From aa1cdcfe765839fbe1ffd1c2455e785b6d705f2da2a713975d985fec61a6cd7c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dan=20=C4=8Cerm=C3=A1k?= <dcermak@suse.com>
Date: Tue, 28 Jan 2025 18:33:34 +0000
Subject: [PATCH] [info=b4f7d43ebf0852218c2924274b39a7f860d700d8]

OBS-URL: https://build.opensuse.org/package/show/devel:BCI:Tumbleweed/trivy-image?expand=0&rev=183
---
 .gitattributes      |  23 ++++++++++
 .gitignore          |   1 +
 README.md           |  14 ++++++
 _scmsync.obsinfo    |   5 ++
 _service            |  10 ++++
 config.sh           |  30 ++++++++++++
 trivy-image.changes | 109 ++++++++++++++++++++++++++++++++++++++++++++
 trivy-image.kiwi    |  66 +++++++++++++++++++++++++++
 8 files changed, 258 insertions(+)
 create mode 100644 .gitattributes
 create mode 100644 .gitignore
 create mode 100644 README.md
 create mode 100644 _scmsync.obsinfo
 create mode 100644 _service
 create mode 100644 config.sh
 create mode 100644 trivy-image.changes
 create mode 100644 trivy-image.kiwi

diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 0000000..9b03811
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,23 @@
+## Default LFS
+*.7z filter=lfs diff=lfs merge=lfs -text
+*.bsp filter=lfs diff=lfs merge=lfs -text
+*.bz2 filter=lfs diff=lfs merge=lfs -text
+*.gem filter=lfs diff=lfs merge=lfs -text
+*.gz filter=lfs diff=lfs merge=lfs -text
+*.jar filter=lfs diff=lfs merge=lfs -text
+*.lz filter=lfs diff=lfs merge=lfs -text
+*.lzma filter=lfs diff=lfs merge=lfs -text
+*.obscpio filter=lfs diff=lfs merge=lfs -text
+*.oxt filter=lfs diff=lfs merge=lfs -text
+*.pdf filter=lfs diff=lfs merge=lfs -text
+*.png filter=lfs diff=lfs merge=lfs -text
+*.rpm filter=lfs diff=lfs merge=lfs -text
+*.tbz filter=lfs diff=lfs merge=lfs -text
+*.tbz2 filter=lfs diff=lfs merge=lfs -text
+*.tgz filter=lfs diff=lfs merge=lfs -text
+*.ttf filter=lfs diff=lfs merge=lfs -text
+*.txz filter=lfs diff=lfs merge=lfs -text
+*.whl filter=lfs diff=lfs merge=lfs -text
+*.xz filter=lfs diff=lfs merge=lfs -text
+*.zip filter=lfs diff=lfs merge=lfs -text
+*.zst filter=lfs diff=lfs merge=lfs -text
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..57affb6
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+.osc
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..5d45648
--- /dev/null
+++ b/README.md
@@ -0,0 +1,14 @@
+# The openSUSE Tumbleweed Container Vulnerability Scanner container image
+![Redistributable](https://img.shields.io/badge/Redistributable-Yes-green)
+
+Container Vulnerability Scanner container based on the openSUSE Tumbleweed Base Container Image.
+
+## Licensing
+
+`SPDX-License-Identifier: Apache-2.0`
+
+This documentation and the build recipe are licensed as Apache-2.0.
+The container itself contains various software components under various open source licenses listed in the associated
+Software Bill of Materials (SBOM).
+
+This image is based on [openSUSE Tumbleweed](https://get.opensuse.org/tumbleweed/).
diff --git a/_scmsync.obsinfo b/_scmsync.obsinfo
new file mode 100644
index 0000000..7e0b0ea
--- /dev/null
+++ b/_scmsync.obsinfo
@@ -0,0 +1,5 @@
+mtime: 1735740828
+commit: 8720cff6b7dc48da6eab529ec066581a09603659
+url: https://github.com/SUSE/bci-dockerfile-generator
+revision: Tumbleweed
+subdir: trivy-image
diff --git a/_service b/_service
new file mode 100644
index 0000000..36d836f
--- /dev/null
+++ b/_service
@@ -0,0 +1,10 @@
+<services>
+  <service mode="buildtime" name="kiwi_label_helper"/>
+  <service mode="buildtime" name="kiwi_metainfo_helper"/>
+  <service mode="buildtime" name="replace_using_package_version">
+    <param name="file">trivy-image.kiwi</param>
+    <param name="regex">%%trivy_version%%</param>
+    <param name="package">trivy</param>
+    <param name="parse-version">minor</param>
+  </service>
+</services>
\ No newline at end of file
diff --git a/config.sh b/config.sh
new file mode 100644
index 0000000..6d14425
--- /dev/null
+++ b/config.sh
@@ -0,0 +1,30 @@
+#!/bin/bash
+# SPDX-License-Identifier: MIT
+# SPDX-FileCopyrightText: (c) 2022-2025 SUSE LLC
+
+set -euo pipefail
+
+test -f /.kconfig && . /.kconfig
+test -f /.profile && . /.profile
+
+echo "Configure image: [$kiwi_iname]..."
