thefringeninja/Dockerfile

## Dockerfile
FROM pulumi/pulumi as build

RUN curl -L https://storage.googleapis.com/kubernetes-helm/helm-v2.13.1-linux-amd64.tar.gz | tar xvz \
    && mv linux-amd64/helm /usr/bin/helm \
    && chmod +x /usr/bin/helm \
    && rm -rf linux-amd64

ARG UID=1000
ARG GID=1000
RUN groupadd -g $GID -o user \
    && useradd -m -u $UID -g $GID -o -s /bin/bash user
USER user

RUN helm init --client-only

RUN mkdir -p /home/user/app
WORKDIR /home/user/app

COPY --chown=user:user package.json yarn.lock ./

RUN yarn --frozen-lockfile

COPY --chown=user:user . .

## pulumi.sh
#!/usr/bin/env bash

set -e

docker build \
  --build-arg UID=$(id -u) \
  --build-arg GID=$(id -g) \
  --tag pulumi-runner \
  .

mkdir -p ~/.aws
mkdir -p ~/.pulumi

docker run --rm -it \
  --volume ~/.aws:/home/user/.aws \
  --volume ~/.pulumi:/home/user/.pulumi \
  --volume ${KUBECONFIG}:/home/user/.kube/config \
  --user $(id -u):$(id -g) \
  --env "KUBECONFIG=/home/user/.kube/config" \
  --network=host \
  pulumi-runner \
  "$@"
	FROM pulumi/pulumi as build

	RUN curl -L https://storage.googleapis.com/kubernetes-helm/helm-v2.13.1-linux-amd64.tar.gz \| tar xvz \
	&& mv linux-amd64/helm /usr/bin/helm \
	&& chmod +x /usr/bin/helm \
	&& rm -rf linux-amd64

	ARG UID=1000
	ARG GID=1000
	RUN groupadd -g $GID -o user \
	&& useradd -m -u $UID -g $GID -o -s /bin/bash user
	USER user

	RUN helm init --client-only

	RUN mkdir -p /home/user/app
	WORKDIR /home/user/app

	COPY --chown=user:user package.json yarn.lock ./

	RUN yarn --frozen-lockfile

	COPY --chown=user:user . .
	#!/usr/bin/env bash

	set -e

	docker build \
	--build-arg UID=$(id -u) \
	--build-arg GID=$(id -g) \
	--tag pulumi-runner \
	.

	mkdir -p ~/.aws
	mkdir -p ~/.pulumi

	docker run --rm -it \
	--volume ~/.aws:/home/user/.aws \
	--volume ~/.pulumi:/home/user/.pulumi \
	--volume ${KUBECONFIG}:/home/user/.kube/config \
	--user $(id -u):$(id -g) \
	--env "KUBECONFIG=/home/user/.kube/config" \
	--network=host \
	pulumi-runner \
	"$@"