Merge pull request 'Update dependency undici to v8' (#4) from renovate/undici-8.x into main

Reviewed-on: #4

.gitignore

@@ -18,3 +18,4 @@ bin-release/
 # should NOT be excluded as they contain compiler settings and other important
 # information for Eclipse / Flash Builder.
 
+node_modules

docker-scout/action.yml

@@ -0,0 +1,33 @@
+# https://help.github.com/en/articles/metadata-syntax-for-github-actions
+name: 'Docker scout'
+description: 'Check vulnerabilities'
+
+inputs:
+  command:
+    description: 'actions to be performed'
+    default: 'cves'
+    required: true
+  version:
+    description: 'Docker scout version'
+    default: 'latest'
+    required: true
+  format:
+    description: 'Output format'
+    default: 'packages'
+    required: true
+  image:
+    description: 'Name of the image'
+    required: true
+  output-file:
+    description: 'whether the program outputs a file at all'
+    default: false
+    required: false
+
+outputs:
+  result-file:
+    description: 'File output result'
+    value: ${{ steps.run.outputs.result-file }}
+
+runs:
+  using: node20
+  main: dist/index.js

docker-scout/package.json

@@ -0,0 +1,17 @@
+{
+  "name": "docker-scout",
+  "version": "1.0.0",
+  "description": "",
+  "main": "index.js",
+  "dependencies": {
+    "tunnel": "^0.0.6",
+    "undici": "^8.0.0"
+  },
+  "devDependencies": {},
+  "scripts": {
+    "test": "node dist/index.js"
+  },
+  "keywords": [],
+  "author": "",
+  "license": "ISC"
+}

docker-scout/src/index.js

@@ -0,0 +1,102 @@
+const fs = require('fs');
+const os = require('os');
+const core = require('@actions/core');
+const exec = require('@actions/exec');
+const path = require('path');
+
+async function pullDockerImage(version) {
+    await core.group(`Pull docker/scout-cli image`, async () => {
+        await exec.exec(`docker pull docker.io/docker/scout-cli:${version}`);
+    });
+}
+
+async function copyBinary(version) {
+    await core.group(`Copy binary`, async () => {
+        const res = await exec.getExecOutput('docker', ['create', `docker.io/docker/scout-cli:${version}`], {
+        ignoreReturnCode: true
+        });
+        if (res.stderr.length > 0 && res.exitCode != 0) {
+        throw new Error(res.stderr);
+        }
+        const ctnid = res.stdout.trim();
+        const dockerCfgPath = process.env.DOCKER_CONFIG || path.join(os.homedir(), '.docker');
+        const pluginsPath = path.join(dockerCfgPath, 'cli-plugins');
+        fs.mkdirSync(pluginsPath, { recursive: true });
+        await exec.exec(`docker cp ${ctnid}:/docker-scout ${pluginsPath}`);
+        await exec.exec(`docker rm -v ${ctnid}`);
+    });
+}
+
+async function dockerInfo() {
+    await core.group(`Docker info`, async () => {
+        await exec.exec(`docker info`);
+    });
+}
+
+/*
+async function getScoutVersion() {
+    let version;
+    await core.group(`Docker scout version`, async () => {
+        const res = await exec.getExecOutput('docker', ['scout', 'version'], {
+        ignoreReturnCode: true,
+        silent: true
+        });
+        if (res.stderr.length > 0 && res.exitCode != 0) {
+        throw new Error(res.stderr);
+        }
+        const matchVersion = res.stdout.trim().match(/version:\s(.*?)\s/);
+        version = matchVersion ? matchVersion[1] : null;
+        if (!version) {
+        throw new Error('Failed to get Docker scout version');
+        }
+        core.info(version);
+    });
+    return version;
+}
+*/
+
+async function runScoutCommand(commands, image, format, outputFile) {
+    const resultPath = path.join(fs.mkdtempSync(path.join(os.tmpdir(), 'docker-scout-action-')), 'result.txt');
+    core.setOutput('result-file', resultPath);
+
+    for (const cmd of commands) {
+        const args = ['scout', cmd, image];
+        if (cmd == 'cves') {
+            args.push('--format', format);
+        }
+
+        if (outputFile) {
+            const res = await exec.getExecOutput('docker', args, { silent: true });
+            if (res.stderr && res.stderr.length > 0) {
+                throw new Error(res.stderr);
+            }
+            fs.appendFile(resultPath, res.stdout);
+        } else {
+            await exec.exec('docker', args);
+        }
+    }
+    return resultPath;
+}
+
+async function main(inputs) {
+    try {
+        const commandInput = core.getInput('command');
+        const commands = commandInput.split(',').map(cmd => cmd.trim()).filter(cmd => cmd.length > 0);
+        const scoutVersion = core.getInput('version');
+        const outputFormat = core.getInput('format');
+        const imageName = core.getInput('image');
+        const outputFile = core.getInput('output-file') === 'true';
+
+        await pullDockerImage(scoutVersion);
+        await copyBinary(scoutVersion);
+        await dockerInfo();
+        //const version = await getScoutVersion();
+        // TODO: cache binary (no changes per your request)
+        await runScoutCommand(commands, imageName, outputFormat, outputFile);
+    }
+    catch (error) {
+        core.setFailed(error.message);
+        console.error(error);
+    }
+}
+main()

renovate.json

@@ -0,0 +1,3 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json"
+}