WuYanBo
/
CodeReview
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: Use direct Python base image in sandbox Dockerfile.

This commit is contained in:
vinland100 2026-01-05 15:34:22 +08:00
parent 75d911d5d2
commit 29024dc994
2 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docker-compose.yml
View File

@ -85,7 +85,7 @@ services:
# - ./frontend/dist:/usr/share/nginx/html:ro # 挂载构建产物,本地 pnpm build 后自动生效 # - ./frontend/dist:/usr/share/nginx/html:ro # 挂载构建产物,本地 pnpm build 后自动生效
- ./frontend/nginx.conf:/etc/nginx/conf.d/default.conf:ro # 挂载 nginx 配置 - ./frontend/nginx.conf:/etc/nginx/conf.d/default.conf:ro # 挂载 nginx 配置
ports: ports:
- "3000:80" # Nginx 监听 80 端口 - "83:80" # Nginx 监听 80 端口
environment: environment:
# 禁用代理 - nginx 需要直连后端 # 禁用代理 - nginx 需要直连后端
- HTTP_PROXY= - HTTP_PROXY=
@ -132,6 +132,8 @@ services:
networks: networks:
deepaudit-network: deepaudit-network:
driver: bridge driver: bridge
driver_opts:
com.docker.network.bridge.name: br-deepaudit # 指定宿主机网卡名称
volumes: volumes:
postgres_data: postgres_data:

2
docker/sandbox/Dockerfile
View File

@ -2,7 +2,7 @@
# 安全沙箱环境用于漏洞验证和 PoC 执行 # 安全沙箱环境用于漏洞验证和 PoC 执行
# 集成各类安全扫描工具 (Semgrep, Bandit, Gitleaks, etc.) # 集成各类安全扫描工具 (Semgrep, Bandit, Gitleaks, etc.)
FROM docker.m.daocloud.io/python:3.11-bullseye FROM python:3.11-bullseye
LABEL maintainer="XCodeReviewer Team" LABEL maintainer="XCodeReviewer Team"
LABEL description="Secure sandbox environment for vulnerability verification and security scanning" LABEL description="Secure sandbox environment for vulnerability verification and security scanning"