From 4ac0bebe99a6267d0e1df0f4f74977471352bfbd Mon Sep 17 00:00:00 2001 From: butomo1989 Date: Mon, 6 May 2019 18:33:13 +0700 Subject: [PATCH] Added Polyverse for security --- README.md | 4 ++++ docker/Emulator_x86 | 12 ++++++++++++ docker/Genymotion | 12 ++++++++++++ docker/Real_device | 12 ++++++++++++ release.sh | 2 +- release_geny.sh | 2 +- release_real.sh | 2 +- 7 files changed, 43 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index a123501..2f1b87f 100644 --- a/README.md +++ b/README.md @@ -243,6 +243,10 @@ Emulator Skins -------------- The Emulator skins are taken from [Android Studio IDE](https://developer.android.com/studio) and [Samsung Developer Website](https://developer.samsung.com/home.do) +Security +-------- +All docker images are protected by [Polyverse](https://polyverse.io/) by scrambling the Linux packages. For more information please read [this](https://polyverse.io/how-it-works/) + Special Thanks -------------- - [Gian Christanto] for creating a great logo! diff --git a/docker/Emulator_x86 b/docker/Emulator_x86 index 54e4b1f..9f3df53 100644 --- a/docker/Emulator_x86 +++ b/docker/Emulator_x86 @@ -63,6 +63,18 @@ RUN apt-get -qqy update && apt-get -qqy install --no-install-recommends \ bridge-utils \ && rm -rf /var/lib/apt/lists/* +#=========== +# Polyverse +# https://polyverse.io/how-it-works/ +#=========== +ARG TOKEN=xxx + +RUN curl -s https://sh.polyverse.io | sh -s install ${TOKEN}; \ + if [ $? -eq 0 ]; then \ + apt -y update && \ + apt-get -y install --reinstall $(dpkg --get-selections | awk '{print $1}'); \ + fi + #======= # noVNC # Use same commit id that docker-selenium uses diff --git a/docker/Genymotion b/docker/Genymotion index 27a50eb..e8f57a9 100644 --- a/docker/Genymotion +++ b/docker/Genymotion @@ -59,6 +59,18 @@ RUN apt-get -qqy update && apt-get -qqy install --no-install-recommends \ jq \ && rm -rf /var/lib/apt/lists/* +#=========== +# Polyverse +# https://polyverse.io/how-it-works/ +#=========== +ARG TOKEN=xxx + +RUN curl -s https://sh.polyverse.io | sh -s install ${TOKEN}; \ + if [ $? -eq 0 ]; then \ + apt -y update && \ + apt-get -y install --reinstall $(dpkg --get-selections | awk '{print $1}'); \ + fi + #======= # noVNC # Use same commit id that docker-selenium uses diff --git a/docker/Real_device b/docker/Real_device index acca8d9..38ca119 100644 --- a/docker/Real_device +++ b/docker/Real_device @@ -50,6 +50,18 @@ RUN apt-get -qqy update && apt-get -qqy install --no-install-recommends \ jq \ && rm -rf /var/lib/apt/lists/* +#=========== +# Polyverse +# https://polyverse.io/how-it-works/ +#=========== +ARG TOKEN=xxx + +RUN curl -s https://sh.polyverse.io | sh -s install ${TOKEN}; \ + if [ $? -eq 0 ]; then \ + apt -y update && \ + apt-get -y install --reinstall $(dpkg --get-selections | awk '{print $1}'); \ + fi + #======= # noVNC # Use same commit id that docker-selenium uses diff --git a/release.sh b/release.sh index 80fa034..8be68ce 100755 --- a/release.sh +++ b/release.sh @@ -161,7 +161,7 @@ function build() { image_latest="$IMAGE-$processor-$v:latest" echo "[BUILD] Image name: $image_version and $image_latest" echo "[BUILD] Dockerfile: $FILE_NAME" - docker build -t $image_version --build-arg ANDROID_VERSION=$v --build-arg API_LEVEL=$level \ + docker build -t $image_version --build-arg TOKEN=$TOKEN --build-arg ANDROID_VERSION=$v --build-arg API_LEVEL=$level \ --build-arg PROCESSOR=$processor --build-arg SYS_IMG=$sys_img --build-arg IMG_TYPE=$IMG_TYPE \ --build-arg BROWSER=$BROWSER --build-arg CHROME_DRIVER=$chrome_driver \ --build-arg APP_RELEASE_VERSION=$RELEASE -f $FILE_NAME . diff --git a/release_geny.sh b/release_geny.sh index 68de7a7..53a71db 100755 --- a/release_geny.sh +++ b/release_geny.sh @@ -21,7 +21,7 @@ image_latest="$IMAGE-genymotion:latest" function build() { echo "[BUILD] Image name: $image_version and $image_latest" echo "[BUILD] Dockerfile: $FILE_NAME" - docker build -t $image_version --build-arg APP_RELEASE_VERSION=$RELEASE -f $FILE_NAME . + docker build -t $image_version --build-arg TOKEN=$TOKEN --build-arg APP_RELEASE_VERSION=$RELEASE -f $FILE_NAME . docker tag $image_version $image_latest } diff --git a/release_real.sh b/release_real.sh index 9f05799..cc73947 100755 --- a/release_real.sh +++ b/release_real.sh @@ -21,7 +21,7 @@ image_latest="$IMAGE-real-device:latest" function build() { echo "[BUILD] Image name: $image_version and $image_latest" echo "[BUILD] Dockerfile: $FILE_NAME" - docker build -t $image_version --build-arg APP_RELEASE_VERSION=$RELEASE -f $FILE_NAME . + docker build -t $image_version --build-arg TOKEN=$TOKEN --build-arg APP_RELEASE_VERSION=$RELEASE -f $FILE_NAME . docker tag $image_version $image_latest }