23 DOCKER_HOST: tcp://docker:2375
24 DOCKER_DRIVER: overlay2
26 - docker login $CI_REGISTRY -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD
27 - docker build . -t $CI_REGISTRY_IMAGE:$CI_PIPELINE_IID
28 - docker push $CI_REGISTRY_IMAGE:$CI_PIPELINE_IID
32 KUBECONFIG: /kubeconfig.yml
34 - curl -sLo /usr/local/bin/kubectl https://storage.googleapis.com/kubernetes-release/release/v1.12.2/bin/linux/amd64/kubectl
35 - chmod +x /usr/local/bin/kubectl
37 - echo $KUBE_CONFIG | base64 -d > $KUBECONFIG
39 - kubectl config set-credentials gitlab --token=$KUBE_TOKEN
40 - kubectl -n builds set image deployment/builds $CI_REGISTRY_IMAGE:$CI_PIPELINE_IID
41 - kubectl -n builds rollout status --timeout 60s deploy/builds || (kubectl -n builds rollout undo deploy/builds && false)
46 # EVERYTHING BELOW HERE CAN BE IGNORED
47 # DO NOT TOUCH ANYTHING BELOW THIS LINE
52 DOCKER_DRIVER: overlay2
57 - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
59 --env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
61 --volume /var/run/docker.sock:/var/run/docker.sock
62 "registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
65 dependency_scanning: gl-dependency-scanning-report.json
70 DOCKER_DRIVER: overlay2
75 - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
77 --env SAST_CONFIDENCE_LEVEL="${SAST_CONFIDENCE_LEVEL:-3}"
79 --volume /var/run/docker.sock:/var/run/docker.sock
80 "registry.gitlab.com/gitlab-org/security-products/sast:$SP_VERSION" /app/bin/run /code