actions/docker-build-push-action
1
0
Fork 0
mirror of https://github.com/docker/build-push-action.git synced 2026-06-13 18:20:06 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: use lockfile-aware install commands

Browse Source
This commit is contained in:
securityeng-bot[bot] 2026-06-12 14:59:41 +00:00 committed by GitHub
parent d2aace88c2
commit c2245a368f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
dev.Dockerfile
View File

@ -17,7 +17,7 @@ FROM base AS deps
RUN --mount=type=bind,target=.,rw \ RUN --mount=type=bind,target=.,rw \
--mount=type=cache,target=/src/.yarn/cache \ --mount=type=cache,target=/src/.yarn/cache \
--mount=type=cache,target=/src/node_modules \ --mount=type=cache,target=/src/node_modules \
yarn install && mkdir /vendor && cp yarn.lock /vendor yarn install --immutable && mkdir /vendor && cp yarn.lock /vendor
FROM scratch AS vendor-update FROM scratch AS vendor-update
COPY --from=deps /vendor / COPY --from=deps /vendor /