feat(STONEINTG-1072): refactoring clamav-db to avoild uploading file

Signed-off-by: Kasem Alem <kalem@kalem-thinkpadp16vgen1.raanaii.csb>
konflux-ci · Nov 25, 2024 · b7e2b13 · b7e2b13
1 parent 64627f9
commit b7e2b13
Showing 1 changed file with 25 additions and 3 deletions.
diff --git a/clamav/Dockerfile b/clamav/Dockerfile
@@ -1,9 +1,31 @@
 FROM registry.access.redhat.com/ubi9/ubi-minimal:9.4-1227.1726694542
+FROM quay.io/enterprise-contract/ec-cli:snapshot@sha256:dc7d404596385e7d3c624ec0492524a1d57efe2b0c10cf0ec2158d49c0290a83 AS ec-cli
+
+ENV POLICY_PATH="/project"
+# Install required packages
 RUN rpm -ivh https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm && \
     microdnf -y --setopt=tsflags=nodocs install \
     clamav \
     clamd \
-    clamav-update && \
-    microdnf clean all
-COPY whitelist.ign2 /var/lib/clamav/whitelist.ign2
+    clamav-update \
+    jq \
+    tar \
+    skopeo \
+    && microdnf clean all
+
+COPY ../test/utils.sh /utils.sh
+
+# Update ClamAV virus definitions
 RUN freshclam
+
+COPY clamav/whitelist.ign2 /var/lib/clamav/whitelist.ign2
+
+COPY policies $POLICY_PATH
+COPY test/conftest.sh $POLICY_PATH
+
+# Download and install oc
+RUN ARCH="$(uname -m)" && \
+    curl -fsSL https://mirror.openshift.com/pub/openshift-v4/"$ARCH"/clients/ocp/stable/openshift-client-linux.tar.gz --output oc.tar.gz && \
+    cp oc.tar.gz /usr/bin/oc && \
+    tar -xzvf oc.tar.gz -C /usr/bin && \
+    rm oc.tar.gz