2023-07-03 16:57:17 +00:00
|
|
|
---
|
|
|
|
kind: pipeline
|
2023-07-03 17:01:08 +00:00
|
|
|
name: test
|
2023-07-03 16:57:17 +00:00
|
|
|
|
|
|
|
steps:
|
2023-07-03 17:01:08 +00:00
|
|
|
- name: test-build-container
|
2023-07-03 16:57:17 +00:00
|
|
|
image: plugins/docker
|
|
|
|
settings:
|
|
|
|
registry: scm.project42.io
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
username:
|
|
|
|
from_secret: registry_username
|
|
|
|
password:
|
|
|
|
from_secret: registry_password
|
2023-07-03 21:12:34 +00:00
|
|
|
repo: scm.project42.io/elia/tricks
|
|
|
|
dry_run: true
|
|
|
|
squash: true
|
|
|
|
compress: true
|
|
|
|
tags:
|
|
|
|
- "${DRONE_COMMIT_SHA:0:8}"
|
|
|
|
|
|
|
|
- name: build-container
|
|
|
|
image: plugins/docker
|
|
|
|
settings:
|
|
|
|
registry: scm.project42.io
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
username:
|
|
|
|
from_secret: registry_username
|
|
|
|
password:
|
|
|
|
from_secret: registry_password
|
|
|
|
repo: scm.project42.io/elia/tricks
|
2023-07-03 18:41:23 +00:00
|
|
|
dry_run: false
|
2023-07-03 16:57:17 +00:00
|
|
|
squash: true
|
2023-07-03 17:24:08 +00:00
|
|
|
compress: true
|
2023-07-03 16:57:17 +00:00
|
|
|
tags:
|
|
|
|
- pre-scan
|
|
|
|
- "${DRONE_COMMIT_SHA:0:8}"
|
2023-07-03 21:12:34 +00:00
|
|
|
depends_on:
|
|
|
|
- test-build-container
|
2023-07-03 16:57:17 +00:00
|
|
|
|
2023-07-03 21:12:34 +00:00
|
|
|
trigger:
|
|
|
|
exclude:
|
|
|
|
event:
|
|
|
|
- promote
|
|
|
|
|
|
|
|
---
|
|
|
|
kind: pipeline
|
|
|
|
name: scan
|
|
|
|
|
|
|
|
steps:
|
2023-07-03 17:05:23 +00:00
|
|
|
- name: trivy-scan
|
2023-07-03 21:19:50 +00:00
|
|
|
image: scm.project42.io/elia/tricks:production
|
2023-07-03 17:05:23 +00:00
|
|
|
commands:
|
2023-07-03 21:12:34 +00:00
|
|
|
- trivy image --image-src remote scm.project42.io/elia/tricks:"${DRONE_COMMIT_SHA:0:8}"
|
2023-07-03 20:43:26 +00:00
|
|
|
|
2023-07-03 21:12:34 +00:00
|
|
|
depends_on:
|
|
|
|
- test
|
|
|
|
|
2023-07-03 17:01:08 +00:00
|
|
|
trigger:
|
|
|
|
exclude:
|
|
|
|
event:
|
|
|
|
- promote
|
|
|
|
|
2023-07-03 16:57:17 +00:00
|
|
|
---
|
|
|
|
kind: pipeline
|
2023-07-03 17:01:08 +00:00
|
|
|
name: build
|
2023-07-03 16:57:17 +00:00
|
|
|
|
|
|
|
steps:
|
2023-07-03 21:19:50 +00:00
|
|
|
- name: promote-container
|
|
|
|
image: scm.project42.io/elia/tricks:production
|
2023-07-03 21:05:03 +00:00
|
|
|
environment:
|
|
|
|
REGISTRY_USERNAME:
|
2023-07-03 16:57:17 +00:00
|
|
|
from_secret: registry_username
|
2023-07-03 21:05:03 +00:00
|
|
|
REGISTRY_PASSWORD:
|
2023-07-03 16:57:17 +00:00
|
|
|
from_secret: registry_password
|
2023-07-03 21:05:03 +00:00
|
|
|
commands:
|
2023-07-03 21:12:34 +00:00
|
|
|
- oras cp --from-username "$REGISTRY_USERNAME" --from-password "$REGISTRY_PASSWORD" --to-username "$REGISTRY_USERNAME" --to-password "$REGISTRY_PASSWORD" "scm.project42.io/elia/tricks:${DRONE_COMMIT_SHA:0:8}" scm.project42.io/elia/tricks:production
|
2023-07-03 17:01:08 +00:00
|
|
|
when:
|
|
|
|
event:
|
|
|
|
- promote
|
|
|
|
target:
|
|
|
|
- production
|
2023-07-03 16:57:17 +00:00
|
|
|
|
|
|
|
depends_on:
|
2023-07-03 21:12:34 +00:00
|
|
|
- scan
|
2023-07-03 16:57:17 +00:00
|
|
|
|
|
|
|
trigger:
|
|
|
|
event:
|
|
|
|
- promote
|
|
|
|
target:
|
|
|
|
- production
|