diff --git a/docker/Dockerfile-arm b/docker/Dockerfile-arm
@@ -0,0 +1,26 @@
+ARG ARCH
+FROM ${ARCH}python:3.8-alpine
+
+ENV TRIVY_CACHE_DIR=/home/trivy-operator/trivy-cache \
+    TRIVY_QUIET=true \
+    IN_CLUSTER=true
+
+RUN apk add --no-cache gcc musl-dev libffi-dev openssl-dev curl bash rust cargo
+
+RUN pip3 install --no-cache-dir kopf[dev] kubernetes asyncio pycron prometheus_client oscrypto certvalidator certbuilder validators pyOpenSSL
+
+RUN apk add --no-cache gcc musl-dev libffi-dev openssl-dev curl bash rust cargo
+
+COPY trivy-operator.py /trivy-operator.py
+COPY trivy /usr/local/bin
+
+RUN addgroup -S -g 10001 trivy-operator && \
+    adduser -S -u 10001 trivy-operator -G trivy-operator && \
+    mkdir /home/trivy-operator/trivy-cache && \
+    chown -R trivy-operator:trivy-operator /home/trivy-operator/trivy-cache
+
+USER 10001:10001
+
+CMD kopf run -A /trivy-operator.py --log-format=full
+
+VOLUME [ "/data/trivy", "/data/cache" ]
