mirror of
https://github.com/agherzan/meta-raspberrypi.git
synced 2025-12-06 06:19:11 +00:00
.github/workflows: seccomp=unconfined
Run docker without the default seccomp profile Suggested-by: Martin Steegmanns <martin.steegmanns@govcert.etat.lu> Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
This commit is contained in:
Leon Anavi
Khem Raj
1
.github/workflows/compliance.yml
vendored
1
.github/workflows/compliance.yml
vendored
@@ -24,6 +24,7 @@ jobs:
|
|||||||
- name: Do DCO check
|
- name: Do DCO check
|
||||||
run: |
|
run: |
|
||||||
docker run --rm --security-opt apparmor=unconfined \
|
docker run --rm --security-opt apparmor=unconfined \
|
||||||
|
--security-opt seccomp=unconfined \
|
||||||
-v "$GITHUB_WORKSPACE:/work:ro" \
|
-v "$GITHUB_WORKSPACE:/work:ro" \
|
||||||
--env "BASE_REF=$GITHUB_BASE_REF" \
|
--env "BASE_REF=$GITHUB_BASE_REF" \
|
||||||
"dco-check-${{ github.event.number }}"
|
"dco-check-${{ github.event.number }}"
|
||||||
|
|||||||
1
.github/workflows/yocto-builds.yml
vendored
1
.github/workflows/yocto-builds.yml
vendored
@@ -67,6 +67,7 @@ jobs:
|
|||||||
- name: Build the image
|
- name: Build the image
|
||||||
run: |
|
run: |
|
||||||
docker run --rm --security-opt apparmor=unconfined \
|
docker run --rm --security-opt apparmor=unconfined \
|
||||||
|
--security-opt seccomp=unconfined \
|
||||||
-v "$GITHUB_WORKSPACE:/work:ro" \
|
-v "$GITHUB_WORKSPACE:/work:ro" \
|
||||||
-v "$DL_DIR:$DL_DIR:rw" \
|
-v "$DL_DIR:$DL_DIR:rw" \
|
||||||
-v "$SSTATE_DIR:$SSTATE_DIR:rw" \
|
-v "$SSTATE_DIR:$SSTATE_DIR:rw" \
|
||||||
|
|||||||
Reference in New Issue
Block a user