Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Install current version of git (2.42.0) #24

Merged
merged 2 commits into from
Sep 10, 2023
Merged

Install current version of git (2.42.0) #24

merged 2 commits into from
Sep 10, 2023

Conversation

mauwii
Copy link
Owner

@mauwii mauwii commented Sep 10, 2023

Container updates the version of git at build time, which currently is 2.42.0 (for 20.04 and 22.04).

- Dockerfile:
  - get all types of ssh keys from github and devops (not only rsa)
  - install most recent version of git
  - replace all `apt-get -yq` with `apt-get -y`
- mega-linter workflow:
  - reduce token permission for contents to read
  - add job env `GITHUB_TOKEN`
- dockerhub-description:
  - set commit sha for dockerhub-description action
- ci workflow
  - use actions/checkout v4
  - remove recommendations from docker scout
  - set severities for docker-scout to critical
- dependabot:
  - set github-actions update interval to daily
- small update to readme
- remove `(tmp/|\\.example|` from regex exclude in .mega-linter.yml
@github-actions
Copy link
Contributor

🦙 MegaLinter status: ✅ SUCCESS

Descriptor Linter Files Fixed Errors Elapsed time
✅ ACTION actionlint 3 0 0.06s
✅ COPYPASTE jscpd yes no 1.31s
✅ DOCKERFILE hadolint 1 0 0.51s
✅ EDITORCONFIG editorconfig-checker 7 0 0.53s
✅ MARKDOWN markdownlint 1 0 0.96s
✅ MARKDOWN markdown-link-check 1 0 3.96s
✅ MARKDOWN markdown-table-formatter 1 0 0.35s
✅ REPOSITORY checkov yes no 25.28s
✅ REPOSITORY devskim yes no 1.19s
✅ REPOSITORY dustilock yes no 0.05s
✅ REPOSITORY gitleaks yes no 0.23s
✅ REPOSITORY git_diff yes no 0.01s
✅ REPOSITORY grype yes no 11.04s
✅ REPOSITORY kics yes no 17.71s
✅ REPOSITORY secretlint yes no 0.65s
✅ REPOSITORY syft yes no 0.48s
✅ REPOSITORY trivy yes no 4.18s
✅ REPOSITORY trivy-sbom yes no 0.84s
✅ REPOSITORY trufflehog yes no 3.54s
✅ SPELL cspell 8 0 3.23s
✅ SPELL lychee 2 0 1.53s
✅ YAML prettier 5 0 0.73s
✅ YAML v8r 5 0 5.14s
✅ YAML yamllint 5 0 0.67s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by OX Security

