2025-05-02 00:46:59 +00:00
|
|
|
# syntax = docker/dockerfile:1.11-labs
|
|
|
|
|
|
|
|
|
|
FROM input AS audit
|
|
|
|
|
ARG rust_toolchain="nightly"
|
|
|
|
|
ARG RUSTUP_HOME
|
|
|
|
|
ARG CARGO_HOME
|
|
|
|
|
ARG audit_args=""
|
|
|
|
|
|
2025-06-01 11:40:09 +00:00
|
|
|
WORKDIR /
|
|
|
|
|
COPY --link --from=input . .
|
|
|
|
|
|
2025-05-02 00:46:59 +00:00
|
|
|
WORKDIR /usr/src/tuwunel
|
|
|
|
|
RUN \
|
2025-06-24 23:43:59 +00:00
|
|
|
--mount=type=cache,dst=${RUSTUP_HOME}/downloads,sharing=shared \
|
|
|
|
|
--mount=type=cache,dst=${CARGO_HOME}/registry,sharing=shared \
|
|
|
|
|
--mount=type=cache,dst=${CARGO_HOME}/git,sharing=shared \
|
2025-05-02 00:46:59 +00:00
|
|
|
<<EOF
|
|
|
|
|
set -eux
|
|
|
|
|
rustup run ${rust_toolchain} \
|
|
|
|
|
cargo audit \
|
|
|
|
|
--stale \
|
|
|
|
|
--deny yanked \
|
|
|
|
|
--deny unsound \
|
|
|
|
|
--deny unmaintained \
|
|
|
|
|
--deny warnings \
|
|
|
|
|
--color=always \
|
|
|
|
|
${audit_args}
|
|
|
|
|
EOF
|
