graalvm
Use COPY instead of ADD for gu-wrapper.sh
According to Docker's best practices, COPY is preferred
Dockle also reports this as a potential vulnerability:
FATAL - CIS-DI-0009: Use COPY instead of ADD in Dockerfile
* Use COPY : ADD gu-wrapper.sh /usr/local/bin/gu # buildkit
Thank you for your pull request and welcome to our community! To contribute, please sign the Oracle Contributor Agreement (OCA). The following contributors of this PR have not signed the OCA:
- PR author: @jbochi
- [email protected] (@jbochi)
To sign the OCA, please create an Oracle account and sign the OCA in Oracle's Contributor Agreement Application.
When singing the OCA, please provide your GitHub username. After signing the OCA and getting an OCA approval from Oracle, this PR will be automatically updated.
![oracle-contributor-agreement[bot] avatar](https://avatars.githubusercontent.com/in/185340?v=4 "Published by a pub.dev verified publisher"){kind=small}
Thank you for the contribution. @mlouriz please integrate these changes internally (once they are merged, looking into why the duplicate OCA checks)
Thanks for the review! I'm afraid I don't have permission to merge the PR though:
Thanks for the review! I'm afraid I don't have permission to merge the PR though:
We are looking into why the oca-check is duplicated in this PR