microsoft/hve-core

Public

mirrored fromhttps://github.com/microsoft/hve-coreAvailable

Watch0 Fork0 Star0

Code Commits Issues Pull requests Actions Insights Security

17a85daf2f170d57880c18936fe38b190d2f5b2e

Find a branch or tag

Branches

17a85daf2f170d57880c18936fe38b190d2f5b2e

Clone

HTTPS

Download ZIP

hve-core/.devcontainer/scripts

.devcontainer/scripts/on-create.sh

71lines · modecode

Raw Download

Latest commit unavailable.

unknown

1	`#!/usr/bin/env bash`
2	`# Copyright (c) Microsoft Corporation.`
3	`# SPDX-License-Identifier: MIT`
4	`#`
5	`# on-create.sh`
6	`# Install system dependencies for HVE Core development container`
7
8	`set -euo pipefail`
9
10	`main() {`
11	`echo "Installing system dependencies..."`
12
13	`sudo apt update`
14	`sudo apt install -y shellcheck`
15
16	`# Dependencies are pinned for stability. Dependabot and security workflows manage updates.`
17	`echo "Installing actionlint..."`
18	`ACTIONLINT_VERSION="1.7.10"`
19	`ARCH=$(uname -m)`
20	`if [[ "${ARCH}" == "x86_64" ]]; then`
21	`ACTIONLINT_ARCH="amd64"`
22	`ACTIONLINT_SHA256="f4c76b71db5755a713e6055cbb0857ed07e103e028bda117817660ebadb4386f"`
23	`elif [[ "${ARCH}" == "aarch64" ]]; then`
24	`ACTIONLINT_ARCH="arm64"`
25	`ACTIONLINT_SHA256="cd3dfe5f66887ec6b987752d8d9614e59fd22f39415c5ad9f28374623f41773a"`
26	`else`
27	`echo "ERROR: Unsupported architecture: ${ARCH}" >&2`
28	`exit 1`
29	`fi`
30	`curl -sSfL "https://github.com/rhysd/actionlint/releases/download/v${ACTIONLINT_VERSION}/actionlint_${ACTIONLINT_VERSION}_linux_${ACTIONLINT_ARCH}.tar.gz" -o /tmp/actionlint.tar.gz`
31
32	`echo "Checking actionlint tarball integrity..."`
33	`if ! echo "${ACTIONLINT_SHA256} /tmp/actionlint.tar.gz" \| sha256sum -c --quiet -; then`
34	`echo "ERROR: SHA256 checksum verification failed for actionlint tarball" >&2`
35	`rm /tmp/actionlint.tar.gz`
36	`exit 1`
37	`fi`
38	`sudo tar -xzf /tmp/actionlint.tar.gz -C /usr/local/bin actionlint`
39	`rm /tmp/actionlint.tar.gz`
40
41	`echo "Installing PowerShell modules..."`
42	`pwsh -NoProfile -Command "Install-Module -Name PowerShell-Yaml -Force -Scope CurrentUser -Repository PSGallery"`
43
44	`echo "Installing gitleaks..."`
45	`# Download gitleaks tarball and verify checksum before extracting`
46	`GITLEAKS_VERSION="8.18.2"`
47	`if [[ "${ARCH}" == "x86_64" ]]; then`
48	`GITLEAKS_ARCH="x64"`
49	`GITLEAKS_SHA256="6298c9235dfc9278c14b28afd9b7fa4e6f4a289cb1974bd27949fc1e9122bdee"`
50	`elif [[ "${ARCH}" == "aarch64" ]]; then`
51	`GITLEAKS_ARCH="arm64"`
52	`GITLEAKS_SHA256="4df25683f95b9e1dbb8cc71dac74d10067b8aba221e7f991e01cafa05bcbd030"`
53	`else`
54	`echo "ERROR: Unsupported architecture for gitleaks: ${ARCH}" >&2`
55	`exit 1`
56	`fi`
57	`curl -sSfL "https://github.com/gitleaks/gitleaks/releases/download/v${GITLEAKS_VERSION}/gitleaks_${GITLEAKS_VERSION}_linux_${GITLEAKS_ARCH}.tar.gz" -o /tmp/gitleaks.tar.gz`
58
59	`echo "Checking gitleaks tarball integrity..."`
60	`if ! echo "${GITLEAKS_SHA256} /tmp/gitleaks.tar.gz" \| sha256sum -c --quiet -; then`
61	`echo "ERROR: SHA256 checksum verification failed for gitleaks tarball" >&2`
62	`rm /tmp/gitleaks.tar.gz`
63	`exit 1`
64	`fi`
65	`sudo tar -xzf /tmp/gitleaks.tar.gz -C /usr/local/bin gitleaks`
66	`rm /tmp/gitleaks.tar.gz`
67
68	`echo "System dependencies installed successfully"`
69	`}`
70
71	`main "$@"`
72

microsoft/hve-core

Branches

Tags

Clone