Install curl in gemnasium-python fips image
requested to merge gitlab-org/cloud-native/distroless/gemnasium:Convert-image--gemnasium-python into master
-
Please check this box if this contribution uses AI-generated content (including content generated by GitLab Duo features) as outlined in the GitLab DCO & CLA
What does this MR do?
The base image for the FIPS version of gemnasium-python was changed from ubi-minimal to ubi-micro in Changes to base the final image on ubi-micro (!720 - merged) • Vasant Tokale • 17.0, however, this change resulted in a FIPS image that no longer includes curl, which causes our test-custom-ca-bundle fips downstream test to fail. See this comment for more details.
This MR fixes the issue by explicitly installing curl in the build/gemnasium-python/redhat/ dockerfile.
What are the relevant issue numbers?
- Fix Broken Master Branch in Gemnasium (gitlab-org/gitlab#461650) • Fabien Catteau • 17.2
- Convert image to Distroless: Security Analyzer ... (gitlab-org/cloud-native/distroless/ubi#38 - closed) • Vasant Tokale
Does this MR meet the acceptance criteria?
-
Changelog entry added -
Documentation created/updated for GitLab EE, if necessary -
Documentation created/updated for this project, if necessary -
Documentation reviewed by technical writer or follow-up review issue created -
Tests added for this feature/bug -
Job definition updated, if necessary -
Conforms to the code review guidelines -
Conforms to the Go guidelines -
Security reports checked/validated by reviewer
Edited by Adam Cohen