updated the image vulnerabilities checks for passing the redhat certification

2026-01-21 03:06:57 -06:00 · 2021-04-23 18:49:07 +05:30
parent 2e95a2e916
commit 89d7b4a594
1 changed files with 19 additions and 0 deletions
--- a/Openshift4/operator/artifactory-ha-operator/Dockerfile
+++ b/Openshift4/operator/artifactory-ha-operator/Dockerfile
@@ -7,6 +7,25 @@ LABEL name="JFrog Artifactory Enterprise Operator" \
      summary="JFrog Artifactory Enterprise Operator" \
      com.jfrog.license_terms="https://jfrog.com/artifactory/eula/"

+# Adding security checks for container vulnerability scan
+
+USER root
+
+RUN microdnf install yum \
+     && yum -y update-minimal --security --sec-severity=Important --sec-severity=Critical \
+     && yum clean all \
+     && microdnf remove yum \
+     && microdnf clean all \
+     && microdnf install gnutls \
+     && microdnf install nettle  \
+     && microdnf update openssl-libs 
+
+RUN microdnf install sudo 
+RUN sudo -u helm bash
+
+USER helm
+
+
 COPY  licenses/ /licenses
 ENV HOME=/opt/helm
 COPY watches.yaml ${HOME}/watches.yaml