docker.io/semgrep/semgrep:latest linux/amd64

docker.io/semgrep/semgrep:latest - 国内下载镜像源 浏览次数:147

温馨提示:此镜像为latest tag镜像,本站无法保证此版本为最新镜像

semgrep 镜像描述

这是一个用于静态代码分析的 Docker 镜像,包含了 Semgrep 工具。Semgrep 是一款强大的命令行工具,能够检测各种编程语言的代码中的安全漏洞、bug 和编码风格问题。 使用这个镜像,你可以方便地在 Docker 容器中运行 Semgrep,对你的代码进行扫描和分析,而无需在本地安装任何依赖。

源镜像 docker.io/semgrep/semgrep:latest
国内镜像 swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest
镜像ID sha256:b5e3a557eea6fa1faa0c0e585f63785a724aad76f3c5fcf0bd596f4e93df7762
镜像TAG latest
大小 580.22MB
镜像源 docker.io
项目信息 Docker-Hub主页 🚀项目TAG 🚀
CMD semgrep --help
启动入口
工作目录 /src
OS/平台 linux/amd64
浏览量 147 次
贡献者
镜像创建 2024-12-12T22:46:26.368261769Z
同步时间 2024-12-18 16:35
更新时间 2025-05-30 21:23
环境变量
PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin LANG=C.UTF-8 GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D PYTHON_VERSION=3.11.11 PYTHON_SHA256=2a9920c7a0cd236de33644ed980a13cbbc21058bfdc528febb6081575ed73be3 PIP_DISABLE_PIP_VERSION_CHECK=true PIP_NO_CACHE_DIR=true PYTHONIOENCODING=utf8 PYTHONUNBUFFERED=1 SEMGREP_IN_DOCKER=1 SEMGREP_USER_AGENT_APPEND=Docker
镜像标签
support@semgrep.com: maintainer 2024-12-13T00:28:35.595Z: org.opencontainers.image.created Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.: org.opencontainers.image.description LGPL-2.1: org.opencontainers.image.licenses 2a5266de179ef4928bf8f67d0aebf39d0a3e0822: org.opencontainers.image.revision https://github.com/semgrep/semgrep: org.opencontainers.image.source semgrep: org.opencontainers.image.title https://github.com/semgrep/semgrep: org.opencontainers.image.url 1.100.0: org.opencontainers.image.version
镜像安全扫描 查看Trivy扫描报告

系统OS: alpine 3.21.0 扫描引擎: Trivy 扫描时间: 2024-12-18 16:36

低危漏洞:0 中危漏洞:2 高危漏洞:1 严重漏洞:0
docker.io/semgrep/semgrep:latest (alpine 3.21.0) (alpine) Python (python-pkg)
无权限下载?点我修复 生成Docker Run命令

Docker拉取命令 

docker pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest
docker tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest  docker.io/semgrep/semgrep:latest

Containerd拉取命令 

ctr images pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest
ctr images tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest  docker.io/semgrep/semgrep:latest

Shell快速替换命令 

sed -i 's#semgrep/semgrep:latest#swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest#' deployment.yaml

Ansible快速分发-Docker 

#ansible k8s -m shell -a 'docker pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest && docker tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest  docker.io/semgrep/semgrep:latest'

Ansible快速分发-Containerd 

#ansible k8s -m shell -a 'ctr images pull swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest && ctr images tag  swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest  docker.io/semgrep/semgrep:latest'

镜像构建历史 


# 2024-12-13 06:46:26  0.00B 执行命令并创建新的镜像层
RUN /bin/sh -c rm -rf /root/.semgrep # buildkit
                        
# 2024-12-13 06:46:26  229.09MB 执行命令并创建新的镜像层
RUN /bin/sh -c SEMGREP_APP_TOKEN=$(cat /run/secrets/SEMGREP_APP_TOKEN) semgrep install-semgrep-pro --debug # buildkit
                        
# 2024-12-13 06:46:18  0.00B 添加元数据标签
LABEL maintainer=support@semgrep.com
                        
# 2024-12-13 06:46:18  0.00B 设置默认要执行的命令
CMD ["semgrep" "--help"]
                        
# 2024-12-13 06:46:18  24.00B 执行命令并创建新的镜像层
RUN /bin/sh -c printf "[safe]\n	directory = /src"  > ~semgrep/.gitconfig && 	chown semgrep:semgrep ~semgrep/.gitconfig # buildkit
                        