@github-actions
Copy link
Contributor

github-actions bot commented Sep 10, 2023

Outdated

Overview

Image reference docker.io/mauwii/ubuntu-act:20.04 docker.io/mauwii/ubuntu-act:20.04-current-git
- digest 5f4a605554a0 328c0e44e612
- provenance git://github.com/mauwii/act-docker-images.git/commit/b3b0031f374f12db2e9149e82f68927b25db4749 git://github.com/mauwii/act-docker-images.git/commit/8ca8a6c4d30c6337028ae381f535900f736fa48a
- vulnerabilities critical: 5 high: 69 medium: 143 low: 99 unspecified: 20 critical: 5 high: 69 medium: 141 low: 99 unspecified: 20
- platform linux/amd64 linux/amd64
- size 1.7 GB 1.7 GB (+19 MB)
- packages 4779 4778 (-1)
Base Image buildpack-deps:20.04
also known as:
focal
buildpack-deps:20.04
also known as:
focal
- vulnerabilities critical: 0 high: 2 medium: 91 low: 88 critical: 0 high: 2 medium: 91 low: 88
Labels (7 changes)
  • ± 7 changed
  • 5 unchanged
-org.opencontainers.image.authors='["git://github.com/mauwii/act-docker-images.git","mauwii"]'
+org.opencontainers.image.authors=['https://github.com/mauwii/act-docker-images','mauwii']
-org.opencontainers.image.created={{date 'dddd, MMMM Do YYYY, h:mm:ss a'}}
+org.opencontainers.image.created=2023-09-10T18:15:19.386Z
 org.opencontainers.image.description=Docker Images for Nektos/act to run your GH-Workflows locally
-org.opencontainers.image.documentation=git://github.com/mauwii/act-docker-images.git
+org.opencontainers.image.documentation=https://github.com/mauwii/act-docker-images
 org.opencontainers.image.licenses=MIT
 org.opencontainers.image.ref.name=ubuntu
-org.opencontainers.image.revision=b3b0031f374f12db2e9149e82f68927b25db4749
+org.opencontainers.image.revision=8ca8a6c4d30c6337028ae381f535900f736fa48a
 org.opencontainers.image.source=git://github.com/mauwii/act-docker-images.git
-org.opencontainers.image.title=mauwii/ubuntu-act:main
+org.opencontainers.image.title=mauwii/ubuntu-act:current-git
-org.opencontainers.image.url=https://github.com/mauwii/act-docker-images/blob/b3b0031f374f12db2e9149e82f68927b25db4749/linux/ubuntu/Dockerfile
+org.opencontainers.image.url=https://github.com/mauwii/act-docker-images/blob/8ca8a6c4d30c6337028ae381f535900f736fa48a/linux/ubuntu/Dockerfile
 org.opencontainers.image.vendor=mauwii
-org.opencontainers.image.version=20.04
+org.opencontainers.image.version=20.04-current-git
Packages and Vulnerabilities (22 package changes and 0 vulnerability changes)
  • ♾️ 22 packages changed
  • 3663 packages unchanged
Changes for packages of type deb (2 changes)
Package Version
docker.io/mauwii/ubuntu-act:20.04
Version
docker.io/mauwii/ubuntu-act:20.04-current-git
♾️ git 1:2.25.1-1ubuntu3.11 1:2.42.0-0ppa1~ubuntu20.04.1
♾️ git-man 1:2.25.1-1ubuntu3.11 1:2.42.0-0ppa1~ubuntu20.04.1
Changes for packages of type npm (20 changes)
Package Version
docker.io/mauwii/ubuntu-act:20.04
Version
docker.io/mauwii/ubuntu-act:20.04-current-git
♾️ build-utils 7.1.0 7.1.1
♾️ caniuse-lite 1.0.30001528 1.0.30001532
♾️ cosmiconfig 8.3.4 8.3.5
♾️ devkit 16.8.0 16.8.1
♾️ devkit 16.8.0 16.8.1
♾️ electron-to-chromium 1.4.510 1.4.513
♾️ gatsby-plugin-vercel-builder 2.0.3 2.0.4
♾️ msgpackr 1.9.8 1.9.9
♾️ next 4.0.1 4.0.2
♾️ node 20.5.9 20.6.0
♾️ node 3.0.3 3.0.4
♾️ nx 16.8.0 16.8.1
♾️ nx-linux-x64-gnu 16.8.0 16.8.1
♾️ nx-linux-x64-musl 16.8.0 16.8.1
♾️ redwood 2.0.0 2.0.1
♾️ remix-builder 2.0.2 2.0.3
♾️ ruby 2.0.0 2.0.1
♾️ static-build 2.0.3 2.0.4
♾️ tao 16.8.0 16.8.1
♾️ vercel 32.1.0 32.2.0

