Add isolated-build element
To be used for Koji/Brew builds.
This commit is contained in:
parent
06c0c647cf
commit
4ca6619a44
|
@ -0,0 +1,13 @@
|
|||
Build images isolated from any external sources of software.
|
||||
|
||||
This is necessary for doing builds in things like Koji and Brew,
|
||||
where only installation sources known to the build system are
|
||||
allowed. This element enables that by removing/blacklisting
|
||||
Git and Pip and disabling source repositories.
|
||||
|
||||
Note that this method is not perfect - it's still possible for
|
||||
Git or Pip to be pulled in as a dependency of another package,
|
||||
but since currently this requirement is on a best-effort basis
|
||||
this is our best effort to meet it. At some point this will be
|
||||
enforced by the build system itself and we won't be responsible
|
||||
for ensuring compliance.
|
|
@ -0,0 +1 @@
|
|||
export NO_SOURCE_REPOSITORIES=1
|
|
@ -0,0 +1,10 @@
|
|||
#!/bin/bash
|
||||
|
||||
set -eu
|
||||
set -o pipefail
|
||||
|
||||
echo git >> /tmp/yum-blacklist
|
||||
echo python-pip >> /tmp/yum-blacklist
|
||||
echo python-virtualenv >> /tmp/yum-blacklist
|
||||
|
||||
yum -y erase git python-pip python-virtualenv
|
Loading…
Reference in New Issue