# 2024-12-13 06:46:18  24.00B 执行命令并创建新的镜像层
RUN /bin/sh -c printf "[safe]\n	directory = /src"  > ~root/.gitconfig # buildkit
                        
# 2024-12-13 06:46:18  3.04KB 执行命令并创建新的镜像层
RUN /bin/sh -c adduser -D -u 1000 -h /home/semgrep semgrep     && chown semgrep /src # buildkit
                        
# 2024-12-13 06:46:18  0.00B 设置工作目录为/src
WORKDIR /src
                        
# 2024-12-13 06:46:17  0.00B 设置环境变量 SEMGREP_IN_DOCKER SEMGREP_USER_AGENT_APPEND
ENV SEMGREP_IN_DOCKER=1 SEMGREP_USER_AGENT_APPEND=Docker
                        
# 2024-12-13 06:46:17  17.33KB 复制新文件或目录到容器中
COPY Dockerfile /Dockerfile # buildkit
                        
# 2024-12-13 06:46:17  12.00B 执行命令并创建新的镜像层
RUN /bin/sh -c ln -s semgrep-core /usr/local/bin/osemgrep && rm -rf /pysemgrep # buildkit
                        
# 2024-12-13 06:46:17  132.50MB 复制新文件或目录到容器中
COPY /src/semgrep/_build/default/src/main/Main.exe /usr/local/bin/semgrep-core # buildkit
                        
# 2024-12-13 06:44:22  39.63MB 执行命令并创建新的镜像层
RUN /bin/sh -c apk add --no-cache --virtual=.build-deps build-base make &&     pip install /pysemgrep &&     apk del .build-deps # buildkit
                        
# 2024-12-13 06:44:06  19.66MB 执行命令并创建新的镜像层
RUN /bin/sh -c pip install --force-reinstall -v "pip==23.3.2" # buildkit
                        
# 2024-12-13 06:44:06  0.00B 设置环境变量 PIP_DISABLE_PIP_VERSION_CHECK PIP_NO_CACHE_DIR PYTHONIOENCODING PYTHONUNBUFFERED
ENV PIP_DISABLE_PIP_VERSION_CHECK=true PIP_NO_CACHE_DIR=true PYTHONIOENCODING=utf8 PYTHONUNBUFFERED=1
                        
# 2024-12-13 06:44:01  71.26MB 复制新文件或目录到容器中
COPY cli ./ # buildkit
                        
# 2024-12-10 17:31:21  34.32MB 执行命令并创建新的镜像层
RUN /bin/sh -c apk upgrade --no-cache &&     apk add --no-cache --virtual=.run-deps	git git-lfs openssh 	bash jq curl # buildkit
                        
# 2024-12-10 17:31:20  0.00B 设置工作目录为/pysemgrep
WORKDIR /pysemgrep
                        
# 2024-12-05 21:19:52  0.00B 设置默认要执行的命令
CMD ["python3"]
                        
# 2024-12-05 21:19:52  36.00B 执行命令并创建新的镜像层
RUN /bin/sh -c set -eux; 	for src in idle3 pip3 pydoc3 python3 python3-config; do 		dst="$(echo "$src" | tr -d 3)"; 		[ -s "/usr/local/bin/$src" ]; 		[ ! -e "/usr/local/bin/$dst" ]; 		ln -svT "$src" "/usr/local/bin/$dst"; 	done # buildkit
                        
