Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update build scripts, CI workflow, and Docker configurations #18

Merged
merged 6 commits into from
Jan 17, 2025
Merged

Update build scripts, CI workflow, and Docker configurations #18

merged 6 commits into from
Jan 17, 2025

Conversation

saschpe
Copy link
Owner

@saschpe saschpe commented Jan 17, 2025

Summary

This pull request includes several updates to improve the build process, CI workflow, and Docker configurations:

  • Added an optional --verbose flag to the build script for enhanced debugging by enabling detailed output during the Docker build process.
  • Switched to a non-root user in the Dockerfile to enhance security and reduce privilege escalation risks.
  • Set conditional provenance and SBOM generation in GitHub Actions, enabling these features selectively for non-pull-request events to optimize workflows.
  • Updated CMake version to 3.31.1 across project files, including CI workflows, Dockerfile, and README, ensuring alignment with the latest dependency requirements.
  • Updated NDK version to 27.2.12479018 in workflows and documentation, ensuring consistency with the latest supported version.
  • Upgraded JDK versions in the GitHub Actions workflow and Dockerfile documentation to the latest stable versions for better compatibility and

@saschpe
Update JDK versions in CI workflow and Dockerfile
66779a0 
Updated JDK versions in the GitHub Actions workflow matrix to the latest
stable builds. Also aligned the Dockerfile documentation with the
updated JDK and Android versions for consistency.
@saschpe
Update NDK version to 27.2.12479018 in workflows and docs
4e7768e 
Updated the NDK version in the CI workflow, Dockerfile, and README to
27.2.12479018 for consistency and alignment with the latest supported
version. This ensures compatibility and reflects the current setup
across the project.
@saschpe
Update CMake version to 3.31.1 across project files
c3ccf33 
Upgraded the CMake version from 3.22.1 to 3.31.1 in the CI workflow,
Dockerfile, and README documentation. This ensures consistency across
configurations and aligns with the latest dependency requirements.
@saschpe
GitHub Actions: Set conditional provenance and SBOM generation in CI
450879f 
Disabled provenance and SBOM generation for pull request events to
optimize the workflow. These features remain enabled for other event
types to ensure security and compliance.
@saschpe
Use non-root USER
a410d4a 
Switch to a non-root user in the Dockerfile to enhance container
security. This reduces the risk of privilege escalation and aligns with
best practices.
@saschpe
Add an optional --verbose flag to the build script
8c1edb7 
The `--verbose` flag allows more detailed output during the Docker build
process by setting progress to plain mode. This enhances debugging and
provides greater visibility into the build steps when needed. The
default behavior remains unchanged if the flag is not used.
@saschpe saschpe self-assigned this Jan 17, 2025
@saschpe saschpe merged commit 07334cb into main Jan 17, 2025
12 checks passed
@saschpe saschpe deleted the saschpe.non-root branch January 17, 2025 15:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@saschpe saschpe

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@saschpe