Conversation
AmyLGalles
changed the title
|
Claude finished @AmyLGalles's task in 2m 34s —— View job Code Review Summary: Create basic Docker config for SeederApiPR: #6992 | Author: AmyLGalles | Files Changed: 2 (+47/-0) OverviewThis PR adds the SeederApi utility to the CI build pipeline. The previous review's issues regarding multi-platform build patterns and project paths have been partially addressed, but the fix introduced new issues that will cause the Docker build to fail. Findings
Summary of Issues
Please reference Additional NotesBase image choice: The current Dockerfile uses Ubuntu-based images ( PR metadata: The Tracking and Objective sections remain empty in the PR description. 🤖 Generated with Claude Code |
![claude[bot]](https://avatars.githubusercontent.com/in/1236702?s=60&v=4){kind=small}
|
Great job! No new security vulnerabilities introduced in this pull request |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
There was a problem hiding this comment.
Checkmarx One found more than 20 potential problems in the proposed changes. Check the Files changed tab for more details.
| elif [ "$TARGETPLATFORM" = "linux/arm/v7" ]; then \ | ||
| RID=linux-arm ; \ | ||
| fi \ | ||
| && echo $RID > /tmp/rid.txt |
There was a problem hiding this comment.
❌ CRITICAL: RID file format incorrect - sourcing will fail
The file is written as echo $RID > /tmp/rid.txt, which outputs just the value (e.g., linux-x64). When this file is sourced with . /tmp/rid.txt, bash interprets linux-x64 as a command to execute rather than a variable assignment.
Expected pattern (from all other Dockerfiles):
&& echo "RID=$RID" > /tmp/rid.txtThis writes RID=linux-x64 so that sourcing it sets the $RID variable correctly.
| ############################################### | ||
| FROM mcr.microsoft.com/dotnet/aspnet:8.0-jammy-chiseled | ||
| WORKDIR /app | ||
| COPY --from=build /app . |
There was a problem hiding this comment.
❌ CRITICAL: COPY source path does not exist
The build stage publishes to /source/util/SeederApi/out (line 33), but this COPY references /app which was never created.
Fix:
COPY --from=build /source/util/SeederApi/out .
| COPY --from=build /app . | ||
| EXPOSE 5000 | ||
| LABEL com.bitwarden.product="bitwarden" | ||
| ENTRYPOINT ["dotnet", "SeederApi.dll"] |
There was a problem hiding this comment.
❌ CRITICAL: Entrypoint incompatible with self-contained single-file publish
The build uses --self-contained and /p:PublishSingleFile=true, which produces a native executable named SeederApi (not a DLL). The entrypoint ["dotnet", "SeederApi.dll"] will fail because:
- No
SeederApi.dllexists in the output - Self-contained apps don't require the
dotnetcommand
All other services in this repository use an entrypoint.sh script. The typical pattern:
COPY ./util/SeederApi/entrypoint.sh /entrypoint.sh
RUN chmod +x /entrypoint.sh
ENTRYPOINT ["/entrypoint.sh"]The entrypoint script would then execute the native binary:
#!/bin/bash
exec /app/SeederApi "$@"
|
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #6992 +/- ##
==========================================
- Coverage 56.28% 56.28% -0.01%
==========================================
Files 1986 1986
Lines 87660 87660
Branches 7814 7814
==========================================
- Hits 49339 49338 -1
- Misses 36490 36491 +1
Partials 1831 1831 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
1 participant
🎟️ Tracking
📔 Objective
📸 Screenshots