# 2024-12-05 21:19:52  44.89MB 执行命令并创建新的镜像层
RUN /bin/sh -c set -eux; 		apk add --no-cache --virtual .build-deps 		gnupg 		tar 		xz 				bluez-dev 		bzip2-dev 		dpkg-dev dpkg 		findutils 		gcc 		gdbm-dev 		libc-dev 		libffi-dev 		libnsl-dev 		libtirpc-dev 		linux-headers 		make 		ncurses-dev 		openssl-dev 		pax-utils 		readline-dev 		sqlite-dev 		tcl-dev 		tk 		tk-dev 		util-linux-dev 		xz-dev 		zlib-dev 	; 		wget -O python.tar.xz "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz"; 	echo "$PYTHON_SHA256 *python.tar.xz" | sha256sum -c -; 	wget -O python.tar.xz.asc "https://www.python.org/ftp/python/${PYTHON_VERSION%%[a-z]*}/Python-$PYTHON_VERSION.tar.xz.asc"; 	GNUPGHOME="$(mktemp -d)"; export GNUPGHOME; 	gpg --batch --keyserver hkps://keys.openpgp.org --recv-keys "$GPG_KEY"; 	gpg --batch --verify python.tar.xz.asc python.tar.xz; 	gpgconf --kill all; 	rm -rf "$GNUPGHOME" python.tar.xz.asc; 	mkdir -p /usr/src/python; 	tar --extract --directory /usr/src/python --strip-components=1 --file python.tar.xz; 	rm python.tar.xz; 		cd /usr/src/python; 	gnuArch="$(dpkg-architecture --query DEB_BUILD_GNU_TYPE)"; 	./configure 		--build="$gnuArch" 		--enable-loadable-sqlite-extensions 		--enable-option-checking=fatal 		--enable-shared 		--with-lto 		--with-ensurepip 	; 	nproc="$(nproc)"; 	EXTRA_CFLAGS="-DTHREAD_STACK_SIZE=0x100000"; 	LDFLAGS="${LDFLAGS:--Wl},--strip-all"; 	make -j "$nproc" 		"EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" 		"LDFLAGS=${LDFLAGS:-}" 	; 	rm python; 	make -j "$nproc" 		"EXTRA_CFLAGS=${EXTRA_CFLAGS:-}" 		"LDFLAGS=${LDFLAGS:--Wl},-rpath='\$\$ORIGIN/../lib'" 		python 	; 	make install; 		cd /; 	rm -rf /usr/src/python; 		find /usr/local -depth 		\( 			\( -type d -a \( -name test -o -name tests -o -name idle_test \) \) 			-o \( -type f -a \( -name '*.pyc' -o -name '*.pyo' -o -name 'libpython*.a' \) \) 		\) -exec rm -rf '{}' + 	; 		find /usr/local -type f -executable -not \( -name '*tkinter*' \) -exec scanelf --needed --nobanner --format '%n#p' '{}' ';' 		| tr ',' '\n' 		| sort -u 		| awk 'system("[ -e /usr/local/lib/" $1 " ]") == 0 { next } { print "so:" $1 }' 		| xargs -rt apk add --no-network --virtual .python-rundeps 	; 	apk del --no-network .build-deps; 		export PYTHONDONTWRITEBYTECODE=1; 	python3 --version; 		pip3 install 		--disable-pip-version-check 		--no-cache-dir 		--no-compile 		'setuptools==65.5.1' 		wheel 	; 	pip3 --version # buildkit
                        
# 2024-12-05 21:19:52  0.00B 设置环境变量 PYTHON_SHA256
ENV PYTHON_SHA256=2a9920c7a0cd236de33644ed980a13cbbc21058bfdc528febb6081575ed73be3
                        
# 2024-12-05 21:19:52  0.00B 设置环境变量 PYTHON_VERSION
ENV PYTHON_VERSION=3.11.11
                        
# 2024-12-05 21:19:52  0.00B 设置环境变量 GPG_KEY
ENV GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D
                        
# 2024-12-05 21:19:52  1.01MB 执行命令并创建新的镜像层
RUN /bin/sh -c set -eux; 	apk add --no-cache 		ca-certificates 		tzdata 	; # buildkit
                        
