From 700286c381c1b2665f31ddbff5fc12a1e5c0468c Mon Sep 17 00:00:00 2001
From: Szilard Parrag <szilard.parrag@axoflow.com>
Date: Wed, 9 Oct 2024 10:22:33 +0200
Subject: [PATCH] ci: fix trivy action

By default it also checks for secrets in compiled Python binary files
(/var/lib/syslog-ng-venv/lib/python3.12/site-packages/google/auth/crypt/__pycache__/_python_rsa.cpython-312.pyc)

See Python docs for more details
https://docs.python.org/3/using/cmdline.html#envvar-PYTHONDONTWRITEBYTECODE

Signed-off-by: Szilard Parrag <szilard.parrag@axoflow.com>
---
 docker/alpine.dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docker/alpine.dockerfile b/docker/alpine.dockerfile
index 93c3851a90..c5e927fb7b 100644
--- a/docker/alpine.dockerfile
+++ b/docker/alpine.dockerfile
@@ -62,6 +62,7 @@ RUN mkdir packages \
 FROM alpine:3.20
 
 ARG DEBUG
+ENV PYTHONDONTWRITEBYTECODE=true
 
 # https://github.com/opencontainers/image-spec/blob/main/annotations.md
 LABEL maintainer="axoflow.io"