DevFW-CICD/fibonacci_pipeline
13
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Added workflow

Browse source
This commit is contained in:
Richard Robert Reitz 2024-12-16 12:22:43 +01:00
parent d840abd759
commit 7cf2426f64
1 changed files with 34 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
.github/workflows/.github-ci.yaml vendored Normal file
View file

@ -0,0 +1,34 @@
name: ci-workflow
on: [push]
jobs:
ci:
runs-on: docker
container:
image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/complete:v0.0.1
steps:
- name: Clone Repository
uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main
- name: Lint the Repository
run: |
which trivy
golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1
- name: Build Credentials File
run: |
mkdir -p ~/.docker
AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0)
echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > ~/.docker/config.json
- name: Build Docker Container
run: |
KO_DOCKER_REPO="forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go" ko build --bare ./cmd
- name: Vulnerability Scanning
run: |
trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest
trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest