topaLE
/
theme.park
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

fix(init): remove build-deps 

Remove build-depds after build-script is executed by Python.  This reduces the attack surface of the container, as leaving python3 installed in a rootfull container is a risk
pull/361/head
Truxnell 3 years ago
committed by GitHub
parent
e320ef96be
commit
70983843c6
No known key found for this signature in database GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 5 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      docker/root/etc/cont-init.d/50-config

6
docker/root/etc/cont-init.d/50-config
View File

@ -41,6 +41,10 @@ cp /app/themepark/CNAME /config/www
echo 'Creating CSS files'
python3 /config/www/themes.py
# remove build deps
# to reduce attack surface
apk del build-dependencies
# permissions
chown -R abc:abc \
/config
/config

Write Preview
Loading…
Cancel
Save