Markus Pesch
0378d2ad4a
All checks were successful
continuous-integration/drone/push Build is passing
667 lines
11 KiB
YAML
667 lines
11 KiB
YAML
---
|
|
kind: pipeline
|
|
type: kubernetes
|
|
name: linter
|
|
|
|
platform:
|
|
os: linux
|
|
|
|
steps:
|
|
- name: markdown lint
|
|
commands:
|
|
- markdownlint *.md
|
|
image: docker.io/volkerraschek/markdownlint:0.31.1
|
|
resources:
|
|
limits:
|
|
cpu: 150
|
|
memory: 150M
|
|
|
|
- name: email-notification
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
image: docker.io/drillster/drone-email:latest
|
|
resources:
|
|
limits:
|
|
cpu: 150
|
|
memory: 150M
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
trigger:
|
|
event:
|
|
exclude:
|
|
- tag
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: dry-run-amd64
|
|
|
|
platform:
|
|
os: linux
|
|
arch: amd64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
dry_run: true
|
|
tags: latest-amd64
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
exclude:
|
|
- master
|
|
event:
|
|
- pull_request
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: dry-run-arm-v7
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
dry_run: true
|
|
tags: latest-arm-v7
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
exclude:
|
|
- master
|
|
event:
|
|
- pull_request
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: dry-run-arm64-v8
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
dry_run: true
|
|
tags: latest-arm64-v8
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
exclude:
|
|
- master
|
|
event:
|
|
- pull_request
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: latest-amd64
|
|
|
|
platform:
|
|
os: linux
|
|
arch: amd64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
tags: latest-amd64
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
- master
|
|
event:
|
|
- cron
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: latest-arm-v7
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
tags: latest-arm-v7
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
- master
|
|
event:
|
|
- cron
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: latest-arm64-v8
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: false
|
|
tags: latest-arm64-v8
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
no_cache: true
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
depends_on:
|
|
- linter
|
|
|
|
trigger:
|
|
branch:
|
|
- master
|
|
event:
|
|
- cron
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: kubernetes
|
|
name: latest-manifest
|
|
|
|
steps:
|
|
- name: build-manifest
|
|
image: docker.io/plugins/manifest:latest
|
|
settings:
|
|
auto_tag: false
|
|
ignore_missing: true
|
|
spec: manifest.tmpl
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
resources:
|
|
limits:
|
|
cpu: 150
|
|
memory: 150M
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
depends_on:
|
|
- latest-amd64
|
|
- latest-arm-v7
|
|
- latest-arm64-v8
|
|
|
|
trigger:
|
|
branch:
|
|
- master
|
|
event:
|
|
- cron
|
|
- push
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: tagged-amd64
|
|
|
|
platform:
|
|
os: linux
|
|
arch: amd64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: true
|
|
auto_tag_suffix: amd64
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
build_args:
|
|
- HELM_VERSION=${DRONE_TAG}
|
|
no_cache: true
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
trigger:
|
|
event:
|
|
- tag
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: tagged-arm-v7
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: true
|
|
auto_tag_suffix: arm-v7
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
build_args:
|
|
- HELM_VERSION=${DRONE_TAG}
|
|
no_cache: true
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
trigger:
|
|
event:
|
|
- tag
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: tagged-arm64-v8
|
|
|
|
platform:
|
|
os: linux
|
|
arch: arm64
|
|
|
|
steps:
|
|
- name: build
|
|
image: docker.io/plugins/docker:latest
|
|
settings:
|
|
dockerfile: Dockerfile
|
|
auto_tag: true
|
|
auto_tag_suffix: arm64-v8
|
|
repo: volkerraschek/gosec
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
build_args:
|
|
- HELM_VERSION=${DRONE_TAG}
|
|
no_cache: true
|
|
volumes:
|
|
- name: docker_socket
|
|
path: /var/run/docker.sock
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
volumes:
|
|
- name: docker_socket
|
|
host:
|
|
path: /var/run/docker.sock
|
|
|
|
trigger:
|
|
event:
|
|
- tag
|
|
repo:
|
|
- volker.raschek/gosec-docker
|
|
|
|
---
|
|
kind: pipeline
|
|
type: kubernetes
|
|
name: tagged-manifest
|
|
|
|
steps:
|
|
- name: build-manifest
|
|
image: docker.io/plugins/manifest:latest
|
|
settings:
|
|
auto_tag: true
|
|
ignore_missing: true
|
|
spec: manifest.tmpl
|
|
username:
|
|
from_secret: container_image_registry_user
|
|
password:
|
|
from_secret: container_image_registry_password
|
|
|
|
- name: notify
|
|
image: docker.io/drillster/drone-email:latest
|
|
environment:
|
|
PLUGIN_HOST:
|
|
from_secret: smtp_host
|
|
PLUGIN_USERNAME:
|
|
from_secret: smtp_username
|
|
PLUGIN_PASSWORD:
|
|
from_secret: smtp_password
|
|
PLUGIN_FROM:
|
|
from_secret: smtp_mail_address
|
|
resources:
|
|
limits:
|
|
cpu: 150
|
|
memory: 150M
|
|
when:
|
|
status:
|
|
- changed
|
|
- failure
|
|
|
|
depends_on:
|
|
- tagged-amd64
|
|
- tagged-arm-v7
|
|
- tagged-arm64-v8
|
|
|
|
trigger:
|
|
event:
|
|
- tag
|
|
repo:
|
|
- volker.raschek/gosec-docker
|