repolens 1.1.2

A CLI tool to audit and prepare repositories for open source or enterprise standards
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

# ==============================================================================
# RepoLens Docker Image
# Multi-stage build for optimized image size
# ==============================================================================

# ------------------------------------------------------------------------------
# Stage 1: Builder
# Build the RepoLens binary using Rust Alpine image
# ------------------------------------------------------------------------------
FROM rust:alpine AS builder

# Install build dependencies
RUN apk add --no-cache \
    musl-dev \
    openssl-dev \
    openssl-libs-static \
    pkgconfig \
    git

# Create app directory
WORKDIR /app

# Copy all source files
COPY Cargo.toml Cargo.lock ./
COPY src ./src
COPY presets ./presets
COPY schemas ./schemas

# Create dummy benchmark file to satisfy Cargo.toml [[bench]] section
# (benchmarks are excluded from Docker build for size optimization)
RUN mkdir -p benches && \
    echo 'fn main() {}' > benches/parse_benchmark.rs

# Build the binary
RUN cargo build --release && \
    strip target/release/repolens

# ------------------------------------------------------------------------------
# Stage 2: Runtime
# Minimal Alpine image with only necessary runtime dependencies
# ------------------------------------------------------------------------------
FROM alpine:latest

LABEL org.opencontainers.image.title="RepoLens"
LABEL org.opencontainers.image.description="A CLI tool to audit GitHub repositories for best practices, security, and compliance"
LABEL org.opencontainers.image.url="https://github.com/delfour-co/cli--repolens"
LABEL org.opencontainers.image.source="https://github.com/delfour-co/cli--repolens"
LABEL org.opencontainers.image.vendor="Delfour.co"
LABEL org.opencontainers.image.licenses="MIT"

# Install runtime dependencies
# - git: Required for repository operations
# - ca-certificates: Required for HTTPS
# - github-cli: Required for GitHub API operations
RUN apk add --no-cache \
    git \
    ca-certificates \
    github-cli

# Create non-root user for security
RUN addgroup -g 1000 repolens && \
    adduser -u 1000 -G repolens -h /home/repolens -D repolens

# Copy binary from builder stage
COPY --from=builder /app/target/release/repolens /usr/local/bin/repolens

# Copy preset files
COPY --from=builder /app/presets /usr/share/repolens/presets

# Set ownership
RUN chown -R repolens:repolens /usr/local/bin/repolens

# Switch to non-root user
USER repolens

# Set working directory (will be mounted with the repository to audit)
WORKDIR /repo

# Set entrypoint
ENTRYPOINT ["repolens"]

# Default command (show help)
CMD ["--help"]