From 05a3592c6c55fb552152887518b971fb8814330a Mon Sep 17 00:00:00 2001 From: Jeff Weatherford <jweatherford@oteemo.com> Date: Fri, 27 Dec 2024 18:40:08 +0000 Subject: [PATCH] Update hardening_manifest.yaml, Dockerfile.arm64, Dockerfile --- Dockerfile | 1 + Dockerfile.arm64 | 1 + hardening_manifest.yaml | 11 +++++++++++ 3 files changed, 13 insertions(+) diff --git a/Dockerfile b/Dockerfile index 05af478..ee681dc 100644 --- a/Dockerfile +++ b/Dockerfile @@ -7,6 +7,7 @@ FROM ghcr.io/fluxcd/source-controller:v1.4.1-amd64 as source FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG} COPY --from=source /usr/local/bin/source-controller /usr/local/bin/ +COPY tini-amd64 /usr/bin/tini RUN chmod 0755 /usr/local/bin/source-controller \ && apk update \ diff --git a/Dockerfile.arm64 b/Dockerfile.arm64 index 8774b33..d47e76d 100644 --- a/Dockerfile.arm64 +++ b/Dockerfile.arm64 @@ -7,6 +7,7 @@ FROM ghcr.io/fluxcd/source-controller:v1.4.1-arm64 as source FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG} COPY --from=source /usr/local/bin/source-controller /usr/local/bin/ +COPY tini-arm64 /usr/bin/tini RUN chmod 0755 /usr/local/bin/source-controller \ && apk update \ diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 7256a3f..08891e1 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -27,6 +27,17 @@ resources: url: docker://ghcr.io/fluxcd/source-controller@sha256:dfeeb772a4e1451d6376dca28969144cc053b12bbe3d3e3535f91e66b5761a65 - tag: ghcr.io/fluxcd/source-controller:v1.4.1-arm64 url: docker://ghcr.io/fluxcd/source-controller@sha256:a38cef26e9cea09acf733c3084eccd75fe11f393fd8e06132cc31cc553cb102f +- filename: tini-amd64 + url: https://github.com/krallin/tini/releases/download/v0.19.0/tini-amd64 + validation: + type: sha256 + value: 93dcc18adc78c65a028a84799ecf8ad40c936fdfc5f2a57b1acda5a8117fa82c +- filename: tini-arm64 + url: https://github.com/krallin/tini/releases/download/v0.19.0/tini-arm64 + validation: + type: sha256 + value: 07952557df20bfd2a95f9bef198b445e006171969499a1d361bd9e6f8e5e0e81 + maintainers: - name: "Jeff Weatherford" -- GitLab