UNPKG

snyk-docker-plugin

Version:

Snyk CLI docker plugin

github.com/snyk/snyk-docker-plugin

snyk/snyk-docker-plugin

115 lines (99 loc) 2.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
import { DockerPull, DockerPullOptions, DockerPullResult, } from "@snyk/snyk-docker-pull"; import * as Debug from "debug"; import * as Modem from "docker-modem"; import { createWriteStream } from "fs"; import { Stream } from "stream"; import * as subProcess from "./sub-process"; export { Docker, DockerOptions }; interface DockerOptions { host?: string; tlsVerify?: string; tlsCert?: string; tlsCaCert?: string; tlsKey?: string; socketPath?: string; platform?: string; } const debug = Debug("snyk"); class Docker { public static async binaryExists(): Promise<boolean> { try { await subProcess.execute("docker", ["version"]); return true; } catch (e) { return false; } } public async pull( registry: string, repo: string, tag: string, imageSavePath: string, username?: string, password?: string, ): Promise<DockerPullResult> { const dockerPull = new DockerPull(); const opt: DockerPullOptions = { username, password, loadImage: false, imageSavePath, }; return await dockerPull.pull(registry, repo, tag, opt); } public async pullCli( targetImage: string, options?: DockerOptions, ): Promise<subProcess.CmdOutput> { const opts: string[] = ["pull", targetImage]; if (options?.platform) { opts.push(`--platform=${options.platform}`); } return subProcess.execute("docker", opts); } public async save(targetImage: string, destination: string) { const request = { path: `/images/${targetImage}/get?`, method: "GET", isStream: true, statusCodes: { 200: true, 400: "bad request", 404: "not found", 500: "server error", }, }; debug( `Docker.save: targetImage: ${targetImage}, destination: ${destination}`, ); const modem = new Modem(); return new Promise<void>((resolve, reject) => { modem.dial(request, (err, stream: Stream) => { if (err) { return reject(err); } const writeStream = createWriteStream(destination); writeStream.on("error", (err) => { reject(err); }); writeStream.on("finish", () => { resolve(); }); stream.on("error", (err) => { reject(err); }); stream.on("end", () => { writeStream.end(); }); stream.pipe(writeStream); }); }); } public async inspectImage(targetImage: string) { return subProcess.execute("docker", ["inspect", targetImage]); } }