chore(): No report scan
continuous-integration/drone/pr Build was killed Details
continuous-integration/drone/push Build was killed Details
continuous-integration/drone/promote/production Build is passing Details

- Tags the image with the specific version
- Removes the report pushing from the trivy scan
This commit is contained in:
Elia el Lazkani 2024-01-20 01:21:37 +01:00
parent 438851fc13
commit 5a85b0f765
2 changed files with 3 additions and 20 deletions

View File

@ -27,22 +27,6 @@ steps:
depends_on:
- generate-blog
- name: test-build-container
image: plugins/docker
settings:
registry: scm.project42.io
username:
from_secret: registry_username
password:
from_secret: registry_password
repo: scm.project42.io/elia/blog
dry_run: true
squash: true
tags:
- "${DRONE_COMMIT_SHA:0:8}"
depends_on:
- clean-up-images
- name: build-container
image: plugins/docker
settings:
@ -57,7 +41,7 @@ steps:
tags:
- "${DRONE_COMMIT_SHA:0:8}"
depends_on:
- test-build-container
- clean-up-images
when:
event:
exclude:
@ -71,7 +55,7 @@ steps:
REGISTRY_PASSWORD:
from_secret: registry_password
commands:
- generate-scan-report -i scm.project42.io/elia/blog -t "${DRONE_COMMIT_SHA:0:8}" -g "${DRONE_COMMIT_SHA:0:8}"
- trivy image --image-src remote --exit-code 0 --username "$REGISTRY_USERNAME" --password "$REGISTRY_PASSWORD" "scm.project42.io/elia/blog:${DRONE_COMMIT_SHA:0:8}"
depends_on:
- build-container
when:
@ -87,7 +71,6 @@ steps:
REGISTRY_PASSWORD:
from_secret: registry_password
commands:
- check-scan-report -i scm.project42.io/elia/blog -t "${DRONE_COMMIT_SHA:0:8}"
- oras tag --username "$REGISTRY_USERNAME" --password "$REGISTRY_PASSWORD" "scm.project42.io/elia/blog:${DRONE_COMMIT_SHA:0:8}" latest
depends_on:
- trivy-scan

View File

@ -1,4 +1,4 @@
FROM nginxinc/nginx-unprivileged:alpine
FROM nginxinc/nginx-unprivileged:1.25.3-alpine3.18
MAINTAINER Elia el Lazkani <elia@lazkani.io>
COPY public/ /usr/share/nginx/html/blog/