+
+#============================================
+# Import repositories' keys if rpm is present
+#--------------------------------------------
+if command -v rpm > /dev/null; then
+    suseImportBuildKey
+fi
+
+
+
+#=======================================
+# Clean up after zypper if it is present
+#---------------------------------------
+if command -v zypper > /dev/null; then
+    zypper -n clean
+fi
+
+rm -rf {/target,}/var/log/{alternatives.log,lastlog,tallylog,zypper.log,zypp/history,YaST2}
+
+exit 0
diff --git a/trivy-image.changes b/trivy-image.changes
new file mode 100644
index 0000000..8007c76
--- /dev/null
+++ b/trivy-image.changes
@@ -0,0 +1,109 @@
+-------------------------------------------------------------------
+Wed Jan  1 14:13:48 UTC 2025 - SUSE Update Bot <bci-internal@suse.de>
+
+- update copyright year
+
+-------------------------------------------------------------------
+Tue Dec  3 13:26:37 UTC 2024 - SUSE Update Bot <bci-internal@suse.de>
+
+- Change attribute order in _service
+
+-------------------------------------------------------------------
+Wed Oct 30 15:34:45 UTC 2024 - SUSE Update Bot <bci-internal@suse.de>
+
+- remove nonsensical org.opencontainers.image.authors - duplication of .vendor
+
+-------------------------------------------------------------------
+Fri Oct 11 15:12:52 UTC 2024 - SUSE Update Bot <bci-internal@suse.de>
+
+- make the tag with -%RELEASE% the first tag listed
+
+-------------------------------------------------------------------
+Wed Sep 25 17:12:11 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- improved log cleaning
+
+-------------------------------------------------------------------
+Fri Sep 13 09:56:19 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- Remove trailing whitespace
+
+-------------------------------------------------------------------
+Thu Aug  8 19:28:10 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- add oci.image.ref.name
+
+-------------------------------------------------------------------
+Thu Aug  8 16:43:43 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- remove oci reference annotation again
+
+-------------------------------------------------------------------
+Mon Aug  5 11:38:13 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- add OCI reference annotation
+
+-------------------------------------------------------------------
+Sat Aug  3 08:56:51 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- set OCI.authors attribute instead of deprecated MAINTAINER
+
+-------------------------------------------------------------------
+Wed Jul 31 12:06:45 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- set specific lifecycle url for openSUSE BCI
+
+-------------------------------------------------------------------
+Tue Jul 16 15:20:06 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- Re-render templates (no functional change)
+
+-------------------------------------------------------------------
+Tue Jun 18 17:24:16 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- use sentence style capitalization in READMEs
+
+-------------------------------------------------------------------
+Mon Jun 10 15:11:25 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- update README; reduce unnecessary newlines
+
+-------------------------------------------------------------------
+Wed Jun  5 15:13:27 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- Don't add artifacthub labels into labelprefix section
+
+-------------------------------------------------------------------
+Tue Jun  4 12:35:15 UTC 2024 - Alexandre Vicenzi <alexandre.vicenzi@suse.com>
+
+- Fix grammar mistake in licensing footer
+
+-------------------------------------------------------------------
+Tue May  7 19:07:24 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- extend READMEs; correct eula for application images
+
+-------------------------------------------------------------------
+Fri Apr 19 10:31:30 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- Bump kiwi schema version
+
+-------------------------------------------------------------------
+Fri Apr 12 12:03:53 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- Don't wipe everything in /var/log, only remove log files (this omits directories owned by packages)
+
+-------------------------------------------------------------------
+Wed Jan 17 14:29:14 UTC 2024 - Dan Čermák <dcermak@suse.com>
+
+- Add initial README stub
+
+-------------------------------------------------------------------
+Tue Jan  2 08:26:58 UTC 2024 - Dirk Mueller <dmueller@suse.com>
+
+- update year to 2024
+
+-------------------------------------------------------------------
+Fri Dec 15 09:19:45 UTC 2023 - SUSE Update Bot <bci-internal@suse.de>
+
+- First version of the Container Vulnerability Scanner BCI
diff --git a/trivy-image.kiwi b/trivy-image.kiwi
new file mode 100644
index 0000000..d6efbc3
--- /dev/null
+++ b/trivy-image.kiwi
@@ -0,0 +1,66 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- SPDX-License-Identifier: Apache-2.0 -->
+<!--
+    Copyright (c) 2025 SUSE LLC
+
+All modifications and additions to the file contributed by third parties
+remain the property of their copyright owners, unless otherwise agreed
+upon.
