Skip to content

feat: Aggregated docker with MFDs#1

Merged
abaczek merged 2 commits intomainfrom
initial
Jul 11, 2025
Merged

feat: Aggregated docker with MFDs#1
abaczek merged 2 commits intomainfrom
initial

Conversation

@adrianlasota
Copy link
Contributor

@adrianlasota adrianlasota commented Jul 11, 2025

This pull request introduces two major changes: the addition of a CodeQL workflow for advanced code scanning and the creation of a new Dockerfile for building a Python-based container with pre-installed tools and libraries.

Code Scanning Enhancements:

  • .github/workflows/codeql.yml: Added a CodeQL workflow to enable advanced code scanning for security and quality analysis. This workflow supports multiple languages, including Python and Actions, and provides options for customizing build modes and queries.

Docker Container Setup:

  • Dockerfile: Created a new Dockerfile based on python:3.13-slim. It installs various Python libraries and tools (e.g., pytest, mfd-* packages) and sets up a non-root user (appuser) with /bin/bash as the default command.

@adrianlasota adrianlasota requested a review from Copilot July 11, 2025 15:15
@github-advanced-security
Copy link

github-advanced-security bot commented Jul 11, 2025

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

Copilot AI reviewed Jul 11, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds an advanced CodeQL scanning workflow and introduces a Dockerfile that builds a Python-based container preloaded with pytest and numerous mfd-* tools under a non-root user.

  • Integrates a GitHub Actions CodeQL workflow (.github/workflows/codeql.yml) supporting Python and Actions languages.
  • Creates a Dockerfile based on python:3.13-slim to install mfd-* packages and configures a non-root appuser with /bin/bash as the entrypoint.

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.

File Description
Dockerfile New container setup, installs mfd-* tools and pytest, creates non-root user
.github/workflows/codeql.yml Adds CodeQL workflow for security and quality analysis
Comments suppressed due to low confidence (1)

Dockerfile:4

  • Since pip install runs as root before switching to appuser, ensure installed files have correct permissions or switch to the non-root user before installing to avoid permission issues.
RUN useradd --create-home appuser

adrianlasota and others added 2 commits July 11, 2025 18:04
@adrianlasota @abaczek
feat: Aggregated docker with MFDs
f1ffe01 
Signed-off-by: Lasota, Adrian <adrian.lasota@intel.com>
@abaczek
docs: Create README.md
f6431b6 
Signed-off-by: Baczek, Arkadiusz <arkadiusz.baczek@intel.com>
@abaczek abaczek merged commit e83a662 into main Jul 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@hcymerys hcymerys hcymerys approved these changes

@abaczek abaczek abaczek approved these changes

@mchromin mchromin mchromin approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@adrianlasota @hcymerys @abaczek @mchromin