Question posted in 
Hadolint is an awesome tool for linting Dockerfiles. I am trying
to integrated to my CI but I am dealing with for run over multiple Dockerfiles. Does someone know how the syntax look like? Here is how my dirs appears to:
dir1/Dockerfile
dir2/Dockerfile
dir3/foo/Dockerfile
in gitlab-ci
stage: hadolint
image: hadolint/hadolint:latest-debian
script:
- mkdir -p reports
- |
hadolint dir1/Dockerfile > reports/dir1.json
hadolint dir2/Dockerfile > reports/dir2.json
hadolint dir3/foo/Dockerfile > reports/dir3.json
But the sample above is now working.
2
Answers
So as far as I found it,
hadolintruns recursively. So in my case:But the problem with this approach is that all reports will be in one file which humper the maintenance and clarity
If you want to keep all reports separated (one per top-level directory), you may want to rely on some shell snippet?
I mean something like:
Explanation:
find . -name Dockerfileloops over all Dockerfiles in the current directory;-exec sh -c '…'runs a subshell for each Dockerfile, setting:$0 = "sh"(dummy value)$1 = "{}"(the full, relative path of the Dockerfile),"{}"and;being directly related to thefind … -execpattern;src=${1#./}trims the path, replacing./dir1/Dockerfilewithdir1/Dockerfile${src%%/*}extracts the top-level directory name (dir1/Dockerfile→dir1)| tee -a …copies the output, appendinghadolint‘s output to the top-level directory report file, for each parsed Dockerfile (while> …should be avoided here for obvious reasons, if you have several Dockerfiles in a single top-level directory)..jsonextension with.txtashadolintdoes not seem to output JSON data.