diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index b41bc87..a7f2dc6 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -1,81 +1,82 @@ +# You can override the included template(s) by including variable overrides +# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings +# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings +# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings +# Note that environment variables can be set in several places +# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence variables: GOCACHE: "${CI_PROJECT_DIR}/_go/cache" DOCKER_HOST: tcp://docker:2375 DOCKER_DRIVER: overlay2 - before_script: - - mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache} - - rm -rf /go/pkg - - ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg - - ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin - +- mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache} +- rm -rf /go/pkg +- ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg +- ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin cache: key: "$CI_COMMIT_REF_NAME" paths: - - _go + - _go untracked: true - stages: - - deps - - test - - build - - package - - release - +- deps +- test +- build +- package +- release deps: stage: deps image: golang:1.12 script: - - go get -mod=readonly - + - go get -mod=readonly test: stage: test dependencies: - - deps + - deps image: golang:1.12 script: - - go fmt $(go list ./...) - - go vet $(go list ./...) - - CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt - + - go fmt $(go list ./...) + - go vet $(go list ./...) + - CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt build: stage: build dependencies: - - deps + - deps image: golang:1.12 script: - - GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder -ldflags '-w -s' + - GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder + -ldflags '-w -s' artifacts: paths: - - release/ - + - release/ package: stage: package dependencies: - - build + - build image: docker:stable services: - - docker:dind + - docker:dind before_script: - - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY + - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY script: - - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA . - - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME - - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA - - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME - + - docker build -t $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA . + - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME + - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA + - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME release: stage: release dependencies: - - package + - package image: docker:stable services: - - docker:dind + - docker:dind before_script: - - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY + - docker login -u gitlab-ci-token -p $CI_JOB_TOKEN $CI_REGISTRY script: - - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA - - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:latest - - docker push $CI_REGISTRY_IMAGE:latest + - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA + - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:latest + - docker push $CI_REGISTRY_IMAGE:latest only: - - master \ No newline at end of file + - master +include: +- template: Security/Dependency-Scanning.gitlab-ci.yml