diff --git a/Dockerfile b/Dockerfile index 886dd35a9..e7fef061a 100644 --- a/Dockerfile +++ b/Dockerfile @@ -6,23 +6,26 @@ ENV user=dependencycheck ENV version_url=https://jeremylong.github.io/DependencyCheck/current.txt ENV download_url=https://dl.bintray.com/jeremy-long/owasp -RUN apt-get update && \ - apt-get install -y wget && \ - wget -O /tmp/current.txt ${version_url} && \ - version=$(cat /tmp/current.txt) && \ - file="dependency-check-${version}-release.zip" && \ - wget "$download_url/$file" && \ - unzip ${file} && \ - rm ${file} && \ - mv dependency-check /usr/share/ && \ - useradd -ms /bin/bash ${user} && \ - chown -R ${user}:${user} /usr/share/dependency-check && \ - mkdir /report && \ - chown -R ${user}:${user} /report && \ - apt-get remove --purge -y wget && \ - apt-get autoremove -y && \ - rm -rf /var/lib/apt/lists/* +RUN apt-get update && \ + apt-get install -y --no-install-recommends wget ruby mono-runtime && \ + gem install bundle-audit && \ + gem cleanup +RUN wget -O /tmp/current.txt ${version_url} && \ + version=$(cat /tmp/current.txt) && \ + file="dependency-check-${version}-release.zip" && \ + wget "$download_url/$file" && \ + unzip ${file} && \ + rm ${file} && \ + mv dependency-check /usr/share/ && \ + useradd -ms /bin/bash ${user} && \ + chown -R ${user}:${user} /usr/share/dependency-check && \ + mkdir /report && \ + chown -R ${user}:${user} /report && \ + apt-get remove --purge -y wget && \ + apt-get autoremove -y && \ + rm -rf /var/lib/apt/lists/* /tmp/* + USER ${user} VOLUME ["/src" "/usr/share/dependency-check/data" "/report"]