compliance-scanner-agent/Dockerfile.agent

FROM rust:1.89-bookworm AS builder

WORKDIR /app
COPY . .
RUN cargo build --release -p compliance-agent

FROM debian:bookworm-slim
RUN apt-get update && apt-get install -y ca-certificates libssl3 git curl && rm -rf /var/lib/apt/lists/*

# Install syft for SBOM generation
RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin

COPY --from=builder /app/target/release/compliance-agent /usr/local/bin/compliance-agent

EXPOSE 3001 3002

ENTRYPOINT ["compliance-agent"]