.drone.yml aktualisiert

2026-04-11 12:10:51 +00:00 · 2026-04-11 12:06:31 +00:00 · 2026-04-11 11:45:11 +00:00 · 2026-04-11 11:41:57 +00:00 · 2026-04-11 11:38:56 +00:00 · 2026-04-11 11:33:12 +00:00
2 changed files with 27 additions and 17 deletions
--- a/.drone.yml
+++ b/.drone.yml
@ -1,7 +1,7 @@
 kind: pipeline
 type: docker
 name: default
-
+#test
 steps:
  - name: build-image
    image: gcr.io/kaniko-project/executor:debug
@ -26,7 +26,7 @@ steps:
        fi

  - name: security-scan
-    image: aquasec/trivy:latest
+    image: ghcr.io/aquasecurity/trivy:0.69.3
    commands:
      - trivy image --input image.tar --severity HIGH,CRITICAL --exit-code 1

@ -46,8 +46,8 @@ steps:
      #- git remote set-url origin https://git.efi.th-nuernberg.de/gitea/freudenreichan/EinfuehrungInDocker_Pipeline2

      # Repo clonen
-      - git clone https://git.efi.th-nuernberg.de/gitea/freudenreichan/EinfuehrungInDocker_Pipeline2.git
-      - cd EinfuehrungInDocker_Pipeline
+      - git clone https://$GITEA_TOKEN@git.efi.th-nuernberg.de/gitea/koeniged93584/EinfuehrungInDocker_Pipeline2.git
+      - cd EinfuehrungInDocker_Pipeline2

      # Branch wechseln oder erstellen
      - git checkout drone-artifacts || git checkout -b drone-artifacts
--- a/36
+++ b/36
@ -1,22 +1,32 @@
-# Base-Image
-FROM ubuntu:latest
+# Stage 1: Build
+FROM alpine:latest AS builder

-# Pakete installieren
-RUN apt-get update
-RUN apt-get install -y build-essential gcc curl vim net-tools
+RUN apk add --no-cache build-base gcc

-# Arbeitsverzeichnis setzen
 WORKDIR /app

-# alles kopieren
 COPY . .

-# Code kompilieren
-RUN gcc -o deployment deployment.c
+RUN gcc -static -o deployment deployment.c

-# Verzeichnis für Ausgabe anlegen
-RUN mkdir /output
+# Stage 2: Runtime
+FROM alpine:latest
+RUN apk upgrade --no-cache

-# Ausgabe wird ins Container-Dateisystem geschrieben
-ENTRYPOINT ["/bin/bash", "-c"]
+RUN addgroup -S appgroup && adduser -S appuser -G appgroup
+
+WORKDIR /app
+
+COPY --from=builder /app/deployment .
+
+RUN mkdir /output && chown appuser:appgroup /output
+
+VOLUME ["/output"]
+
+USER appuser
+
+HEALTHCHECK --interval=30s --timeout=5s --start-period=15s --retries=3 \
+    CMD test -f /output/output.txt || exit 1
+
+ENTRYPOINT ["/bin/sh", "-c"]
 CMD ["./deployment 10 > /output/output.txt && tail -f /output/output.txt"]
Author	SHA1	Message	Date
Edward Koenig	7c4f0340bf	.drone.yml aktualisiert	2026-04-11 12:10:51 +00:00
Edward Koenig	a45c11479c	.drone.yml aktualisiert	2026-04-11 12:06:31 +00:00
Edward Koenig	a2ad8bb711	.drone.yml aktualisiert	2026-04-11 11:45:11 +00:00
Edward Koenig	1df6d0febd	Dockerfile aktualisiert	2026-04-11 11:41:57 +00:00
Edward Koenig	ef639f9107	Dockerfile aktualisiert	2026-04-11 11:38:56 +00:00
Edward Koenig	b177595bfc	.drone.yml aktualisiert	2026-04-11 11:33:12 +00:00
Edward Koenig	04968777bd	Dockerfile aktualisiert	2026-04-11 11:30:06 +00:00
Edward Koenig	cf2f548c79	Dockerfile aktualisiert	2026-04-11 11:27:57 +00:00
Edward Koenig	73e3ebdc4e	Dockerfile aktualisiert	2026-04-11 11:18:08 +00:00