+
+The content of THIS FILE IS AUTOGENERATED and should not be manually modified.
+It is maintained by the BCI team and generated by
+https://github.com/SUSE/BCI-dockerfile-generator
+
+Please submit bugfixes or comments via https://bugs.opensuse.org/
+You can contact the BCI team via https://github.com/SUSE/bci/discussions
+-->
+<!-- OBS-AddTag: opensuse/trivy:%%trivy_version%%-%RELEASE% opensuse/trivy:%%trivy_version%% opensuse/trivy:latest -->
+<!-- OBS-Imagerepo: obsrepositories:/ -->
+
+<image schemaversion="7.4" name="trivy-image" xmlns:suse_label_helper="com.suse.label_helper">
+  <description type="system">
+    <author>openSUSE Project</author>
+    <contact>https://www.suse.com/</contact>
+    <specification>openSUSE Tumbleweed Container Vulnerability Scanner Container Image</specification>
+  </description>
+  <preferences>
+    <type image="docker" derived_from="obsrepositories:/opensuse/bci/bci-micro#latest">
+      <containerconfig
+          name="opensuse/trivy"
+          tag="%%trivy_version%%-%RELEASE%"
+          additionaltags="%%trivy_version%%,latest">
+        <labels>
+          <suse_label_helper:add_prefix prefix="org.opensuse.application.trivy">
+            <label name="org.opencontainers.image.title" value="openSUSE Tumbleweed Container Vulnerability Scanner"/>
+            <label name="org.opencontainers.image.description" value="Container Vulnerability Scanner container based on the openSUSE Tumbleweed Base Container Image."/>
+            <label name="org.opencontainers.image.version" value="%%trivy_version%%"/>
+            <label name="org.opencontainers.image.created" value="%BUILDTIME%"/>
+            <label name="org.opencontainers.image.vendor" value="openSUSE Project"/>
+            <label name="org.opencontainers.image.source" value="%SOURCEURL%"/>
+            <label name="org.opencontainers.image.url" value="https://www.opensuse.org"/>
+            <label name="org.opencontainers.image.ref.name" value="%%trivy_version%%-%RELEASE%"/>
+            <label name="org.opensuse.reference" value="registry.opensuse.org/opensuse/trivy:%%trivy_version%%-%RELEASE%"/>
+            <label name="org.openbuildservice.disturl" value="%DISTURL%"/>
+            <label name="org.opensuse.release-stage" value="released"/>
+            <label name="org.opensuse.lifecycle-url" value="https://en.opensuse.org/Lifetime#openSUSE_BCI"/>
+          </suse_label_helper:add_prefix>
+          <label name="io.artifacthub.package.readme-url" value="https://raw.githubusercontent.com/SUSE/BCI-dockerfile-generator/Tumbleweed/trivy-image/README.md"/>
+        </labels>
+        <subcommand execute="help"/>
+        <entrypoint execute="/usr/bin/trivy"/>
+      </containerconfig>
+    </type>
+    <version>2025</version>
+    <packagemanager>zypper</packagemanager>
+    <rpm-check-signatures>false</rpm-check-signatures>
+    <rpm-excludedocs>true</rpm-excludedocs>
+  </preferences>
+  <repository type="rpm-md">
+    <source path="obsrepositories:/"/>
+  </repository>
+  <packages type="bootstrap">
+    <package name="ca-certificates-mozilla"/>
+    <package name="trivy"/>
+  </packages>
+
+</image>
\ No newline at end of file