Mercurial Repository: p/roundup/code: scripts/Docker/Dockerfile history

chore(build) - update python3-alpine version.

2026-03-01T21:39:44-05:00

changeset	a371ef0059d0
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore(build) - update python3-alpine version.
files

chore(build) - update python3-alpine version.

2026-01-27T21:55:27-05:00

changeset	f65f7d9ccdcb
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore(build) - update python3-alpine version. alpine 3.23.2 python 3.14.2
files

chore: update base image to python 3.14.1-alpine3.23 release.

2025-12-07T16:28:08-05:00

changeset	3a07e63ec7c7
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update base image to python 3.14.1-alpine3.23 release. New release is 3.14.1-alpine3.23.
files

chore: update base image to python 3.14 alpine release.

2025-11-02T21:10:28-05:00

changeset	8e72dc7b7f2f
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update base image to python 3.14 alpine release. 3-alpine has changed to python 3.14.
files

chore: update sha256 index for latest pyhton:3-alpine image.

2025-08-28T11:30:11-04:00

changeset	b57cdcfe46d6
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update sha256 index for latest pyhton:3-alpine image.
files

build: update roundup version string.

2025-07-11T22:30:07-04:00

changeset	8a051300e92b
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: update roundup version string.
files

chore(docker): update alpine python version.

2025-06-19T15:57:12-04:00

changeset	d73f93c7a98d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore(docker): update alpine python version.
files

chore: update files for release 2.5.0b1.

2025-06-11T17:04:51-04:00

changeset	3bf6ad421347
branch
bookmark
tag	2.5.0b1
user	John Rouillard <rouilj@ieee.org>
description	chore: update files for release 2.5.0b1.
files

chore(docker): update python alpine image - fix for security alerts?

2025-06-04T19:27:35-04:00

changeset	90c6a4972d5d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore(docker): update python alpine image - fix for security alerts? Also add doc on which digest to use and remove extra blank line.
files

chore: update 3-alpine image to resolve medium sev sqlite-lib issue

2025-05-11T17:24:34-04:00

changeset	e7002216d95c
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update 3-alpine image to resolve medium sev sqlite-lib issue Anchore scan reports medium sev issue with sqlite-libs - buffer overflow. Also various low sev issues for ssl_client and busybox-binsh, busybox.
files

chore: update ptyhon3-alpine hash.

2025-05-11T16:41:19-04:00

changeset	4f36532a2482
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update ptyhon3-alpine hash.
files

chore: update to latest 3.13 python alpine base image.

2025-03-10T21:48:06-04:00

changeset	6d559739456a
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update to latest 3.13 python alpine base image.
files

chore: quote some strings with variables and add comments

2025-01-18T11:20:20-05:00

changeset	92dad05379f9
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: quote some strings with variables and add comments make sure that a space in a variable doesn't cause a problem. Also merge two RUN commands.
files

build: use pip --no-cache-dir not --no-cache

2024-12-19T11:41:51-05:00

changeset	63a016f4b562
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: use pip --no-cache-dir not --no-cache Use the proper name even though the shorter name is recognized.
files

chore: update to python 3.13. Also use index file shasum.

2024-12-08T21:36:29-05:00

changeset	53dba022d4cd
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update to python 3.13. Also use index file shasum.
files

chore: update manifest sha256sum to fix issue with python version.

2024-12-08T18:03:07-05:00

changeset	0a6ca45c53b4
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update manifest sha256sum to fix issue with python version.
files

doc: fix comment

2024-10-17T19:17:39-04:00

changeset	1aa3e5681979
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	doc: fix comment
files

chore: update to newest 3.12 alpine image

2024-09-26T00:34:54-04:00

changeset	61ffdc71cf46
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update to newest 3.12 alpine image Also had to add setuptools to requirements.txt. Apparently not a part of the base image anymore.
files

bug: verify that dumb-init exists

2024-09-25T22:15:38-04:00

changeset	7c68aace7e48
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	bug: verify that dumb-init exists Verify that dumb-init exists and is non-zero size. At some point a dumb-init package was creating a 0 length file for dumb-init.
files

fix: replace use of shell variable inside printf string with specifer.

