Compare commits
23 Commits
12d7e880d9
...
master
| Author | SHA1 | Date | |
|---|---|---|---|
| dfcea79f84 | |||
| 06fbf2e4de | |||
| b453dd3b9e | |||
| 46dc855a06 | |||
| 623a909e43 | |||
| 9a390bb831 | |||
| 0e3ae13474 | |||
| dba043a4af | |||
| 8a2536dd5d | |||
| 1d803dbe64 | |||
| 99eb2193cd | |||
| ea5e6f2f06 | |||
| fc3bf98fbd | |||
| 1c04f377bb | |||
| d0a576e76f | |||
| 345bc2c08a | |||
| 9d2c2b7bcd | |||
| 2a25da1e77 | |||
| 2209f36943 | |||
| 4c6bb29f9c | |||
| 173b2778ce | |||
| f28607e405 | |||
| dc3b4628ec |
@ -1,3 +1,9 @@
|
|||||||
CVE-2024-4068
|
CVE-2024-4068
|
||||||
CVE-2024-21538
|
CVE-2024-21538
|
||||||
CVE-2024-21536
|
CVE-2024-21536
|
||||||
|
CVE-2025-7783
|
||||||
|
CVE-2024-29415
|
||||||
|
CVE-2022-23539
|
||||||
|
CVE-2022-24771
|
||||||
|
CVE-2022-24772
|
||||||
|
CVE-2024-29180
|
||||||
|
|||||||
@ -3,6 +3,11 @@ when:
|
|||||||
branch: [master, feature/*]
|
branch: [master, feature/*]
|
||||||
|
|
||||||
steps:
|
steps:
|
||||||
|
- name: trivy-scan
|
||||||
|
image: aquasec/trivy:latest
|
||||||
|
commands:
|
||||||
|
- trivy fs --scanners vuln,config --exit-code 1 --ignorefile .trivyignore --severity HIGH,CRITICAL frontend/
|
||||||
|
|
||||||
- name: lint-frontend
|
- name: lint-frontend
|
||||||
image: node:24
|
image: node:24
|
||||||
commands:
|
commands:
|
||||||
@ -10,27 +15,21 @@ steps:
|
|||||||
- npm install
|
- npm install
|
||||||
- npm run lint
|
- npm run lint
|
||||||
|
|
||||||
- name: trivy-scan
|
|
||||||
image: aquasec/trivy:latest
|
|
||||||
commands:
|
|
||||||
- trivy fs --scanners vuln,config --exit-code 1 --ignorefile .trivyignore --severity HIGH,CRITICAL frontend/
|
|
||||||
|
|
||||||
- name: build-frontend
|
|
||||||
image: node:24
|
|
||||||
commands:
|
|
||||||
- cd frontend
|
|
||||||
- npm run build
|
|
||||||
|
|
||||||
- name: build-and-publish
|
- name: build-and-publish
|
||||||
image: woodpeckerci/plugin-kaniko
|
image: woodpeckerci/plugin-docker-buildx
|
||||||
settings:
|
settings:
|
||||||
registry: ${docker_registry}
|
registry:
|
||||||
repo: ${docker_registry}/taqi/portfolio
|
from_secret: docker_registry
|
||||||
|
repo:
|
||||||
|
from_secret: portfolio_docker_repo
|
||||||
tags:
|
tags:
|
||||||
- latest
|
- latest
|
||||||
- 1.0.0-${CI_PIPELINE_NUMBER} # Ref: https://woodpecker-ci.org/docs/usage/environment
|
- 1.0.0-${CI_PIPELINE_NUMBER} # Ref: https://woodpecker-ci.org/docs/usage/environment
|
||||||
cache: true
|
|
||||||
skip_tls_verify: false # set to true for testing registries ONLY with self-signed certs
|
skip_tls_verify: false # set to true for testing registries ONLY with self-signed certs
|
||||||
build_args:
|
build_args:
|
||||||
- COMMIT_SHA=${CI_COMMIT_SHA}
|
- COMMIT_SHA=${CI_COMMIT_SHA}
|
||||||
- COMMIT_AUTHOR_EMAIL=${CI_COMMIT_AUTHOR_EMAIL}
|
- COMMIT_AUTHOR_EMAIL=${CI_COMMIT_AUTHOR_EMAIL}
|
||||||
|
username:
|
||||||
|
from_secret: docker-username
|
||||||
|
password:
|
||||||
|
from_secret: docker-password
|
||||||
|
|||||||
Reference in New Issue
Block a user