update

.gitea/workflows/release.yaml

@@ -87,21 +87,6 @@ jobs:
             ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:latest
             ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:v${{ steps.meta.outputs.IMAGE_VERSION }}
 
-      - name: Run Trivy vulnerability scanner
-        uses: aquasecurity/trivy-action@0.29.0
-        with:
-          image-ref: ${{ secrets.DOCKER_REGISTRY_USER}}/hypermirror:latest
-          format: 'table'
-          exit-code: '1'
-          ignore-unfixed: true
-          vuln-type: 'os'
-          severity: 'CRITICAL,HIGH'
-        env:
-          TRIVY_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-db:2
-          TRIVY_JAVA_DB_REPOSITORY: public.ecr.aws/aquasecurity/trivy-java-db:1
-          TRIVY_SKIP_DB_UPDATE: false
-          TRIVY_SKIP_JAVA_DB_UPDATE: false
-
       - name: Push Docker image
         uses: docker/build-push-action@v6
         with:

Dockerfile

@@ -1,15 +1,17 @@
 FROM docker.io/rusian/hyperbola:v0.4.4
 
-RUN pacman -Syu --noconfirm && pacman -S --noconfirm \
+RUN pacman -Syu --noconfirm --no-cache && pacman -S --noconfirm --no-cache \
 nginx rsync cronie util-linux findutils && \
 pacman -Scc --noconfirm
 
-RUN mkdir /srv/repo
+# Create the /srv/repo directory to store repository data
+RUN mkdir -p /srv/repo
 
 COPY entrypoint.bash /
 RUN chmod u+x /entrypoint.bash
-
+# Define a mount point for the repository data
 VOLUME /srv/repo
+# Expose port 80 for the web server
 EXPOSE 80
 
 ENTRYPOINT ["/entrypoint.bash"]