The Dockerfile in this project generates a list of conda packages for use by Jake, and more specifically, the jake-github-action. See the CI config in this project for an example of using the Jake Action.
docker build -t conda-list .
docker run conda-list > packages.list
The openssl package has a vulnerability (CVE-2019-0190)
that appears in all versions. So for now, I've removed openssl from the packages.list file.
openssl 1.1.1h h7b6447c_0
-
Replace the commit hash below with a reference to either a release version or theDone, referencesmainbranch in.github/workflows/jake.yml:mainbranch now.uses: sonatype-nexus-community/jake-github-action@811b6670e343fc48fde273906404adaac9bd3885
As vulnerabilities are detected, you can use the following commands to find updated versions of dependencies:
To find a list of available Versions and Builds for a package named: urllib3:
conda search --full-name urllib3
You can run a local build using the act project. e.g.:
$ act
[Jake/Build] 🚀 Start image=catthehacker/ubuntu:act-latest
[Jake/Build] 🐳 docker run image=catthehacker/ubuntu:act-latest entrypoint=["/usr/bin/tail" "-f" "/dev/null"] cmd=[]
[Jake/Build] 🐳 docker cp src=/Users/bhamail/sonatype/community/jake-gh-action-test/. dst=/github/workspace
[Jake/Build] ⭐ Run Check out code
[Jake/Build] ✅ Success - Check out code
[Jake/Build] ⭐ Run Setup
Get:1 http://security.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Get:2 https://download.docker.com/linux/ubuntu bionic InRelease [64.4 kB]
...
| The following packages will be upgraded:
| libpython3.6-minimal libpython3.6-stdlib python3.6 python3.6-minimal
| 4 upgraded, 5 newly installed, 0 to remove and 20 not upgraded.
| Need to get 5940 kB of archives.
| After this operation, 5044 kB of additional disk space will be used.
...It is taking a long time to run for me, but I think it will finish...