From 89d7b4a594ae5a7e9bbdd0bbecdfb234d0d12474 Mon Sep 17 00:00:00 2001
From: Aayush-sood94 <aayush.sood1@igtsolutions.com>
Date: Fri, 23 Apr 2021 18:49:07 +0530
Subject: [PATCH] updated the image vulnerabilities checks for passing the
 redhat certification

---
 .../artifactory-ha-operator/Dockerfile        | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)

diff --git a/Openshift4/operator/artifactory-ha-operator/Dockerfile b/Openshift4/operator/artifactory-ha-operator/Dockerfile
index d54c189..77f494f 100644
--- a/Openshift4/operator/artifactory-ha-operator/Dockerfile
+++ b/Openshift4/operator/artifactory-ha-operator/Dockerfile
@@ -7,6 +7,25 @@ LABEL name="JFrog Artifactory Enterprise Operator" \
       summary="JFrog Artifactory Enterprise Operator" \
       com.jfrog.license_terms="https://jfrog.com/artifactory/eula/"
 
+# Adding security checks for container vulnerability scan
+
+USER root
+
+RUN microdnf install yum \
+     && yum -y update-minimal --security --sec-severity=Important --sec-severity=Critical \
+     && yum clean all \
+     && microdnf remove yum \
+     && microdnf clean all \
+     && microdnf install gnutls \
+     && microdnf install nettle  \
+     && microdnf update openssl-libs 
+
+RUN microdnf install sudo 
+RUN sudo -u helm bash
+
+USER helm
+
+
 COPY  licenses/ /licenses
 ENV HOME=/opt/helm
 COPY watches.yaml ${HOME}/watches.yaml