# 2024-12-05 21:19:52  0.00B 设置环境变量 LANG
ENV LANG=C.UTF-8
                        
# 2024-12-05 21:19:52  0.00B 设置环境变量 PATH
ENV PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
                        
# 2024-12-05 20:49:04  0.00B 设置默认要执行的命令
CMD ["/bin/sh"]
                        
# 2024-12-05 20:49:04  7.84MB 复制文件或目录到容器中
ADD alpine-minirootfs-3.21.0-x86_64.tar.gz / # buildkit

镜像信息 

{
    "Id": "sha256:b5e3a557eea6fa1faa0c0e585f63785a724aad76f3c5fcf0bd596f4e93df7762",
    "RepoTags": [
        "semgrep/semgrep:latest",
        "swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep:latest"
    ],
    "RepoDigests": [
        "semgrep/semgrep@sha256:7acf76eaa621465588fdfcc84f46fd7ea1e8337ebb1aa1ed6f4685f6eedaec25",
        "swr.cn-north-4.myhuaweicloud.com/ddn-k8s/docker.io/semgrep/semgrep@sha256:87cb4f5352afa2d100ba4720ba3e651f4a6b24fdf194ea800328e6f77e41d7d2"
    ],
    "Parent": "",
    "Comment": "buildkit.dockerfile.v0",
    "Created": "2024-12-12T22:46:26.368261769Z",
    "Container": "",
    "ContainerConfig": null,
    "DockerVersion": "",
    "Author": "",
    "Config": {
        "Hostname": "",
        "Domainname": "",
        "User": "",
        "AttachStdin": false,
        "AttachStdout": false,
        "AttachStderr": false,
        "Tty": false,
        "OpenStdin": false,
        "StdinOnce": false,
        "Env": [
            "PATH=/usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
            "LANG=C.UTF-8",
            "GPG_KEY=A035C8C19219BA821ECEA86B64E628F8D684696D",
            "PYTHON_VERSION=3.11.11",
            "PYTHON_SHA256=2a9920c7a0cd236de33644ed980a13cbbc21058bfdc528febb6081575ed73be3",
            "PIP_DISABLE_PIP_VERSION_CHECK=true",
            "PIP_NO_CACHE_DIR=true",
            "PYTHONIOENCODING=utf8",
            "PYTHONUNBUFFERED=1",
            "SEMGREP_IN_DOCKER=1",
            "SEMGREP_USER_AGENT_APPEND=Docker"
        ],
        "Cmd": [
            "semgrep",
            "--help"
        ],
        "ArgsEscaped": true,
        "Image": "",
        "Volumes": null,
        "WorkingDir": "/src",
        "Entrypoint": null,
        "OnBuild": null,
        "Labels": {
            "maintainer": "support@semgrep.com",
            "org.opencontainers.image.created": "2024-12-13T00:28:35.595Z",
            "org.opencontainers.image.description": "Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.",
            "org.opencontainers.image.licenses": "LGPL-2.1",
            "org.opencontainers.image.revision": "2a5266de179ef4928bf8f67d0aebf39d0a3e0822",
            "org.opencontainers.image.source": "https://github.com/semgrep/semgrep",
            "org.opencontainers.image.title": "semgrep",
            "org.opencontainers.image.url": "https://github.com/semgrep/semgrep",
            "org.opencontainers.image.version": "1.100.0"
        }
    },
    "Architecture": "amd64",
    "Os": "linux",
    "Size": 580219837,
    "GraphDriver": {
        "Data": {
