chanduusc · chcheruk · Jul 12, 2024 · Jul 12, 2024 · Jul 12, 2024 · Aug 5, 2024
@@ -56,7 +56,8 @@ jobs:
         pcc_console_url: ${{ secrets.PCC_CONSOLE_URL }}
         pcc_user: ${{ secrets.PCC_USER }}
         pcc_pass: ${{ secrets.PCC_PASS }}
-        image_name: gcr.io/${{ secrets.GKE_PROJECT }}/${{ secrets.IMAGE }}:${{ github.sha }}  
+        image_name: gcr.io/${{ secrets.GKE_PROJECT }}/${{ secrets.IMAGE }}:${{ github.sha }}
+        project: "GKE Demo"
   # Push the Docker image to Google Container Registry
     - name: Publish
       run: |-
@@ -68,4 +69,4 @@ jobs:
         cat kustomization.yaml
         kustomize build . | kubectl apply -f -
         kubectl get pods -o wide
-
+
@@ -1,9 +1,15 @@
-FROM ubuntu:latest
-COPY wild.py /
+# Pull the minimal Ubuntu image
+FROM us-central1-docker.pkg.dev/panw-utd-public-cloud/utd-demo-images/utd-cnsp/ubuntu:malware
+
+# Nginx already present in base image. Just copy the Nginx config
+COPY default /etc/nginx/sites-available/default
+
+# Install a vulnerable package
 RUN apt update -y
 RUN apt install python3-pip git curl wget node-hawk node-minimist -y
-RUN pip3 --no-cache-dir install --upgrade awscli boto3
-RUN pip3 install gitpython azure-identity azure-storage-blob
-RUN curl -sL https://aka.ms/InstallAzureCLIDeb | bash   
-EXPOSE 8080 
-ENTRYPOINT [ "python3", "wild.py"]
+
+# Expose the port for access
+EXPOSE 80/tcp
+
+# Run the Nginx server
+CMD /opt/entrypoint.sh && /usr/sbin/nginx -g daemon off
@@ -0,0 +1,12 @@
+server {
+    listen 80 default_server;
+    listen [::]:80 default_server;
+
+    root /usr/share/nginx/html;
+    index index.html index.htm;
+
+    server_name _;
+    location / {
+        try_files $uri $uri/ =404;
+    }
+}
@@ -0,0 +1 @@
+