Yvan Janssens friedkiwi

0 Followers · 0 Following

• https://cyber.gent
• Joined on 2022-08-12

Repositories

4

Projects Packages Public Activity Starred Repositories

sonarqube (2026.2.1-enterprise-patched)

Published 2026-04-03 14:58:16 +00:00 by friedkiwi

Installation

Pull the image from the command line:

docker pull git.cyber.gent/friedkiwi/sonarqube:2026.2.1-enterprise-patched

Digest

sha256:d74289b827716903dab5714055ae71e0e889a8e45ae232e0045c9ff867a4fc6a

For more information on the Container registry, see the documentation.

Image Layers

ARG RELEASE

ARG LAUNCHPAD_BUILD_ARCH

LABEL org.opencontainers.image.ref.name=ubuntu

LABEL org.opencontainers.image.version=24.04

ADD file:3f78aa860931e0853077f09eb31eddbeeef8a9dd70977305b4876aa176770721 in /

CMD ["/bin/bash"]

ENV JAVA_HOME=/opt/java/openjdk

ENV PATH=/opt/java/openjdk/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin

ENV LANG=en_US.UTF-8 LANGUAGE=en_US:en LC_ALL=en_US.UTF-8

RUN /bin/sh -c set -eux; apt-get update; DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends fontconfig ca-certificates p11-kit binutils tzdata locales ; echo "en_US.UTF-8 UTF-8" >> /etc/locale.gen; locale-gen en_US.UTF-8; rm -rf /var/lib/apt/lists/* # buildkit

ENV JAVA_VERSION=jdk-25.0.2+10

RUN /bin/sh -c set -eux; ARCH="$(dpkg --print-architecture)"; case "${ARCH}" in amd64) ESUM='987387933b64b9833846dee373b640440d3e1fd48a04804ec01a6dbf718e8ab8'; BINARY_URL='https://github.com/adoptium/temurin25-binaries/releases/download/jdk-25.0.2%2B10/OpenJDK25U-jdk_x64_linux_hotspot_25.0.2_10.tar.gz'; ;; arm64) ESUM='a9d73e711d967dc44896d4f430f73a68fd33590dabc29a7f2fb9f593425b854c'; BINARY_URL='https://github.com/adoptium/temurin25-binaries/releases/download/jdk-25.0.2%2B10/OpenJDK25U-jdk_aarch64_linux_hotspot_25.0.2_10.tar.gz'; ;; ppc64el) ESUM='b262b735b215173003766da36588d5f717dceada0286db41b439f93fb2ada468'; BINARY_URL='https://github.com/adoptium/temurin25-binaries/releases/download/jdk-25.0.2%2B10/OpenJDK25U-jdk_ppc64le_linux_hotspot_25.0.2_10.tar.gz'; ;; riscv64) ESUM='168119e4fba350f4e6b3ca92450a2b90a8502b89a235a04415e9adf9f5d3164e'; BINARY_URL='https://github.com/adoptium/temurin25-binaries/releases/download/jdk-25.0.2%2B10/OpenJDK25U-jdk_riscv64_linux_hotspot_25.0.2_10.tar.gz'; ;; s390x) ESUM='15e5cbcadcf3d43623c31b825063cdc2817b9f1ba840b51dc6ef70e5d33c84e3'; BINARY_URL='https://github.com/adoptium/temurin25-binaries/releases/download/jdk-25.0.2%2B10/OpenJDK25U-jdk_s390x_linux_hotspot_25.0.2_10.tar.gz'; ;; *) echo "Unsupported arch: ${ARCH}"; exit 1; ;; esac; savedAptMark="$(apt-mark showmanual)"; apt-get update; apt-get install -y --no-install-recommends wget gnupg; wget --progress=dot:giga -O /tmp/openjdk.tar.gz ${BINARY_URL}; wget --progress=dot:giga -O /tmp/openjdk.tar.gz.sig ${BINARY_URL}.sig; export GNUPGHOME="$(mktemp -d)"; gpg --batch --keyserver keyserver.ubuntu.com --recv-keys 3B04D753C9050D9A5D343F39843C48A565F8F04B; gpg --batch --verify /tmp/openjdk.tar.gz.sig /tmp/openjdk.tar.gz; rm -rf "${GNUPGHOME}" /tmp/openjdk.tar.gz.sig; echo "${ESUM} */tmp/openjdk.tar.gz" | sha256sum -c -; mkdir -p "$JAVA_HOME"; tar --extract --file /tmp/openjdk.tar.gz --directory "$JAVA_HOME" --strip-components 1 --no-same-owner ; rm -f /tmp/openjdk.tar.gz ${JAVA_HOME}/lib/src.zip; apt-mark auto '.*' > /dev/null; apt-mark manual $savedAptMark > /dev/null; apt-get purge -y --auto-remove -o APT::AutoRemove::RecommendsImportant=false; rm -rf /var/lib/apt/lists/*; find "$JAVA_HOME/lib" -name '*.so' -exec dirname '{}' ';' | sort -u > /etc/ld.so.conf.d/docker-openjdk.conf; ldconfig; java -Xshare:dump; # buildkit

RUN /bin/sh -c set -eux; echo "Verifying install ..."; fileEncoding="$(echo 'System.out.println(System.getProperty("file.encoding"))' | jshell -s -)"; [ "$fileEncoding" = 'UTF-8' ]; rm -rf ~/.java; echo "javac --version"; javac --version; echo "java --version"; java --version; echo "Complete." # buildkit

COPY --chmod=755 entrypoint.sh /__cacert_entrypoint.sh # buildkit

ENTRYPOINT ["/__cacert_entrypoint.sh"]

CMD ["jshell"]

LABEL io.k8s.description=SonarQube Server is a self-managed, automatic code review tool that systematically helps you deliver Clean Code.

LABEL io.openshift.min-cpu=400m

LABEL io.openshift.min-memory=2048M

LABEL io.openshift.non-scalable=true

LABEL io.openshift.tags=sonarqube,static-code-analysis,code-quality,clean-code

LABEL org.opencontainers.image.url=https://github.com/SonarSource/docker-sonarqube

ENV LANG=en_US.UTF-8 LANGUAGE=en_US:en LC_ALL=en_US.UTF-8

ARG SONARQUBE_VERSION=2026.2.1.121354

ARG SONARQUBE_ZIP_URL=https://binaries.sonarsource.com/CommercialDistribution/sonarqube-enterprise/sonarqube-enterprise-2026.2.1.121354.zip

ENV DOCKER_RUNNING=true JAVA_HOME=/opt/java/openjdk SONARQUBE_HOME=/opt/sonarqube SONAR_VERSION=2026.2.1.121354 SQ_DATA_DIR=/opt/sonarqube/data SQ_EXTENSIONS_DIR=/opt/sonarqube/extensions SQ_LOGS_DIR=/opt/sonarqube/logs SQ_TEMP_DIR=/opt/sonarqube/temp

ENV ES_TMPDIR=/opt/sonarqube/temp

RUN |2 SONARQUBE_VERSION=2026.2.1.121354 SONARQUBE_ZIP_URL=https://binaries.sonarsource.com/CommercialDistribution/sonarqube-enterprise/sonarqube-enterprise-2026.2.1.121354.zip /bin/sh -c set -eux; deluser ubuntu; useradd --system --uid 1000 --gid 0 sonarqube; apt-get update; apt-get --no-install-recommends -y install bash curl fonts-dejavu gnupg unzip; echo "networkaddress.cache.ttl=5" >> "${JAVA_HOME}/conf/security/java.security"; sed --in-place --expression="s?securerandom.source=file:/dev/random?securerandom.source=file:/dev/urandom?g" "${JAVA_HOME}/conf/security/java.security"; for server in $(shuf -e hkps://keyserver.ubuntu.com) ; do gpg --batch --keyserver "${server}" --recv-keys 679F1EE92B19609DE816FDE81DB198F93525EC1A && break || : ; done; cd /opt; curl --proto "=https" --fail --output sonarqube.zip --silent --show-error "${SONARQUBE_ZIP_URL}"; curl --proto "=https" --fail --output sonarqube.zip.asc --silent --show-error "${SONARQUBE_ZIP_URL}.asc"; gpg --batch --verify sonarqube.zip.asc sonarqube.zip; unzip -q sonarqube.zip; mv "sonarqube-${SONARQUBE_VERSION}" sonarqube; rm sonarqube.zip*; rm -rf ${SONARQUBE_HOME}/bin/*; ln -s "${SONARQUBE_HOME}/lib/sonar-application-${SONARQUBE_VERSION}.jar" "${SONARQUBE_HOME}/lib/sonarqube.jar"; chown -R sonarqube:root ${SONARQUBE_HOME}; chown -R sonarqube:root "${SQ_DATA_DIR}" "${SQ_EXTENSIONS_DIR}" "${SQ_LOGS_DIR}" "${SQ_TEMP_DIR}"; chmod -R 550 ${SONARQUBE_HOME}; chmod -R 770 "${SQ_DATA_DIR}" "${SQ_EXTENSIONS_DIR}" "${SQ_LOGS_DIR}" "${SQ_TEMP_DIR}"; apt-get remove -y gnupg unzip; rm -rf /var/lib/apt/lists/*; # buildkit

VOLUME [/opt/sonarqube/data /opt/sonarqube/extensions /opt/sonarqube/logs /opt/sonarqube/temp]

COPY --chown=root:root --chmod=555 entrypoint.sh /opt/sonarqube/docker/ # buildkit

WORKDIR /opt/sonarqube

EXPOSE map[9000/tcp:{}]

USER sonarqube

STOPSIGNAL SIGINT

ENTRYPOINT ["/opt/sonarqube/docker/entrypoint.sh"]

COPY dvt-SonarQube-KeyMaker.jar /tool.jar

COPY patch.sh /patch.sh

RUN /patch.sh

RUN rm -v /tool.jar /patch.sh

Labels

Key	Value
io.k8s.description	SonarQube Server is a self-managed, automatic code review tool that systematically helps you deliver Clean Code.
io.openshift.min-cpu	400m
io.openshift.min-memory	2048M
io.openshift.non-scalable	true
io.openshift.tags	sonarqube,static-code-analysis,code-quality,clean-code
org.opencontainers.image.ref.name	ubuntu
org.opencontainers.image.url	https://github.com/SonarSource/docker-sonarqube
org.opencontainers.image.version	24.04

Details

Container

2026-04-03 14:58:16 +00:00

0

OCI / Docker

linux/amd64

Project Site

2.1 GiB

Versions (5) View all

latest 2026-04-03

2026.1-enterprise-patched 2026-04-03

2026.2.1-enterprise-patched 2026-04-03

2025.2.0-enterprise-patched 2025-04-15

2025.2.0-datacenter-app-patched 2025-04-15