This repo contains the base images for AppThreat projects such as cdxgen. They were created based on specific issues and challenges observed in enterprise deployments. There will be no FREE community support offered for these images. Pull requests are NOT accepted.
The official cdxgen image bundles Java >= 21 with the latest maven and gradle. Legacy applications that rely on Java 11 can use the unofficial image ghcr.io/appthreat/cdxgen-java:v10
. For Java 17, use ghcr.io/appthreat/cdxgen-java17:v10
.
Example invocations:
Java 11 version
docker run --rm -v /tmp:/tmp -v $HOME/.m2:$HOME/.m2 -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-java11:v10 -r /app -o /app/bom.json -t java
Java 17 version
docker run --rm -v /tmp:/tmp -v $HOME/.m2:$HOME/.m2 -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-java17:v10 -r /app -o /app/bom.json -t java
Use the unofficial image ghcr.io/appthreat/cdxgen-dotnet:v10
.
Example invocation:
Dotnet 3.1 or Dotnet 6.0
docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-dotnet6:v10 -r /app -o /app/bom.json -t dotnet
Dotnet 7.0
docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-dotnet7:v10 -r /app -o /app/bom.json -t dotnet
Use the unofficial image ghcr.io/appthreat/cdxgen-python312:v10
or ghcr.io/appthreat/cdxgen-python311:v10
. This includes additional build tools and libraries to build a range of Python applications.
Example invocation:
Python 3.12
docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-python312:v10 -r /app -o /app/bom.json -t python
Python 3.11
docker run --rm -v /tmp:/tmp -v $(pwd):/app:rw -t ghcr.io/appthreat/cdxgen-python311:v10 -r /app -o /app/bom.json -t python
MIT
NOTE: No FREE support will be offered for users of these images. Pull Requests are NOT accepted.