Skip to content
Normal view Permalink
Dockerfile.debian 1.38 KiB
Newer Older
Timo Furrer's avatar
Add debian base image support
Timo Furrer committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 
ARG BASE_IMAGE=debian:12.7

FROM $BASE_IMAGE

ARG TARGETARCH

RUN apt-get update && apt-get install -y \
  curl \
  wget \
  git \
  jq \
  openssh-client \
  unzip \
  && rm -rf /var/lib/apt/lists/*

# NOTE: cosign is not yet available in the debian apt sources
ARG COSIGN_VERSION=2.4.0
WORKDIR /tmp
RUN wget https://github.com/sigstore/cosign/releases/download/v${COSIGN_VERSION}/cosign_${COSIGN_VERSION}_${TARGETARCH}.deb && \
    dpkg -i *.deb && \
    rm -f /tmp/*.deb

# NOTE: glab is not yet available in the debian apt sources
ARG GLAB_VERSION=1.46.1
WORKDIR /tmp
Timo Furrer's avatar
Remove glab asset name hack  
Timo Furrer committed
26 
RUN wget https://gitlab.com/gitlab-org/cli/-/releases/v${GLAB_VERSION}/downloads/glab_${GLAB_VERSION}_linux_${TARGETARCH}.deb && \
Timo Furrer's avatar
Add debian base image support
Timo Furrer committed
27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 
    dpkg -i *.deb && \
    rm -f /tmp/*.deb

# Install OpenTofu using the installer script in standalone mode
# see https://opentofu.org/docs/intro/install/standalone
# We may want to switch to installing manually from GitHub and verifying signature
ARG OPENTOFU_VERSION
RUN curl --proto '=https' --tlsv1.2 -fsSL https://get.opentofu.org/install-opentofu.sh -o install-opentofu.sh && \
    chmod +x install-opentofu.sh && \
    ./install-opentofu.sh --install-method standalone --opentofu-version "${OPENTOFU_VERSION}" && \
    rm ./install-opentofu.sh && \
    rm -rf /tmp/* && \
    tofu --version

WORKDIR /

COPY --chmod=755 src/gitlab-tofu.sh /usr/bin/gitlab-tofu

# Override ENTRYPOINT
ENTRYPOINT []