projects / GitLab / stricted-build / lineage_builder.git / blob
? search:


bef5d6d2a5ec3810fe1ad0bac853440d91a7e758
[GitLab/stricted-build/lineage_builder.git] / .gitlab-ci.yml
1 stages:
2 - test
3 - build
4
5 test:
6 stage: test
7 image: python:3.6
8 tags:
9 - docker
10 variables:
11 FLASK_TESTING: "True"
12 script:
13 - pip install -e .
14 - python test.py
15
16 build:
17 stage: build
18 image: docker:stable
19 services:
20 - docker:dind
21 variables:
22 DOCKER_HOST: tcp://docker:2375
23 DOCKER_DRIVER: overlay2
24 script:
25 - docker login $CI_REGISTRY -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD
26 - docker build . -t $CI_REGISTRY_IMAGE:$CI_PIPELINE_IID
27 - docker push $CI_REGISTRY_IMAGE:$CI_PIPELINE_IID
28
29
30 # EVERYTHING BELOW HERE CAN BE IGNORED
31 # DO NOT TOUCH ANYTHING BELOW THIS LINE
32 dependency_scanning:
33 stage: test
34 image: docker:stable
35 variables:
36 DOCKER_DRIVER: overlay2
37 allow_failure: true
38 services:
39 - docker:stable-dind
40 script:
41 - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
42 - docker run
43 --env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
44 --volume "$PWD:/code"
45 --volume /var/run/docker.sock:/var/run/docker.sock
46 "registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
47 artifacts:
48 reports:
49 dependency_scanning: gl-dependency-scanning-report.json
50 sast:
51 stage: test
52 image: docker:stable
53 variables:
54 DOCKER_DRIVER: overlay2
55 allow_failure: true
56 services:
57 - docker:stable-dind
58 script:
59 - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
60 - docker run
61 --env SAST_CONFIDENCE_LEVEL="${SAST_CONFIDENCE_LEVEL:-3}"
62 --volume "$PWD:/code"
63 --volume /var/run/docker.sock:/var/run/docker.sock
64 "registry.gitlab.com/gitlab-org/security-products/sast:$SP_VERSION" /app/bin/run /code
65 artifacts:
66 reports:
67 sast: gl-sast-report
https://builds.stricted.net/