From 741cddf2f7788b47b7dd022da3acc1206587ef58 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 5 Dec 2024 15:56:54 +0100 Subject: [PATCH 01/83] adds .github-ci.yaml --- .github/.github-ci.yaml | 38 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 .github/.github-ci.yaml diff --git a/.github/.github-ci.yaml b/.github/.github-ci.yaml new file mode 100644 index 0000000..0bcbc95 --- /dev/null +++ b/.github/.github-ci.yaml @@ -0,0 +1,38 @@ +name: ci-workflow + +on: + push: + branches: + - IPCEICIS-760_Port_ArgoWorkflow_to_Forgejo_Actions + +jobs: + ci: + steps: + # checkout repository + - name: checkout + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main + # with: + # ref: main # Specify the branch or tag in the templates repository + + # linting with Trivy + - name: lint + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main + with: + source: "./" + + # build and publish image + - name: build + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/build/.github/workflows/build-docker.yml@main + with: + dockerfile: './Dockerfile' + context: './shared-data/repo/' + tag: 'gitea.cnoe.localtest.me/giteaadmin/fibonacci_go:latest' + registry: 'gitea.cnoe.localtest.me' + username: ${{ secrets.REGISTRY_USERNAME }} + password: ${{ secrets.REGISTRY_PASSWORD }} + + # vulnerability scanning with Trivy + - name: vulnerability-scan + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/vulnerability-scan/.github/workflows/trivy-image-scan.yml@main + with: + image: gitea.cnoe.localtest.me/giteaadmin/fibonacci_go:latest # Specify Docker image name From c5a7c65fa8574435e04860e2231059fb79acac93 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 5 Dec 2024 16:01:12 +0100 Subject: [PATCH 02/83] just a test --- just_a_change.txt | 0 1 file changed, 0 insertions(+), 0 deletions(-) create mode 100644 just_a_change.txt diff --git a/just_a_change.txt b/just_a_change.txt new file mode 100644 index 0000000..e69de29 From 8dbb4c1d422a7017730f72fd8ba62c19cf07d6ea Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 5 Dec 2024 16:12:53 +0100 Subject: [PATCH 03/83] updates .github-ci.yaml --- .github/.github-ci.yaml | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/.github/.github-ci.yaml b/.github/.github-ci.yaml index 0bcbc95..9aa6296 100644 --- a/.github/.github-ci.yaml +++ b/.github/.github-ci.yaml @@ -1,9 +1,6 @@ name: ci-workflow -on: - push: - branches: - - IPCEICIS-760_Port_ArgoWorkflow_to_Forgejo_Actions +on: [push] jobs: ci: From 1a07f5ba84450c385af9ec620d0c6b49cd7aefdb Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 5 Dec 2024 16:28:14 +0100 Subject: [PATCH 04/83] updates .github-ci.yaml --- .github/{ => workflows}/.github-ci.yaml | 1 - 1 file changed, 1 deletion(-) rename .github/{ => workflows}/.github-ci.yaml (99%) diff --git a/.github/.github-ci.yaml b/.github/workflows/.github-ci.yaml similarity index 99% rename from .github/.github-ci.yaml rename to .github/workflows/.github-ci.yaml index 9aa6296..e8c7aed 100644 --- a/.github/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -1,7 +1,6 @@ name: ci-workflow on: [push] - jobs: ci: steps: From afff26d2cc0d0d1132e09e971fc8783c3ac0320a Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 5 Dec 2024 16:32:58 +0100 Subject: [PATCH 05/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e8c7aed..eec6ce8 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -3,6 +3,7 @@ name: ci-workflow on: [push] jobs: ci: + runs-on: ubuntu-latest steps: # checkout repository - name: checkout From 9a6b708aca555c63c08e9b18eaa7752ce7767acf Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 09:49:48 +0100 Subject: [PATCH 06/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index eec6ce8..22b161b 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -3,7 +3,7 @@ name: ci-workflow on: [push] jobs: ci: - runs-on: ubuntu-latest + runs-on: docker steps: # checkout repository - name: checkout From 420a419e3551938c90d994a202424272312306c9 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 09:54:52 +0100 Subject: [PATCH 07/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 23 +---------------------- 1 file changed, 1 insertion(+), 22 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 22b161b..5b7ae77 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -11,25 +11,4 @@ jobs: # with: # ref: main # Specify the branch or tag in the templates repository - # linting with Trivy - - name: lint - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main - with: - source: "./" - - # build and publish image - - name: build - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/build/.github/workflows/build-docker.yml@main - with: - dockerfile: './Dockerfile' - context: './shared-data/repo/' - tag: 'gitea.cnoe.localtest.me/giteaadmin/fibonacci_go:latest' - registry: 'gitea.cnoe.localtest.me' - username: ${{ secrets.REGISTRY_USERNAME }} - password: ${{ secrets.REGISTRY_PASSWORD }} - - # vulnerability scanning with Trivy - - name: vulnerability-scan - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/vulnerability-scan/.github/workflows/trivy-image-scan.yml@main - with: - image: gitea.cnoe.localtest.me/giteaadmin/fibonacci_go:latest # Specify Docker image name + From dc3736df67fe276993f3eade10083287870a97c9 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 09:56:44 +0100 Subject: [PATCH 08/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 5b7ae77..412219c 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -7,7 +7,7 @@ jobs: steps: # checkout repository - name: checkout - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main + uses: DevFW-CICD/checkout/action.yml@main # with: # ref: main # Specify the branch or tag in the templates repository From d521b71c052e5e660881ef1c5e24c680273baf6f Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 10:06:11 +0100 Subject: [PATCH 09/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 412219c..cf60f94 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -8,7 +8,7 @@ jobs: # checkout repository - name: checkout uses: DevFW-CICD/checkout/action.yml@main - # with: - # ref: