Closed cirocosta closed 5 years ago
BOM collector
1. `apt` packages that have been installed
- parses `/var/lib/dpk/status`
2. `apt-cache policy $pkg` parser
- to determine where package came from
in the end:
-- ability to retrieve a file from a given layer that has been built
=> implement a filter to the `local` exporter
https://github.com/moby/buildkit/search?q=file+exporter&type=Issues
apt install --print-uris vim | grep 'http' | tr -d "'" | awk '{print$1}' > uris wget -i uris dpkg -i *.deb
dpkg-deb -I ./vim_8.0.1453-1ubuntu1.1_amd64.deb control
Hey,
In order to retrieve the repository that brought a particular package, we need to run
apt-cache policy $pkg_name
and parse the outputs of it.That, however, needs to run from within a container within the buildstep. To prepare the
bom.yml
then, we'd need to get access to the output of such execution, which seems to be only available throughmount
s 🤔