Spaces:
Paused
Paused
Update Dockerfile
Browse files- Dockerfile +7 -0
Dockerfile
CHANGED
|
@@ -3,7 +3,13 @@ FROM python
|
|
| 3 |
ARG DEBIAN_FRONTEND=noninteractive
|
| 4 |
# 设置时区为亚洲/上海
|
| 5 |
ENV TZ=Asia/Shanghai
|
|
|
|
|
|
|
|
|
|
| 6 |
|
|
|
|
|
|
|
|
|
|
| 7 |
# 设置工作目录为/app
|
| 8 |
WORKDIR /code
|
| 9 |
# 安装所需的软件包并清理APT缓存
|
|
@@ -17,6 +23,7 @@ RUN apt-get update && apt-get install -y \
|
|
| 17 |
sudo \
|
| 18 |
gosu \
|
| 19 |
gnupg \
|
|
|
|
| 20 |
sqlite3 \
|
| 21 |
tzdata
|
| 22 |
COPY . .
|
|
|
|
| 3 |
ARG DEBIAN_FRONTEND=noninteractive
|
| 4 |
# 设置时区为亚洲/上海
|
| 5 |
ENV TZ=Asia/Shanghai
|
| 6 |
+
# 禁用 no new privileges 标志
|
| 7 |
+
RUN echo 'Set disable_coredump false' >> /etc/sudo.conf
|
| 8 |
+
RUN echo 'Set disable_new_privs true' >> /etc/sudo.conf
|
| 9 |
|
| 10 |
+
# 允许特权用户的切换
|
| 11 |
+
RUN echo 'kernel.unprivileged_userns_clone=1' > /etc/sysctl.d/userns.conf
|
| 12 |
+
RUN sysctl --system
|
| 13 |
# 设置工作目录为/app
|
| 14 |
WORKDIR /code
|
| 15 |
# 安装所需的软件包并清理APT缓存
|
|
|
|
| 23 |
sudo \
|
| 24 |
gosu \
|
| 25 |
gnupg \
|
| 26 |
+
util-linux \
|
| 27 |
sqlite3 \
|
| 28 |
tzdata
|
| 29 |
COPY . .
|