Skip to content
Snippets Groups Projects
Verified Commit 72dd96a5 authored by Jonas Gröger's avatar Jonas Gröger :palm_tree:
Browse files

refactor(pipeline): use imported pipeline for hadolint and trivy filesystem

parent 8376d2ea
No related branches found
No related tags found
No related merge requests found
......@@ -5,23 +5,24 @@
- mkdir --mode 700 -p ~/.ssh
- echo "$UBERSPACE_KNOWN_HOST" >> ~/.ssh/known_hosts
include:
- project: 'fit-connect/pipeline'
ref: main
file: 'trivy.gitlab-ci.yml'
cache:
paths:
- node_modules/
stages:
- test
- lint
- build
- deploy
.trivy:filesystem:
stage: test
image:
name: $DOCKER_PULL_REGISTRY/aquasec/trivy:latest
entrypoint: [""]
script:
- trivy filesystem --security-checks vuln,config --severity HIGH,CRITICAL --exit-code 1 .
- trivy filesystem --security-checks vuln,config --severity UNKNOWN,LOW,MEDIUM .
trivy-filesystem:
extends: .trivy-filesystem
variables:
DOCKER_REGISTRY_READ: $DOCKER_PULL_REGISTRY
build:
stage: build
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment