kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Work around git directory ownership change check 

Add a mitigation for the extra checks that Git added in response to
CVE-2022-24765.
pull/32934/head
Tim Bannister 2022-04-14 17:10:39 +01:00
parent 108434f8b1
commit edb9f05b84
No known key found for this signature in database
GPG Key ID: 1E76582C4F66FA48
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
Dockerfile
View File

@ -27,16 +27,18 @@ RUN mkdir $HOME/src && \
FROM golang:1.16-alpine FROM golang:1.16-alpine
RUN apk add --no-cache \ RUN apk add --no-cache \
runuser \
git \ git \
openssh-client \ openssh-client \
rsync \ rsync \
npm && \ npm && \
npm install -D autoprefixer postcss-cli npm install -D autoprefixer postcss-cli
RUN mkdir -p /usr/local/src && \ RUN mkdir -p /var/hugo && \
cd /usr/local/src && \
addgroup -Sg 1000 hugo && \ addgroup -Sg 1000 hugo && \
adduser -Sg hugo -u 1000 -h /src hugo adduser -Sg hugo -u 1000 -h /var/hugo hugo && \
chown -R hugo: /var/hugo && \
runuser -u hugo -- git config --global --add safe.directory /src
COPY --from=0 /go/bin/hugo /usr/local/bin/hugo COPY --from=0 /go/bin/hugo /usr/local/bin/hugo