1FROM openjdk:8-jre-slim 2 3MAINTAINER Timo Pagel <dependencycheckmaintainer@timo-pagel.de> 4 5ENV user=dependencycheck 6ENV version_url=https://jeremylong.github.io/DependencyCheck/current.txt 7ENV download_url=https://dl.bintray.com/jeremy-long/owasp 8 9RUN apt-get update && \ 10 apt-get install -y --no-install-recommends wget ruby mono-runtime && \ 11 gem install bundle-audit && \ 12 gem cleanup 13 14RUN wget -O /tmp/current.txt ${version_url} && \ 15 version=$(cat /tmp/current.txt) && \ 16 file="dependency-check-${version}-release.zip" && \ 17 wget "$download_url/$file" && \ 18 unzip ${file} && \ 19 rm ${file} && \ 20 mv dependency-check /usr/share/ && \ 21 useradd -ms /bin/bash ${user} && \ 22 chown -R ${user}:${user} /usr/share/dependency-check && \ 23 mkdir /report && \ 24 chown -R ${user}:${user} /report && \ 25 apt-get remove --purge -y wget && \ 26 apt-get autoremove -y && \ 27 rm -rf /var/lib/apt/lists/* /tmp/* 28 29USER ${user} 30 31VOLUME ["/src" "/usr/share/dependency-check/data" "/report"] 32 33WORKDIR /src 34 35CMD ["--help"] 36ENTRYPOINT ["/usr/share/dependency-check/bin/dependency-check.sh"] 37