# syntax=docker/dockerfile:1 #checkov:skip=CKV_DOCKER_2 #checkov:skip=CKV_DOCKER_3 FROM golang:1.22 ENV CFLAGS="-ggdb3" ENV PHPIZE_DEPS="\ autoconf \ dpkg-dev \ file \ g++ \ gcc \ libc-dev \ make \ pkg-config \ re2c" SHELL ["/bin/bash", "-o", "pipefail", "-c"] # hadolint ignore=DL3009 RUN apt-get update && \ apt-get -y --no-install-recommends install \ $PHPIZE_DEPS \ libargon2-dev \ libbrotli-dev \ libcurl4-openssl-dev \ libonig-dev \ libreadline-dev \ libsodium-dev \ libsqlite3-dev \ libssl-dev \ libxml2-dev \ zlib1g-dev \ bison \ libnss3-tools \ # Dev tools \ git \ clang \ cmake \ llvm \ gdb \ valgrind \ neovim \ zsh \ libtool-bin && \ echo 'set auto-load safe-path /' > /root/.gdbinit && \ echo '* soft core unlimited' >> /etc/security/limits.conf \ && \ apt-get clean WORKDIR /usr/local/src/php RUN git clone --branch=PHP-8.3 https://github.com/php/php-src.git . && \ # --enable-embed is only necessary to generate libphp.so, we don't use this SAPI directly ./buildconf --force && \ ./configure \ --enable-embed \ --enable-zts \ --disable-zend-signals \ --enable-zend-max-execution-timers \ --enable-debug && \ make -j"$(nproc)" && \ make install && \ ldconfig && \ cp php.ini-development /usr/local/lib/php.ini && \ echo "zend_extension=opcache.so" >> /usr/local/lib/php.ini && \ echo "opcache.enable=1" >> /usr/local/lib/php.ini && \ php --version # Install e-dant/watcher (necessary for file watching) ARG EDANT_WATCHER_VERSION=release WORKDIR /usr/local/src/watcher RUN git clone --branch=$EDANT_WATCHER_VERSION https://github.com/e-dant/watcher . && \ cmake -S . -B build -DCMAKE_BUILD_TYPE=Release && \ cmake --build build/ && \ cmake --install build WORKDIR /go/src/app COPY . . WORKDIR /go/src/app/caddy/frankenphp RUN go build -buildvcs=false -tags 'nobadger,nomysql,nopgx' WORKDIR /go/src/app CMD [ "zsh" ]