Update Dockerfile to pull from dependency bundle release dcar-0.7

9917b339 · Karpagam Balan · cd7c2ae7 · 9917b339
Commit 9917b339 authored Mar 26, 2020 by Karpagam Balan
Hide whitespace changes
Inline Side-by-side

Showing with 19 additions and 15 deletions

Dockerfile Dockerfile +19 -15

No files found.
--- a/Dockerfile
+++ b/Dockerfile
@@ -7,8 +7,8 @@ FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG}
 LABEL name="Solutions Delivery Platform: OWASP Dependency Check" \
      maintainer="terrana_steven@bah.com" \
      vendor="Booz Allen Hamilton" \
-      version="5.2.4" \
+      version="5.3.1" \
-      release="5.2.4" \
+      release="5.3.1" \
      summary="OWASP Dependency Check container" \
      description="The OWASP Dependency Check container image for the Solutions Delivery Platform"
@@ -16,7 +16,7 @@ LABEL name="Solutions Delivery Platform: OWASP Dependency Check" \
 COPY LICENSE /licenses
 ### Install packages from ubi base repo 
-RUN INSTALL_PKGS="java-1.8.0-openjdk-devel ruby ruby-devel unzip" && \
+RUN INSTALL_PKGS="java-1.8.0-openjdk ruby mono-devel unzip" && \
    yum update -y \
        --disablerepo="*" \
        --enablerepo="*ubi-7*" \
@@ -34,33 +34,37 @@ RUN INSTALL_PKGS="java-1.8.0-openjdk-devel ruby ruby-devel unzip" && \
    [ ! -d /var/cache/yum ] || rm -rf /var/cache/yum
 ### Arguments and Environment variables
-ENV user dependencycheck
+ARG SDP_BUILD_DEPENDENCY_VERSION="dcar-0.7"
-ARG SDP_BUILD_DEPENDENCY_VERSION="dcar-0.3"
+ENV OWASP_DEP_CHK_VERSION 5.3.1
-ENV OWASP_DEP_CHK_VERSION 5.2.4
+ENV HOME /root
+ENV JAVA_HOME /usr/lib/jvm/java
+ARG user=dependencycheck
 ### Fetch dependency bundle
 RUN mkdir /root/tmp
 COPY owasp-dep-check-dependencies-$SDP_BUILD_DEPENDENCY_VERSION.tar.gz /root/tmp/owasp-dep-check-dependencies-$OWASP_DEP_CHK_VERSION.tar.gz
-### Install mono-devel
+### Install ruby dependencies
 RUN cd /root/tmp && \
    tar -xzf owasp-dep-check-dependencies-$OWASP_DEP_CHK_VERSION.tar.gz &&  \
-    rpm -ivh --replacepkgs --replacefiles /root/tmp/dependencies/mono-devel/*.rpm && \
+    gem install --force --local /root/tmp/dependencies/rubygems-update/*.gem --no-document --no-rdoc --no-ri && \
-    rm /root/tmp/owasp-dep-check-dependencies-$OWASP_DEP_CHK_VERSION.tar.gz
+    update_rubygems --no-document --no-rdoc --no-ri && \
+    gem install --force --local /root/tmp/dependencies/bundle-audit/*.gem --no-document --no-rdoc --no-ri && \
+    gem cleanup
-### Install ruby dependencies
+### Install mono-devel
 RUN cd /root/tmp && \
-    gem install --force --local /root/tmp/dependencies/rubygems-update/*.gem && \
+    rpm -ivh --replacepkgs --replacefiles /root/tmp/dependencies/mono-devel/*.rpm 
-    update_rubygems && \
-    gem install --force --local /root/tmp/dependencies/bundle-audit/*.gem && \
-    gem cleanup
 ### Install OWASP Dependency Check binaries
 RUN cd /root/tmp/dependencies/owasp && \
    unzip dependency-check-${OWASP_DEP_CHK_VERSION}-release.zip    && \
    rm dependency-check-${OWASP_DEP_CHK_VERSION}-release.zip       && \
    mv dependency-check /usr/share/                                         && \
-    rm -rf /root/tmp/dependencies
+    rm -rf /root/tmp/* && \
+    rm -rf /usr/local/share/gems/gems/rubygems-update-2.7.10/test
 # Add user, create required directories  and cleanup
 RUN useradd -ms /bin/bash ${user}                                           && \