-
Notifications
You must be signed in to change notification settings - Fork 132
Expand file tree
/
Copy pathDockerfile
More file actions
48 lines (40 loc) · 1.52 KB
/
Copy pathDockerfile
File metadata and controls
48 lines (40 loc) · 1.52 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
FROM debian:bookworm-slim AS download
ARG FALLOW_VERSION=3.4.2
ARG TARGETARCH
RUN apt-get update \
&& apt-get install -y --no-install-recommends ca-certificates curl \
&& rm -rf /var/lib/apt/lists/*
# The sha256 pins below are bound to FALLOW_VERSION above; bump both together.
# release.yml's docker-lockstep job keeps them in sync automatically after
# every release by opening a PR here; a manual edit only needs to preserve
# the lockstep rule for local review.
RUN set -eux; \
case "${TARGETARCH}" in \
amd64) \
asset="fallow-linux-x64-musl"; \
sha256="544c2482fefc5c3d14b7fcea5d312499774d3aaa85f907afd7a22a0afef4e206"; \
;; \
arm64) \
asset="fallow-linux-arm64-musl"; \
sha256="020f05bee9b0599e14a384bc5f2c0d3b5ee1df22b05b0245505d5049da283eac"; \
;; \
*) \
echo "unsupported TARGETARCH: ${TARGETARCH}" >&2; \
exit 1; \
;; \
esac; \
curl -fsSL "https://github.com/fallow-rs/fallow/releases/download/v${FALLOW_VERSION}/${asset}" -o /usr/local/bin/fallow; \
echo "${sha256} /usr/local/bin/fallow" | sha256sum -c -; \
chmod +x /usr/local/bin/fallow
FROM node:26-bookworm-slim AS runtime
ARG COREPACK_VERSION=0.35.0
RUN apt-get update \
&& apt-get install -y --no-install-recommends ca-certificates git \
&& npm install -g "corepack@${COREPACK_VERSION}" \
&& corepack enable \
&& npm cache clean --force \
&& rm -rf /var/lib/apt/lists/*
COPY --from=download /usr/local/bin/fallow /usr/local/bin/fallow
WORKDIR /workspace
ENTRYPOINT ["fallow"]
CMD ["--help"]