mirror of
https://github.com/super-linter/super-linter.git
synced 2025-01-12 23:01:40 -05:00
7a6ab115a6
Consider package-lock.json when building the dev-container so we can enforce a known-working dependency chain. This caused issues in the past when commitlint and release-please had bugs in new versions that impacted our build pipeline.
32 lines
839 B
Docker
32 lines
839 B
Docker
FROM node:21.6.1-bookworm
|
|
|
|
SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"]
|
|
|
|
RUN apt-get update \
|
|
&& apt-get --assume-yes --no-install-recommends install \
|
|
jq \
|
|
&& rm -rf /var/lib/apt/lists/*
|
|
|
|
ENV APP_DIR=/app
|
|
WORKDIR "${APP_DIR}"
|
|
|
|
COPY package.json package-lock.json ./
|
|
|
|
RUN npm ci \
|
|
&& rm -rf ~/.npm
|
|
|
|
ENV NODE_PATH="${APP_DIR}/node_modules"
|
|
ENV PATH="${NODE_PATH}/.bin:${PATH}"
|
|
|
|
# Split this from the previous RUN instruction so we can cache the costly installation step
|
|
# hadolint ignore=DL3059
|
|
RUN commitlint --version \
|
|
&& release-please --version \
|
|
&& git config --global --add safe.directory /source-repository
|
|
|
|
ARG USERNAME=super-linter-dev
|
|
ARG UID=1000
|
|
ARG GID=1000
|
|
RUN groupadd -g ${GID} -o "${USERNAME}" \
|
|
&& useradd -m -u ${UID} -g ${GID} -o -s /bin/bash -l "${USERNAME}"
|
|
USER $UNAME
|