Configure Dependency Scanning in .gitlab-ci.yml, creating this file if it does not already exist
This commit is contained in:
+19
-18
@@ -1,33 +1,34 @@
|
||||
# You can override the included template(s) by including variable overrides
|
||||
# SAST customization: https://docs.gitlab.com/ee/user/application_security/sast/#customizing-the-sast-settings
|
||||
# Secret Detection customization: https://docs.gitlab.com/ee/user/application_security/secret_detection/#customizing-settings
|
||||
# Dependency Scanning customization: https://docs.gitlab.com/ee/user/application_security/dependency_scanning/#customizing-the-dependency-scanning-settings
|
||||
# Note that environment variables can be set in several places
|
||||
# See https://docs.gitlab.com/ee/ci/variables/#cicd-variable-precedence
|
||||
variables:
|
||||
GOCACHE: "${CI_PROJECT_DIR}/_go/cache"
|
||||
DOCKER_HOST: tcp://docker:2375
|
||||
DOCKER_DRIVER: overlay2
|
||||
|
||||
before_script:
|
||||
- mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache}
|
||||
- rm -rf /go/pkg
|
||||
- ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg
|
||||
- ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin
|
||||
|
||||
- mkdir -p ${CI_PROJECT_DIR}/_go/{pkg,bin,cache}
|
||||
- rm -rf /go/pkg
|
||||
- ln -s ${CI_PROJECT_DIR}/_go/pkg /go/pkg
|
||||
- ln -s ${CI_PROJECT_DIR}/_go/bin /go/bin
|
||||
cache:
|
||||
key: "$CI_COMMIT_REF_NAME"
|
||||
paths:
|
||||
- _go
|
||||
untracked: true
|
||||
|
||||
stages:
|
||||
- deps
|
||||
- test
|
||||
- build
|
||||
- package
|
||||
- release
|
||||
|
||||
- deps
|
||||
- test
|
||||
- build
|
||||
- package
|
||||
- release
|
||||
deps:
|
||||
stage: deps
|
||||
image: golang:1.12
|
||||
script:
|
||||
- go get -mod=readonly
|
||||
|
||||
test:
|
||||
stage: test
|
||||
dependencies:
|
||||
@@ -37,18 +38,17 @@ test:
|
||||
- go fmt $(go list ./...)
|
||||
- go vet $(go list ./...)
|
||||
- CGO_ENABLED=1 go test -mod=readonly -race $(go list ./...) -coverprofile .testCoverage.txt
|
||||
|
||||
build:
|
||||
stage: build
|
||||
dependencies:
|
||||
- deps
|
||||
image: golang:1.12
|
||||
script:
|
||||
- GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder -ldflags '-w -s'
|
||||
- GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -mod=readonly -o release/default-request-adder
|
||||
-ldflags '-w -s'
|
||||
artifacts:
|
||||
paths:
|
||||
- release/
|
||||
|
||||
package:
|
||||
stage: package
|
||||
dependencies:
|
||||
@@ -63,7 +63,6 @@ package:
|
||||
- docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
|
||||
- docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
|
||||
- docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
|
||||
|
||||
release:
|
||||
stage: release
|
||||
dependencies:
|
||||
@@ -79,3 +78,5 @@ release:
|
||||
- docker push $CI_REGISTRY_IMAGE:latest
|
||||
only:
|
||||
- master
|
||||
include:
|
||||
- template: Security/Dependency-Scanning.gitlab-ci.yml
|
||||
|
||||
Reference in New Issue
Block a user