2024-07-20T19:07:01-04:00

changeset	539e300f85d2
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	fix: replace use of shell variable inside printf string with specifer. Minor nit found by hadolint.
files

build: some work from RELEASE.txt for 2.4.0 release.

2024-07-09T15:30:56-04:00

changeset	4f07d7835019
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: some work from RELEASE.txt for 2.4.0 release.
files

build: update docker's python:3-alpine version.

2024-06-29T22:41:25-04:00

changeset	40705dc8e85a
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: update docker's python:3-alpine version. also handle a keyword case issue reported by docker build.
files

2.4.0b2 release updates

2024-05-27T22:47:08-04:00

changeset	301b0988a351
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	2.4.0b2 release updates
files

2.4.0b1 release commits

2024-05-27T16:26:55-04:00

changeset	75774e89b483
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	2.4.0b1 release commits
files

changes for 2.4.0b0 release

2024-05-26T20:57:28-04:00

changeset	a377590eba34
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	changes for 2.4.0b0 release
files

chore: update dockerfile to latest python:3-alpine release,

2024-05-25T16:39:57-04:00

changeset	2adab2644f19
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update dockerfile to latest python:3-alpine release,
files

chore: update alpine image version.

2024-04-17T22:51:44-04:00

changeset	34828c671200
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update alpine image version.
files

chore: update to latest python:3-alpine image.

2024-03-30T23:35:33-04:00

changeset	501c5e3ef55f
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update to latest python:3-alpine image.
files

chore: update python:3-alpine version.

2024-02-13T20:31:42-05:00

changeset	e2816259ccce
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update python:3-alpine version.
files

update to newest python:3-alpine image

2024-01-28T21:39:46-05:00

changeset	47eb57f73d88
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	update to newest python:3-alpine image
files

docs: update comments

2024-01-02T11:32:37-05:00

changeset	925ad351d22a
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	docs: update comments
files

chore: update to newest python:3-alpine

2023-12-18T16:40:55-05:00

changeset	2c1d30467909
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update to newest python:3-alpine Still no fixes for the grype security alerts though.
files

Another python:3-alpine image update

2023-12-02T16:58:18-05:00

changeset	56c32eebc518
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Another python:3-alpine image update
files

update alpine base docker image. See if it clears security scan issues

2023-12-02T16:50:06-05:00

changeset	1ac882b069e7
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	update alpine base docker image. See if it clears security scan issues
files

chore: update the sha256 sum for the newest python:3-alpine image

2023-10-30T21:57:21-04:00

changeset	29dba38a852a
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: update the sha256 sum for the newest python:3-alpine image
files

chore: upgrade to newest python:3-alpine.

2023-10-18T12:34:23-04:00

changeset	d5166fdcffa6
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	chore: upgrade to newest python:3-alpine.
files

build(docker): disable pip_sdist mode

2023-09-24T22:24:51-04:00

changeset	fae314043555
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build(docker): disable pip_sdist mode in github ci: COPY README.txt dist/* install/dist/ crashes the docker build if the dist directory is missing. This prevents anchore/grype from scanning the image. This is a new issue as it doesn't happen on my system. The README.txt file is there explicitly to prevent COPY from failing if nothing matches the wildcard. This used to work, but .... So I am disabling building from local sdist. This only affects maintainers. Building from sdist is done to generate a docker that matches a source distribution that has yet to be uploaded to pypi. Other use cases can build using the default of local. I haven't found a way to make a dist subdir in the docker build context directory. I can't even figure out how to identify the context directory name inside the build container. Also updated installation docs.
files

build(docker): add file package to clear error when building xapian

2023-09-24T21:35:47-04:00

changeset	0b03b4dd7089
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build(docker): add file package to clear error when building xapian It looks like the error was non-fatal. The image I believe worked fine. But, clean up the noise.
files

fix,docs: Move args around into groups; add docs.

