tricks/.drone.yml
Elia el Lazkani 72a413bd45
Some checks failed
continuous-integration/drone/push Build is failing
continuous-integration/drone/promote/production Build is failing
chore(): Push on promotion without needing a passing scan
2024-01-20 00:45:27 +01:00

73 lines
1.3 KiB
YAML

---
kind: pipeline
name: build
steps:
- name: build-container
image: plugins/docker
settings:
registry: scm.project42.io
dockerfile: Dockerfile
username:
from_secret: registry_username
password:
from_secret: registry_password
repo: scm.project42.io/elia/tricks
dry_run: false
squash: true
compress: true
tags:
- "${DRONE_COMMIT_SHA:0:8}"
when:
event:
exclude:
- promote
trigger:
exclude:
event:
- promote
---
kind: pipeline
name: scan
steps:
- name: trivy-scan
image: scm.project42.io/elia/tricks:latest
environment:
REGISTRY_USERNAME:
from_secret: registry_username
REGISTRY_PASSWORD:
from_secret: registry_password
commands:
- quick-scan -i scm.project42.io/elia/tricks -t "${DRONE_COMMIT_SHA:0:8}"
depends_on:
- build
---
kind: pipeline
name: deploy
steps:
- name: promote-container
image: scm.project42.io/elia/tricks:latest
environment:
REGISTRY_USERNAME:
from_secret: registry_username
REGISTRY_PASSWORD:
from_secret: registry_password
commands:
- oras tag --username "$REGISTRY_USERNAME" --password "$REGISTRY_PASSWORD" "scm.project42.io/elia/tricks:${DRONE_COMMIT_SHA:0:8}" latest
when:
event:
- promote
target:
- production
trigger:
event:
- promote
target:
- production