# Copyright Broadcom, Inc. All Rights Reserved. # SPDX-License-Identifier: APACHE-2.0 FROM docker.io/bitnami/minideb:bookworm AS builder ARG DOWNLOADS_URL="downloads.bitnami.com/files/stacksmith" ARG TARGETARCH ENV OS_ARCH="${TARGETARCH:-amd64}" COPY prebuildfs / SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] # Install required system packages and dependencies RUN install_packages ca-certificates curl RUN --mount=type=secret,id=downloads_url,env=SECRET_DOWNLOADS_URL \ DOWNLOADS_URL=${SECRET_DOWNLOADS_URL:-${DOWNLOADS_URL}} ; \ mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ || exit 1 ; \ COMPONENTS=( \ "cloudnative-pg-1.27.0-2-linux-${OS_ARCH}-debian-12" \ ) ; \ for COMPONENT in "${COMPONENTS[@]}"; do \ if [ ! -f "${COMPONENT}.tar.gz" ]; then \ curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz" -O ; \ curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz.sha256" -O ; \ fi ; \ sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner ; \ rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ done RUN uninstall_packages curl ###### FROM scratch ARG DOWNLOADS_URL="downloads.bitnami.com/files/stacksmith" ARG TARGETARCH ENV OS_ARCH="${TARGETARCH:-amd64}" LABEL org.opencontainers.image.base.name="scratch" \ org.opencontainers.image.created="2025-09-03T20:46:50Z" \ org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ org.opencontainers.image.title="cloudnative-pg" \ org.opencontainers.image.vendor="Broadcom, Inc." \ org.opencontainers.image.version="1.27.0" COPY rootfs / COPY --from=builder /opt/bitnami/cloudnative-pg/manager /manager COPY --from=builder /opt/bitnami/cloudnative-pg/bin /operator COPY --from=builder /opt/bitnami/cloudnative-pg/.spdx-cloudnative-pg.spdx /opt/bitnami/cloudnative-pg/.spdx-cloudnative-pg.spdx COPY --from=builder /opt/bitnami/cloudnative-pg/licenses /opt/bitnami/cloudnative-pg/licenses ENV APP_VERSION="1.27.0" \ BITNAMI_APP_NAME="cloudnative-pg" \ IMAGE_REVISION="2" \ PATH="/operator:$PATH" USER 1001 ENTRYPOINT [ "/manager" ]