2023-09-24T12:25:40-04:00

changeset	cea108761b8c
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	fix,docs: Move args around into groups; add docs. Create basic and advanced user ARG groups; add some doc explanations.
files

build: make Dockerfile work for 3.12 release

2023-09-24T02:02:17-04:00

changeset	b9641ea5fee4
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: make Dockerfile work for 3.12 release 3.12 build of xapian requires some additional edits. Copy them from the current 3.12 compatible workflow. This should mean that future updates to python:3-alpine to 3.12 will "just work".
files

build: update python:3-alpine version

2023-09-24T00:29:45-04:00

changeset	d745a6eb0604
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	build: update python:3-alpine version Update the sha256 sum used to download the current 3-alpine version. Also abstracted it into a variable (argument) that is used in both the build and deployment images.
files

fix: hadolint fixups

2023-09-18T01:05:01-04:00

changeset	3f268f7157f3
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	fix: hadolint fixups Fix warnings reported by hadolint: Quote strings to prevent embedded spaces in varibles from causing misparse Use find in place of ls to generate file list for sdist files as it handles more charsets sanely To run hadolint: docker run --rm -i ghcr.io/hadolint/hadolint < scripts/Docker/Dockerfile
files

Update dockerfile build: new python base image, reduce disk space use

2023-08-15T00:29:24-04:00

changeset	d117ddcb0ed1
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Update dockerfile build: new python base image, reduce disk space use Use newest python:3-alpine. Remove sphinxcontrib libraries and xapian docs that were left around from the build saving 2M.
files

Updates for 2.3.0 release.

2023-07-12T22:59:49-04:00

changeset	ed2bc951277b
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Updates for 2.3.0 release.
files

Add labels for ARGS that can change as part of build.

2023-06-26T01:10:50-04:00

changeset	207a7eca41ed
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Add labels for ARGS that can change as part of build. memorialize the pythonversion and pip_mod ARGS in addition to already memorialized source arg in the labels for the image.
files

Fix missing escaped newline.

2023-06-17T16:13:09-04:00

changeset	ec738682874d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Fix missing escaped newline.
files

Dockerfile label updates, change version string in RELEASE.txt

2023-06-17T15:42:47-04:00

changeset	12674129a45c
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Dockerfile label updates, change version string in RELEASE.txt LABELS now use ci standard opencontainers naming for: vendor, description and version annotations. In version, source value was removed and source moved to description. Added annotations for: title licenses documentation licenses includes Python-2.0 license in preparation for vendoring cgi and cgitb modules in 2.4.0. Updated RELEASE.txt to include version string in Dockerfile.
files

Update python:3-alpine pinning.

2023-06-15T15:16:43-04:00

changeset	b290c7b95986
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Update python:3-alpine pinning. [skip travis]
files

Fix issing "as build" for multistage build.

2023-06-15T15:05:54-04:00

changeset	c086d0fb7171
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Fix issing "as build" for multistage build. [skip travis]
files

Bump python from 'caafba8' to 'a6ee91afa' in /scripts/Docker - https://github.com/roundup-tracker/roundup/pull/36

2023-06-11T23:47:00-04:00

changeset	38ce0a2a9cf8
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Bump python from 'caafba8' to 'a6ee91afa' in /scripts/Docker - https://github.com/roundup-tracker/roundup/pull/36
files

