From 896bde316fa6f276905e8aab8c7e75e0287a6562 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:03:08 +0000 Subject: [PATCH] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 27 +++++---------------------- 1 file changed, 5 insertions(+), 22 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 083d681..ee2eb95 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,27 +14,10 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - run: | - which trivy - golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main + with: + source: './...' - - name: Build Credentials File - run: | - mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - - - name: Build Docker Container - run: | - /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + #- name: Build Docker Container - - name: Vulnerability Scanning - run: | - exit 0 - pwd - whoami - which trivy || true - ls -la /usr/local/bin || true - ls -la /usr/bin || true - trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + #- name: Vulnerability Scanning