@github-actions
Copy link
Contributor

Overview

Image reference docker.io/mauwii/ubuntu-act:22.04 docker.io/mauwii/ubuntu-act:22.04-current-git
- digest 1f80fd29555c 4d8a49f30d4b
- provenance git://github.com/mauwii/act-docker-images.git/commit/b3b0031f374f12db2e9149e82f68927b25db4749 git://github.com/mauwii/act-docker-images.git/commit/8ca8a6c4d30c6337028ae381f535900f736fa48a
- vulnerabilities critical: 5 high: 69 medium: 134 low: 91 unspecified: 22 critical: 5 high: 69 medium: 132 low: 91 unspecified: 22
- platform linux/amd64 linux/amd64
- size 1.7 GB 1.7 GB (+13 MB)
- packages 4807 4806 (-1)
Base Image buildpack-deps:22.04
also known as:
jammy
buildpack-deps:22.04
also known as:
jammy
- vulnerabilities critical: 0 high: 0 medium: 86 low: 78 critical: 0 high: 0 medium: 86 low: 78
Labels (7 changes)
  • ± 7 changed
  • 5 unchanged
-org.opencontainers.image.authors='["git://github.com/mauwii/act-docker-images.git","mauwii"]'
+org.opencontainers.image.authors=['https://github.com/mauwii/act-docker-images','mauwii']
-org.opencontainers.image.created={{date 'dddd, MMMM Do YYYY, h:mm:ss a'}}
+org.opencontainers.image.created=2023-09-10T18:15:31.244Z
 org.opencontainers.image.description=Docker Images for Nektos/act to run your GH-Workflows locally
-org.opencontainers.image.documentation=git://github.com/mauwii/act-docker-images.git
+org.opencontainers.image.documentation=https://github.com/mauwii/act-docker-images
 org.opencontainers.image.licenses=MIT
 org.opencontainers.image.ref.name=ubuntu
-org.opencontainers.image.revision=b3b0031f374f12db2e9149e82f68927b25db4749
+org.opencontainers.image.revision=8ca8a6c4d30c6337028ae381f535900f736fa48a
 org.opencontainers.image.source=git://github.com/mauwii/act-docker-images.git
-org.opencontainers.image.title=mauwii/ubuntu-act:main
+org.opencontainers.image.title=mauwii/ubuntu-act:current-git
-org.opencontainers.image.url=https://github.com/mauwii/act-docker-images/blob/b3b0031f374f12db2e9149e82f68927b25db4749/linux/ubuntu/Dockerfile
+org.opencontainers.image.url=https://github.com/mauwii/act-docker-images/blob/8ca8a6c4d30c6337028ae381f535900f736fa48a/linux/ubuntu/Dockerfile
 org.opencontainers.image.vendor=mauwii
-org.opencontainers.image.version=22.04
+org.opencontainers.image.version=22.04-current-git
Packages and Vulnerabilities (22 package changes and 0 vulnerability changes)
  • ♾️ 22 packages changed
  • 3691 packages unchanged
Changes for packages of type deb (2 changes)
Package Version
docker.io/mauwii/ubuntu-act:22.04
Version
docker.io/mauwii/ubuntu-act:22.04-current-git
♾️ git 1:2.34.1-1ubuntu1.10 1:2.42.0-0ppa1~ubuntu22.04.1
♾️ git-man 1:2.34.1-1ubuntu1.10 1:2.42.0-0ppa1~ubuntu22.04.1
Changes for packages of type npm (20 changes)
Package Version
docker.io/mauwii/ubuntu-act:22.04
Version
docker.io/mauwii/ubuntu-act:22.04-current-git
♾️ build-utils 7.1.0 7.1.1
♾️ caniuse-lite 1.0.30001528 1.0.30001532
♾️ cosmiconfig 8.3.4 8.3.5
♾️ devkit 16.8.0 16.8.1
♾️ devkit 16.8.0 16.8.1
♾️ electron-to-chromium 1.4.510 1.4.513
♾️ gatsby-plugin-vercel-builder 2.0.3 2.0.4
♾️ msgpackr 1.9.8 1.9.9
♾️ next 4.0.1 4.0.2
♾️ node 3.0.3 3.0.4
♾️ node 20.5.9 20.6.0
♾️ nx 16.8.0 16.8.1
♾️ nx-linux-x64-gnu 16.8.0 16.8.1
♾️ nx-linux-x64-musl 16.8.0 16.8.1
♾️ redwood 2.0.0 2.0.1
♾️ remix-builder 2.0.2 2.0.3
♾️ ruby 2.0.0 2.0.1
♾️ static-build 2.0.3 2.0.4
♾️ tao 16.8.0 16.8.1
♾️ vercel 32.1.0 32.2.0

@mauwii mauwii merged commit 6cfe88c into main Sep 10, 2023
@mauwii mauwii deleted the current-git branch September 10, 2023 18:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant