-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathdocker-compose.yaml
110 lines (105 loc) · 2.72 KB
/
docker-compose.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
services:
sandcastle:
image: ghcr.io/iosifache/sandcastle:main
build:
context: sandcastle
network: host
tags:
- "sandcastle:latest"
container_name: sandcastle
ports:
- "8000:8080"
environment:
- SANDCASTLE_RECOVERY_PASSPHRASE=secret
profiles:
- sandcastle
- all
dragon:
image: owasp/threat-dragon:v2.1.1
container_name: dragon
ports:
- "8001:3000"
environment:
# The envvars are set with this syntax because of docker/compose#3878.
GITHUB_CLIENT_ID: 01234567890123456789
GITHUB_CLIENT_SECRET: 0123456789abcdef0123456789abcdef0123456
GITHUB_SCOPE: public_repo
GITHUB_ENTERPRISE_HOSTNAME: optional_if_using_enterprise
GITHUB_ENTERPRISE_PORT: optional_if_enterprise_and_non_standard
GITHUB_ENTERPRISE_PROTOCOL: optional_if_enterprise_and_non_standard
NODE_ENV: production
SERVER_API_PROTOCOL: http
ENCRYPTION_KEYS: '[{"isPrimary": true, "id": 0, "value": "11223344556677889900aabbccddeeff"}]'
ENCRYPTION_JWT_SIGNING_KEY: asdfasdfasdf
ENCRYPTION_JWT_REFRESH_SIGNING_KEY: fljasdlfkjadf
profiles:
- threat-modelling
- all
coder:
image: ghcr.io/iosifache/coder:main
build:
context: tooling/coder
tags:
- "coder:latest"
container_name: coder
volumes:
- ".:/home/coder/codebase:ro"
- "./tooling:/home/coder/tooling:ro"
- "./analysis:/home/coder/analysis"
networks:
default:
ports:
- "8002:8080"
profiles:
- static-analysis
- all
static-analysers:
image: ghcr.io/iosifache/static-analysers:main
build:
context: tooling/static-analysers
network: host
tags:
- "static-analysers:latest"
container_name: static-analysers
volumes:
- ".:/root/codebase:ro"
- "./.git:/root/codebase/.git:ro"
- "./tooling:/root/tooling:ro"
- "./analysis:/root/analysis"
networks:
default:
profiles:
- static-analysis
- all
aflplusplus:
image: ghcr.io/iosifache/aflplusplus:main
build:
context: tooling/aflplusplus
network: host
tags:
- "aflplusplus:latest"
container_name: aflplusplus
volumes:
- ".:/root/codebase:ro"
- "./tooling:/root/tooling:ro"
- "./analysis:/root/analysis"
networks:
default:
profiles:
- dynamic-analysis
- all
klee:
image: klee/klee:latest
container_name: klee
command: tail -f /dev/null
ulimits:
stack: -1
volumes:
- ".:/root/codebase:ro"
- "./tooling:/root/tooling:ro"
- "./analysis:/root/analysis"
networks:
default:
profiles:
- dynamic-analysis
- all