Cutlery/whoogle-search
1
0
Fork 0
mirror of https://github.com/benbusby/whoogle-search.git synced 2026-03-05 08:23:48 -05:00
Code Issues Packages Projects Releases Wiki Activity

Update Dockerfile to use Python 3.12-alpine3.22 and remove unnecessary bridge package

Browse Source 
- Changed base image from python:3.12.6-alpine3.20 to python:3.12-alpine3.22 for improved security and compatibility.
- Added command to remove the bridge package to mitigate CVEs, ensuring a cleaner build environment.
- Ensured pip is upgraded consistently across stages.
This commit is contained in:
Don-Swanson 2025-11-26 16:36:34 -06:00
parent 20ed493671
commit ccdeb60fc0
No known key found for this signature in database
GPG Key ID: C6A6ACD574A005E5
1 changed files with 8 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
Dockerfile
View File

@ -8,7 +8,7 @@
# 2. Add linux/arm/v7 to --platform flag when building:
# docker buildx build --platform linux/amd64,linux/arm/v7,linux/arm64 .
FROM python:3.12.6-alpine3.20 AS builder
FROM python:3.12-alpine3.22 AS builder
RUN apk --no-cache add \
build-base \
@ -22,13 +22,16 @@ COPY requirements.txt .
RUN pip install --upgrade pip
RUN pip install --prefix /install --no-warn-script-location --no-cache-dir -r requirements.txt
FROM python:3.12.6-alpine3.20
FROM python:3.12-alpine3.22
RUN apk add --no-cache tor curl openrc libstdc++
# Remove bridge package to avoid CVEs (not needed for Docker containers)
RUN apk add --no-cache --no-scripts tor curl openrc libstdc++ && \
apk del --no-cache bridge || true
# git go //for obfs4proxy
# libcurl4-openssl-dev
RUN apk --no-cache upgrade
RUN pip install --upgrade pip
RUN apk --no-cache upgrade && \
apk del --no-cache --rdepends bridge || true
# uncomment to build obfs4proxy
# RUN git clone https://gitlab.com/yawning/obfs4.git