Bump steve and dashboard for Rancher v2.7.1

Use --scanners instead of --security-checks
Bump upx 4.0.2
2025-09-02 15:05:14 +00:00 · 2023-03-20 15:13:04 +08:00 · 2023-03-20 11:24:18 +08:00 · 2023-03-20 11:23:47 +08:00 · 2022-12-20 15:16:25 +08:00 · 2022-12-20 15:12:34 +08:00
4 changed files with 21 additions and 8 deletions
--- a/.drone.yml
+++ b/.drone.yml
@@ -96,6 +96,21 @@ steps:
    event:
    - push

+- name: image-scan-head
+  image: aquasec/trivy
+  commands:
+  - trivy image --no-progress --ignore-unfixed --severity HIGH,CRITICAL --scanners vuln --exit-code 1 cnrancher/kube-explorer:head-linux-amd64
+  volumes:
+  - name: docker
+    path: /var/run/docker.sock
+  when:
+    ref:
+      include:
+      - "refs/heads/main"
+      - "refs/heads/v*"
+    event:
+    - push
+
 - name: docker-publish
  pull: default
  image: plugins/docker
--- a/Dockerfile.dapper
+++ b/Dockerfile.dapper
@@ -6,7 +6,7 @@ ENV HOST_ARCH=${DAPPER_HOST_ARCH} ARCH=${DAPPER_HOST_ARCH}
 RUN apt-get update && \
    apt-get install -y ca-certificates git wget curl xz-utils && \
    rm -f /bin/sh && ln -s /bin/bash /bin/sh && \
-    curl -sL https://github.com/upx/upx/releases/download/v3.96/upx-3.96-${ARCH}_linux.tar.xz | tar xvJf - --strip-components=1 -C /tmp && \
+    curl -sL https://github.com/upx/upx/releases/download/v4.0.2/upx-4.0.2-${ARCH}_linux.tar.xz | tar xvJf - --strip-components=1 -C /tmp && \
    mv /tmp/upx /usr/bin/

 RUN if [ "${ARCH}" == "amd64" ]; then \
@@ -19,10 +19,10 @@ ENV DOCKER_URL_amd64=https://get.docker.com/builds/Linux/x86_64/docker-1.10.3 \
    DOCKER_URL=DOCKER_URL_${ARCH}
 RUN wget -O - ${!DOCKER_URL} > /usr/bin/docker && chmod +x /usr/bin/docker

-ENV GIT_COMMIT="f8261f5f6e3a58f2e9a4b97ed5dc0a5f92b03c9e" \
-    GIT_BRANCH="ke/v0.2" \
+ENV GIT_COMMIT="9052c76e5f978e34a531d0dd26bc77ed44bfe068" \
+    GIT_BRANCH="ke/v0.3" \
    GIT_SOURCE=${GOPATH}/src/github.com/rancher/steve \
-    CATTLE_DASHBOARD_UI_VERSION="v2.6.9-kube-explorer-ui-rc2"
+    CATTLE_DASHBOARD_UI_VERSION="v2.7.1-kube-explorer-ui-rc2"

 ENV DAPPER_ENV REPO TAG DRONE_TAG CROSS
 ENV DAPPER_SOURCE /opt/kube-explorer
--- a/package/Dockerfile
+++ b/package/Dockerfile
@@ -1,6 +1,4 @@
-FROM alpine:3.13
+FROM registry.suse.com/bci/bci-minimal:15.4

 COPY kube-explorer entrypoint.sh /usr/bin/
-# Hack to make golang do files,dns search order
-ENV LOCALDOMAIN=""
 ENTRYPOINT ["entrypoint.sh"]
--- a/scripts/download
+++ b/scripts/download
@@ -10,7 +10,7 @@ git reset --hard ${GIT_COMMIT}

 mkdir -p pkg/ui/ui/dashboard
 cd pkg/ui/ui/dashboard
-curl -sL https://pandaria-dashboard-ui.s3.ap-southeast-2.amazonaws.com/release-2.6-cn/kube-explorer-ui/${CATTLE_DASHBOARD_UI_VERSION}.tar.gz | tar xvzf - --strip-components=2
+curl -sL https://pandaria-dashboard-ui.s3.ap-southeast-2.amazonaws.com/release-2.7-cn/kube-explorer-ui/${CATTLE_DASHBOARD_UI_VERSION}.tar.gz | tar xvzf - --strip-components=2
 cp index.html ../index.html

 popd
Author	SHA1	Message	Date
niusmallnan	f4970b85a2	Bump steve and dashboard for Rancher v2.7.1	2023-03-20 15:13:04 +08:00
niusmallnan	bfae192748	Use --scanners instead of --security-checks	2023-03-20 11:24:18 +08:00
niusmallnan	3810cd702f	Bump upx 4.0.2	2023-03-20 11:23:47 +08:00
niusmallnan	f898c559e0	Bump steve and dashboard	2022-12-20 15:16:25 +08:00
niusmallnan	f0effa7f09	Bump upx 4.0.1	2022-12-20 15:12:34 +08:00
niusmallnan	2838ceb34a	Add image scan pipeline in drone	2022-12-09 09:29:18 +08:00
niusmallnan	40a972eeef	Use BCI minimal image	2022-12-09 08:59:34 +08:00
niusmallnan	88c924a816	Use BCI image	2022-12-09 08:51:39 +08:00