mirror of
https://github.com/falcosecurity/falco.git
synced 2025-09-28 13:47:50 +00:00
c2ee87976c
Based on the Dockerfiles from the sysdig repository. The only change from the sysdig versions is to use environment variable FALCO_REPOSITORY and to install falco instead of sysdig. Note that the entrypoint still uses sysdig-probe-loader and SYSDIG_HOST_ROOT, as it's building the kernel module for sysdig. I verified I could create and run an image using the dev version using "docker build ." from docker/dev, and run it using: docker run -i -t --name falco --privileged -v /var/run/docker.sock:/host/var/run/docker.sock -v /dev:/host/dev -v /proc:/host/proc:ro -v /boot:/host/boot:ro -v /lib/modules:/host/lib/modules:ro -v /usr:/host/usr:r\o sysdig/falco falco -r /etc/falco_rules.conf I still need to update jenkins to create a release build.