Cleanup docker before 2.3.0b1 release

2023-05-31T19:14:56-04:00

changeset	e7df82ae137d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Cleanup docker before 2.3.0b1 release scripts/Docker/Dockerfile Document/implement pip_sdist source mode for testing the source distribution. Change from multiple if's to case statement. Disable verbose tracing of shells script. Use --build-arg="VERBOSE=1" to enable set -xv. scripts/Docker/roundup_start Report error if demo mode is used with 2.2.0. This catches the easiest case where build is done using pypi before 2.3.0 final is released. Indent demo mode PORT_8080 doc block so it's not lost in a wall of text. doc/installation.txt Document all source --build-args including how to build from pypi using a version specifier. Break out other uses of --build-arg into code blocks. Reference docker compose section rather than referencing docker-compose.yml. Clarify docker hub tagging for devel releases. Minor formatting fixes.
files

Push newest python:3-alpine.

2023-05-11T20:13:50-04:00

changeset	fbd07bc05613
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Push newest python:3-alpine.
files

Use dumb-init in Dockerfile; chown tracker directory to proper uid

2023-05-10T17:53:47-04:00

changeset	24cbf3a41e8a
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Use dumb-init in Dockerfile; chown tracker directory to proper uid Use dumb-init so proceses started from Roundup get properly reaped if they exit after the Roundup server instance. Also chown the tracker mount directory to the specified uid/gid.
files

bump python version in docker

2023-05-07T22:21:19-04:00

changeset	96a2bcb1bf1d
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	bump python version in docker
files

use latest 3-alpine at 18M rather than latest ubuntu based python image, dependabot seems to not properly track subypes

2023-04-19T22:30:00-04:00

changeset	543b9d6d0e11
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	use latest 3-alpine at 18M rather than latest ubuntu based python image, dependabot seems to not properly track subypes
files

Bump python from 1c7b5a9 to f7382f4 in /scripts/Docker - https://github.com/roundup-tracker/roundup/pull/22

2023-04-19T21:40:56-04:00

changeset	bb070f559a80
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	Bump python from 1c7b5a9 to f7382f4 in /scripts/Docker - https://github.com/roundup-tracker/roundup/pull/22
files

hadolint fixes/best practices added

2023-03-30T19:35:08-04:00

changeset	f636acd7d63c
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	hadolint fixes/best practices added Enable -o pipefail for RUN commands with pipes so any errors in the pipeline cause a failure. use wget -q to reduce log size for large file downloads. Run all apk with --no-cache so I don't need to remove /var/cache/apk/*. Quote variables in RUN shell scripts unless they need to be expanded. Don't use direct variable substitution in printf. Update comment for installing python packages using apk. Remove --use-feature=in-tree-build from local_pip pip command. This feature is the default with newer pips and is now an error if used.
files

pin python image versions using sha256 sum

2023-02-16T21:56:08-05:00

changeset	282ba72a5615
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	pin python image versions using sha256 sum
files

More changes to remove stragglers of old setuptools.

2022-12-28T23:45:14-05:00

changeset	59908110ccc9
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	More changes to remove stragglers of old setuptools. Pip update needs to be done in both the stage1 and stage2 images. site-packages contain setuptools-65.5.0 in both stage1 and stage2. Because I copy stage1's site-packages to stage2, I need to remove the -65.5.0 directory in stage1 to prevent it from making the jump to stage 2. I do the pip update in stage2 before the copy, not after. So I don't have to worry about pip update messing with my locally installed files. But it does mean I have to pip update both stage1 and stage2. I could probably get away with just 1 pip update if I did it after the copy operation from stage1 into stage2 but... This way is probably safer.
files

pip update outdated packages

2022-12-28T20:07:30-05:00

changeset	9f3ca362a415
branch
bookmark
tag
user	John Rouillard <rouilj@ieee.org>
description	pip update outdated packages Specifically to handle issue with setuptools package as distributed with python:3-alpine. https://github.com/roundup-tracker/roundup/security/code-scanning/111 But it does a generic update of packages. I expect the packages I explicitly install will already be up to date. This could be an issue if I need to pinning/freeze specific versions in requirements.txt.
files