Commit c6394ddc authored by Morten Knutsen's avatar Morten Knutsen

Try to fix the worst security vulns.

Also, move to alpine to minimize footprint. This project still needs
serious work with the javascript deps and bower etc..
parent 8d2fa0a4
Pipeline #18298 passed with stage
in 5 minutes and 21 seconds
FROM nginx
FROM nginx:alpine
RUN apk upgrade --no-cache
RUN apk add --no-cache curl gnupg git ruby nodejs
RUN apk add --no-cache build-base ruby-dev nodejs-npm
WORKDIR /srv/www
RUN apt-get update && apt-get install -y curl gnupg build-essential git zlib1g-dev ruby-full \
&& rm -rf /var/lib/apt/lists/*
RUN curl -sL -o
RUN chmod a+x ./
RUN ./
RUN apt-get install -y nodejs
RUN gem install jekyll --no-ri --no-rdoc
RUN gem install rouge --no-ri --no-rdoc
......@@ -20,6 +17,8 @@ COPY bower.json /srv/www/bower.json
RUN npm install
RUN node_modules/bower/bin/bower install --config.interactive=false -p --allow-root
RUN gem install json bigdecimal --no-ri --no-rdoc
RUN jekyll build
RUN rm -rf /srv/www/dist/bower_components/uninett-theme/
RUN cd /srv/www/dist/bower_components/ && git clone uninett-theme && cd uninett-theme && /srv/www/node_modules/bower/bin/bower install --allow-root
......@@ -29,4 +28,6 @@ RUN curl -o /srv/www/dist/bower_components/uninett-theme/fonts/colfaxLight.woff
&& curl -o /srv/www/dist/bower_components/uninett-theme/fonts/colfaxThin.woff \
&& curl -o /srv/www/dist/bower_components/uninett-theme/fonts/colfaxRegularItalic.woff
RUN apk del build-base ruby-dev nodejs-npm curl
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment