734939fd12
Five minimal OCI image variants built with apko: - base: ~5.5MB glibc runtime (wolfi-baselayout, libstdc++, ca-certs, tzdata) - build: base + build tools (bash, git, curl, wget, unzip, xz) - dotnet-runtime: base + ICU, OpenSSL, zlib for .NET runtime - dotnet-sdk: build + ICU, OpenSSL, zlib for .NET SDK - flutter: build variant configured for Flutter SDK Includes melange package definitions for .NET 10 SDK/runtime and Flutter SDK (for future use when building custom APKs). CI/CD pipelines: publish on release, Scout CVE comparison on PRs, weekly rebuild for Wolfi security patches. Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
50 lines
811 B
YAML
50 lines
811 B
YAML
contents:
|
|
keyring:
|
|
- https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
|
|
repositories:
|
|
- https://packages.wolfi.dev/os
|
|
packages:
|
|
# Base runtime
|
|
- wolfi-baselayout
|
|
- glibc
|
|
- glibc-locale-posix
|
|
- libstdc++
|
|
- ca-certificates-bundle
|
|
- tzdata
|
|
# .NET runtime dependencies
|
|
- icu
|
|
- libssl3
|
|
- zlib
|
|
# Build tools
|
|
- bash
|
|
- busybox
|
|
- coreutils
|
|
- git
|
|
- curl
|
|
- wget
|
|
- unzip
|
|
- xz
|
|
|
|
accounts:
|
|
groups:
|
|
- groupname: app
|
|
gid: 65532
|
|
users:
|
|
- username: app
|
|
uid: 65532
|
|
gid: 65532
|
|
run-as: 65532
|
|
|
|
archs:
|
|
- x86_64
|
|
- aarch64
|
|
|
|
environment:
|
|
TZ: UTC
|
|
DOTNET_SYSTEM_GLOBALIZATION_INVARIANT: "false"
|
|
DOTNET_RUNNING_IN_CONTAINER: "true"
|
|
DOTNET_CLI_TELEMETRY_OPTOUT: "true"
|
|
|
|
entrypoint:
|
|
command: /bin/bash
|