            "LowerDir": "/var/lib/docker/overlay2/ee3fcc2ef54ab4f448fbc28d0aab24946e2f9aa5acf50f637dee2fb9c54cfbe1/diff:/var/lib/docker/overlay2/a8a66722d83e7630f7de1d44bd7c51d6c0bc32a2b8b82bf3a69cf577fa6eeb2c/diff:/var/lib/docker/overlay2/0d94ee6ba7bc44e840410ab35ffcd5c3caf7b74d4da55013fdf5595acca41f4f/diff:/var/lib/docker/overlay2/e422b08a6efb2dbcae76795e8535bb31dff8ec6647c8cf6cf5ee26165fa949ab/diff:/var/lib/docker/overlay2/94b0bfcb491fa0d8721b614f9e2a2f75d66380c416860a5b3249303d8b5dc7e4/diff:/var/lib/docker/overlay2/238762bb4b21c12ba48ebbee43f767164c6a75627fe40fb9203f3a0120cb2ee2/diff:/var/lib/docker/overlay2/c80f36f7fc3a08d3ac9e82345ea212c2b09973b6e8a6a209bb707b5608764855/diff:/var/lib/docker/overlay2/cf4fc8029e0a3b2e920e167620b6431b8fc1c11822b484bcdef67496f3b0bda7/diff:/var/lib/docker/overlay2/1b34dcac130318bc58b1dbd5db0521214269358651b964d175448a72d6c388a6/diff:/var/lib/docker/overlay2/ebe031860683bdb62739d63f442b587ad84cb69ec8e076fb6b1518284ed38ae5/diff:/var/lib/docker/overlay2/3886480456c1e1b97937a93635700a84114a1a55c3744b4919b514a41577a639/diff:/var/lib/docker/overlay2/7636bf3ba7d9a1b5570cf6e7b191dee3549462a63d5e3479c78590f3dc6b94ff/diff:/var/lib/docker/overlay2/8824546843a73fa53a2528c26ccc3aeff506b498dbaf82a22eb5f0adfa7a8966/diff:/var/lib/docker/overlay2/e58ee48b877284395f0695b3507ce05240cc8269d16a699826529816fcadf99e/diff:/var/lib/docker/overlay2/47f71eb6744e36b3a844a3a2f862611fc9a11b7b1d9f314d9976ac0e7d46d368/diff:/var/lib/docker/overlay2/eddcf94c04891efda489894c75088521d9f21114e298491471d1f46c10d25209/diff:/var/lib/docker/overlay2/f07ea7cb47adf971ea839c1595bfec4091f695e5c89b7266542a721564307497/diff",
            "MergedDir": "/var/lib/docker/overlay2/4c441ff91b5af0857625652c40a63c98f17d7f10b8eb520d66d5f04d6110ef5d/merged",
            "UpperDir": "/var/lib/docker/overlay2/4c441ff91b5af0857625652c40a63c98f17d7f10b8eb520d66d5f04d6110ef5d/diff",
            "WorkDir": "/var/lib/docker/overlay2/4c441ff91b5af0857625652c40a63c98f17d7f10b8eb520d66d5f04d6110ef5d/work"
        },
        "Name": "overlay2"
    },
    "RootFS": {
        "Type": "layers",
        "Layers": [
            "sha256:3e01818d79cd3467f1d60e54224f3f6ce5170eceb54e265d96bb82344b8c24e7",
            "sha256:9e2113549f08859512fc429268c59e29146fd3d9df0d7d58ff58842cba3f8095",
            "sha256:96f5069deb9cbefa8236b015e277a3a3d45c2bae2facd9583de98632b6d9e089",
            "sha256:129191811763c5a78ed2323842f45091e5d312410c85668f23bf52dac6109cdc",
            "sha256:9581851a1f3c5c0cf42f78adc21370ef54b1cc7ba95db3b9f3a867d249caebaf",
            "sha256:ffd83bad1beaf99775affc9e66ea0244d2a9f5d4d70f833fc0708c142b4fd28c",
            "sha256:918aff26a8d3ece4f1d570c034a72001afb8a69d3100bc4e2571bede13899991",
            "sha256:b1395fa7e7311e5244b472dab19761c240092f41bb44696eafef2df4507b35dc",
            "sha256:fdf3e42432fcf75f703dba0f26571695b1cd53046e03410ac7c9e8c7f63524dd",
            "sha256:d7a856109616b06a2b947103833a92df5b309f96f2353b37face8972256a06ff",
            "sha256:890b3f028403f23f210cf1e29cff4a9e82aa6ac3d65fe6f5a58b4eaf5c11b1f8",
            "sha256:fc07fc3303f28e7e4547914962b32100f46854e8daee9e00c3839a244915019a",
            "sha256:4f6d5674e4c892ed62016ed1117f6c66ad703ffc0db66cca8e908dad3d3f111b",
            "sha256:5431e5995119291bd2aaa89858e7e76775e0d0c5ff9b17e4552038ce18110e08",
            "sha256:be3b76b8f44601538bbe50fe41719c4aeb656a7b995f3e244ed59287aaaa16c3",
            "sha256:6f35465195b066040736ca40d99743efb5741fa1bb51046e150edad484f85150",
            "sha256:9a0bae7e355d8980f54473524f9f38b9419391dd17ff9c51ab04a86d7feea75a",
            "sha256:cba99d64b3e12c148e3787bb00ef922f2e1dbb263b21c2063f758f66f81cea06"
        ]
    },
    "Metadata": {
        "LastTagTime": "2024-12-18T16:34:40.20017932+08:00"
    }
}

更多版本

docker.io/semgrep/semgrep:latest

linux/amd64 docker.io580.22MB2024-12-18 16:35
146