Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-09-02 18:18:29 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
55980c59c3d36f12f7a1f4dd1ccee9d3c30fc253
testssl.sh/Dockerfile.md
Brennan Kinney bf895807f5 docs: Revise Dockerfile instructions
2025-05-06 17:26:56 +12:00

2.7 KiB
Raw Blame History

Usage

Run the image with testssl.sh options appended (default is --help). The container entrypoint is already set to testsl.sh as the command for convenience.

docker run --rm -it ghcr.io/testssl/testssl.sh:3.2 --fs github.com

Output files

Keep in mind that any output file (--log, --html, --json, etc.) will be created within the container.

Use a volume bind mount to a local host directory to access the files outside of the container. Set a working directory for the container and any options output prefix can then use a relative path, like this example for --htmfile:

# Writes the HTML output to the host path: /tmp/example.com_p443-<date>-<time>.html
docker run --rm -it -v /tmp:/data --workdir /data ghcr.io/testssl/testssl.sh:3.2 --htmlfile ./ example.com

NOTE:

  • The UID/GID ownership of the file will be created by the container user testssl (1000:1000), with permissions 644.
  • Your host directory must permit the testssl container user or group to write to that host volume. You could alternatively use docker cp.

From DockerHub or GHCR

You can pull the image from either of these registries:

Supported tags:

Building

You can build with a standard git clone + docker build. Tagging the image will make it easier to reference.

mkdir /tmp/testssl && cd /tmp/testssl
git clone --branch 3.2 --depth 1 https://github.com/testssl/testssl.sh .
docker build --tag localhost/testssl.sh:3.2 .

There are two base images available:

  • Dockerfile (openSUSE Leap), glibc-based + faster.
  • Dockerfile-alpine (Alpine), musl-based + half the size.

Alpine is made available if you need broarder platform support or an image about 30MB smaller at the expense of speed.

Remote build context + Dockerfile

You can build with a single command instead via:

docker build --tag localhost/testssl.sh:3.2 https://github.com/testssl/testssl.sh.git#3.2

This will produce a slightly larger image however as .dockerignore is not supported with remote build contexts.

If you would like to build the Alpine image instead this way, just provide the alternative Dockerfile via --file:

docker build \
  --tag localhost/testssl.sh:3.2-alpine \
  --file https://raw.githubusercontent.com/testssl/testssl.sh/3.2/Dockerfile-alpine \
  https://github.com/testssl/testssl.sh.git#3.2