updated dependency tarball

Dockerfile

@@ -19,10 +19,16 @@ ARG gid=1000
 COPY LICENSE /licenses
 COPY ${TARBALL}.tar.gz /tmp/${TARBALL}.tar.gz
 
+RUN INSTALL_PKGS="git" && \
+    yum -y update-minimal --setopt=tsflags=nodocs \
+        --security  && \
+    yum -y install --setopt=tsflags=nodocs ${INSTALL_PKGS}
+
 RUN cd /tmp && tar -xzf ${TARBALL}.tar.gz \
     && mkdir -p $JENKINS_HOME $TMP_DIR /usr/share/jenkins /build \
     && mv dependencies/ref /usr/share/jenkins/ref \
     && mv dependencies/app /app \
+    && rm -rf /tmp/* \
     && chown ${uid}:${gid} $JENKINS_HOME \
     && chown ${uid}:${gid} $TMP_DIR \
     && chown ${uid}:${gid} /app \
@@ -32,8 +38,7 @@ RUN cd /tmp && tar -xzf ${TARBALL}.tar.gz \
     && useradd -d "$JENKINS_HOME" -d "$TMP_DIR" -d /app -d /usr/share/jenkins -u ${uid} -g ${gid} -m -s /bin/bash ${user}
 
 RUN cd /usr/share/jenkins/ref/plugins && \
-    rm -rf github* && \
-    rpm -ivh --replacepkgs --replacefiles /tmp/dependencies/rpms/*.rpm && rm -rf /tmp/*
+    rm -rf github*
 
 VOLUME /build
 VOLUME /usr/share/jenkins/ref/casc

hardening_manifest.yaml

@@ -41,7 +41,7 @@ resources:
   url: https://github.com/boozallen/sdp-images/releases/download/dcar-1.8/jenkinsfile-runner-dependencies-dcar-1.8.tar.gz
   validation:
     type: sha256
-    value: 9f84626c55e6add5e0952829b9cc5de6a993618032b753f355cfe3c0b03db205
+    value: 174340489946288569958cab3d5159b0242547b8b0b104652ba0c0b81fb85987
 
 # List of project maintainers
 # FIXME: Fill in the following details for the current container owner in the whitelist