unboundsoftware/default-request-adder
6
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases 28 Activity

Configure Dependency Scanning in .gitlab-ci.yml, creating this file if it does not already exist

Browse Source
This commit is contained in:
Joakim Olsson
2021-09-14 06:50:11 +00:00
parent de61e7e9d9
commit a4dc2f1111
1 changed files with 41 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitlab-ci.yml
+10 -9
View File
@@ -1,33 +1,34 @@
# You can override the included template(s) by including variable overrides
# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings
# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
# Note that environment variables can be set in several places
# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
variables: variables:
GOCACHE: "${CI_PROJECT_DIR}/_go/cache" GOCACHE: "${CI_PROJECT_DIR}/_go/cache"
DOCKER_HOST: tcp://docker:2375 DOCKER_HOST: tcp://docker:2375
DOCKER_DRIVER: overlay2 DOCKER_DRIVER: overlay2
before_script: before_script:
- mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache} - mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache}
- rm -rf /go/pkg - rm -rf /go/pkg
- ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg - ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg
- ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin - ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin
cache: cache:
key: "$CI_COMMIT_REF_NAME" key: "$CI_COMMIT_REF_NAME"
paths: paths:
- _go - _go
untracked: true untracked: true
stages: stages:
- deps - deps
- test - test
- build - build
- package - package
- release - release
deps: deps:
stage: deps stage: deps
image: golang:1.12 image: golang:1.12
script: script:
- go get -mod=readonly - go get -mod=readonly
test: test:
stage: test stage: test
dependencies: dependencies:
@@ -37,18 +38,17 @@ test:
- go fmt $(go list ./...) - go fmt $(go list ./...)
- go vet $(go list ./...) - go vet $(go list ./...)
- CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt - CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt
build: build:
stage: build stage: build
dependencies: dependencies:
- deps - deps
image: golang:1.12 image: golang:1.12
script: script:
- GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder -ldflags '-w -s' - GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder
-ldflags '-w -s'
artifacts: artifacts:
paths: paths:
- release/ - release/
package: package:
stage: package stage: package
dependencies: dependencies:
@@ -63,7 +63,6 @@ package:
- docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
- docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
- docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
release: release:
stage: release stage: release
dependencies: dependencies:
@@ -79,3 +78,5 @@ release:
- docker push $CI_REGISTRY_IMAGE:latest - docker push $CI_REGISTRY_IMAGE:latest
only: only:
- master - master
include:
- template: Security/Dependency-Scanning.gitlab-ci.yml