tricks/.drone.yml
Elia el Lazkani 4c608b01c9
Some checks failed
continuous-integration/drone/push Build is failing
chore(): Adds a Trivy scanning step
2023-07-03 19:05:23 +02:00

66 lines
1.1 KiB
YAML

---
kind: pipeline
name: test
steps:
- name: test-build-container
image: plugins/docker
settings:
registry: scm.project42.io
dockerfile: Dockerfile
username:
from_secret: registry_username
password:
from_secret: registry_password
repo: scm.project42.io/elia/trivy
dry_run: true
squash: true
purge: false
tags:
- pre-scan
- "${DRONE_COMMIT_SHA:0:8}"
- name: trivy-scan
image: scm.project42.io/elia/trivy:production
commands:
- trivy image scm.project42.io/elia/trivy:pre-scan
trigger:
exclude:
event:
- promote
---
kind: pipeline
name: build
steps:
- name: build-container
image: plugins/docker
settings:
registry: scm.project42.io
dockerfile: Dockerfile
username:
from_secret: registry_username
password:
from_secret: registry_password
repo: scm.project42.io/elia/trivy
dry_run: false
squash: true
tags:
- production
- "${DRONE_COMMIT_SHA:0:8}"
when:
event:
- promote
target:
- production
depends_on:
- test
trigger:
event:
- promote
target:
- production