main # Specify the branch or tag in the templates repository + with: + ref: main # Specify the branch or tag in the templates repository From 2bf940212a6623eab8f38fdfdba258230bc97c66 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 10:10:52 +0100 Subject: [PATCH 10/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index cf60f94..28c3698 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -10,5 +10,6 @@ jobs: uses: DevFW-CICD/checkout/action.yml@main with: ref: main # Specify the branch or tag in the templates repository + server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 4220ba6f71b92da45ccc3951f0c602cc605c78f1 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 6 Dec 2024 10:12:41 +0100 Subject: [PATCH 11/83] updates .github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 28c3698..297c9df 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -7,7 +7,7 @@ jobs: steps: # checkout repository - name: checkout - uses: DevFW-CICD/checkout/action.yml@main + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main with: ref: main # Specify the branch or tag in the templates repository server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 905a7e90baaf0dd434d9e7cd7b4013b4db9cd082 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:17:17 +0000 Subject: [PATCH 12/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 297c9df..91b7583 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,11 +5,12 @@ jobs: ci: runs-on: docker steps: + - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." # checkout repository - - name: checkout - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main - with: - ref: main # Specify the branch or tag in the templates repository - server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git + #- name: checkout + # uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main + # with: + # ref: main # Specify the branch or tag in the templates repository + # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 28e82422870d8a11e27afd7d388a65cb8e559e88 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:22:41 +0000 Subject: [PATCH 13/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 91b7583..533cd5b 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,6 +6,8 @@ jobs: runs-on: docker steps: - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." + - name: Check out repository code + uses: actions/checkout@v3 # checkout repository #- name: checkout # uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main From 63925cfb3d0aebd27007bac155a8182cdfe9f3e2 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:29:51 +0000 Subject: [PATCH 14/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 533cd5b..d2601df 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -9,9 +9,11 @@ jobs: - name: Check out repository code uses: actions/checkout@v3 # checkout repository - #- name: checkout - # uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout/action.yml@main - # with: + - name: checkout + uses: DevFW-CICD/checkout/action.yml@main + with: + repository: DevFW-CICD/checkout + path: action.yml # ref: main # Specify the branch or tag in the templates repository # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 70f4dcc42ae1c0736a8782073dab131b5cfbb2ee Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:32:43 +0000 Subject: [PATCH 15/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index d2601df..797b5f9 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -10,10 +10,10 @@ jobs: uses: actions/checkout@v3 # checkout repository - name: checkout - uses: DevFW-CICD/checkout/action.yml@main + uses: DevFW-CICD/checkout@main with: repository: DevFW-CICD/checkout - path: action.yml + path: .github/workflows # ref: main # Specify the branch or tag in the templates repository # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From b9eff28f3566a95379e8ae0e6b02b93f5d61af33 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:34:34 +0000 Subject: [PATCH 16/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 797b5f9..bab2c28 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,14 +5,13 @@ jobs: ci: runs-on: docker steps: - - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." - - name: Check out repository code - uses: actions/checkout@v3 + #- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." + #- name: Check out repository code + # uses: actions/checkout@v3 # checkout repository - name: checkout uses: DevFW-CICD/checkout@main with: - repository: DevFW-CICD/checkout path: .github/workflows # ref: main # Specify the branch or tag in the templates repository # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 799e1a3fb73b453a6388f8876dfb620784f15aeb Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:38:31 +0000 Subject: [PATCH 17/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index bab2c28..b1c88ab 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -10,7 +10,7 @@ jobs: # uses: actions/checkout@v3 # checkout repository - name: checkout - uses: DevFW-CICD/checkout@main + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main with: path: .github/workflows # ref: main # Specify the branch or tag in the templates repository From c8218b575e938ebc6396ead3669ed6c8e3effce2 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:39:50 +0000 Subject: [PATCH 18/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index b1c88ab..f5f34a1 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -11,8 +11,8 @@ jobs: # checkout repository - name: checkout uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - with: - path: .github/workflows + #with: + #path: .github/workflows # ref: main # Specify the branch or tag in the templates repository # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 00c6d54d25401877c188f02c04d2c3bce306bdbe Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:54:22 +0000 Subject: [PATCH 19/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index f5f34a1..c4fe02e 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -11,9 +11,9 @@ jobs: # checkout repository - name: checkout uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - #with: + with: #path: .github/workflows - # ref: main # Specify the branch or tag in the templates repository + ref: main # Specify the branch or tag in the templates repository # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git From 83293957ea9c111f339e610e95925189d5d242b2 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 09:59:51 +0000 Subject: [PATCH 20/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 19 ++++++++++--------- 1 file changed, 10 insertions(+), 9 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index c4fe02e..2aeb8c3 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,14 +6,15 @@ jobs: runs-on: docker steps: #- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." - #- name: Check out repository code - # uses: actions/checkout@v3 + - name: Check out repository code + uses: actions/checkout@v3 # checkout repository - name: checkout - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - with: - #path: .github/workflows - ref: main # Specify the branch or tag in the templates repository - # server_url: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go.git - - + uses: DevFW-CICD/build/.github/workflows/build-docker.yml@main + with: + dockerfile: './Dockerfile' + context: './app' + tag: 'my-registry.com/my-app:latest' + registry: 'my-registry.com' + username: ${{ secrets.REGISTRY_USERNAME }} + password: ${{ secrets.REGISTRY_PASSWORD }} From 3e2eac7517ec07cd4caefcc1cfeafe47fea5f2a2 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:19:56 +0000 Subject: [PATCH 21/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 20 +++++++++++--------- 1 file changed, 11 insertions(+), 9 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 2aeb8c3..1291163 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -4,17 +4,19 @@ on: [push] jobs: ci: runs-on: docker + container: + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 steps: #- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." - name: Check out repository code uses: actions/checkout@v3 # checkout repository - - name: checkout - uses: DevFW-CICD/build/.github/workflows/build-docker.yml@main - with: - dockerfile: './Dockerfile' - context: './app' - tag: 'my-registry.com/my-app:latest' - registry: 'my-registry.com' - username: ${{ secrets.REGISTRY_USERNAME }} - password: ${{ secrets.REGISTRY_PASSWORD }} + - name: build + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/build/.github/workflows/build-docker.yml@main + with: + dockerfile: './Dockerfile' + context: '.' + tag: 'my-registry.com/my-app:latest' + registry: 'my-registry.com' + username: ${{ secrets.REGISTRY_USERNAME }} + password: ${{ secrets.REGISTRY_PASSWORD }} From f15c03ac6db1f1f70ac66a4ca3d737ca1000636b Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:23:01 +0000 Subject: [PATCH 22/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 10 +++------- 1 file changed, 3 insertions(+), 7 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 1291163..b83f428 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -8,15 +8,11 @@ jobs: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 steps: #- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." - - name: Check out repository code - uses: actions/checkout@v3 + #- name: Check out repository code + # uses: actions/checkout@v3 # checkout repository - name: build uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/build/.github/workflows/build-docker.yml@main with: dockerfile: './Dockerfile' - context: '.' - tag: 'my-registry.com/my-app:latest' - registry: 'my-registry.com' - username: ${{ secrets.REGISTRY_USERNAME }} - password: ${{ secrets.REGISTRY_PASSWORD }} + From 7647fc5820381b9303d171595913a594fe689a05 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:24:44 +0000 Subject: [PATCH 23/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 20 ++++++++++++-------- 1 file changed, 12 insertions(+), 8 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index b83f428..a7ac41a 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -7,12 +7,16 @@ jobs: container: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 steps: - #- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." - #- name: Check out repository code - # uses: actions/checkout@v3 - # checkout repository - - name: build - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/build/.github/workflows/build-docker.yml@main - with: - dockerfile: './Dockerfile' + - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." + - name: Clone Repository + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + - name: Build Credentials File + run: | + mkdir -p /kaniko/.docker + AUTHSTRING=$(echo -n "${{ inputs.username }}:${{ inputs.password }}" | base64) + echo "{\"auths\":{\"${{ inputs.registry }}\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + + - name: Build Docker Container + run: | + /kaniko/executor --dockerfile=${{ inputs.dockerfile }} --context=${{ inputs.context }} --destination=${{ inputs.tag }} From 33710b0606864b264edc74e511650f0e1771037b Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:29:29 +0000 Subject: [PATCH 24/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index a7ac41a..ae649c0 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -19,4 +19,7 @@ jobs: - name: Build Docker Container run: | + pwd + ls + ls -la /kaniko/executor --dockerfile=${{ inputs.dockerfile }} --context=${{ inputs.context }} --destination=${{ inputs.tag }} From 27be4486a37ca7fb7c447abd7d81f8c129c21236 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:31:31 +0000 Subject: [PATCH 25/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index ae649c0..17f10bd 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -22,4 +22,4 @@ jobs: pwd ls ls -la - /kaniko/executor --dockerfile=${{ inputs.dockerfile }} --context=${{ inputs.context }} --destination=${{ inputs.tag }} + /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go:v0.0.1 From 74215bf24b96d9dd1b8bde7c53c60798a07085d3 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:40:43 +0000 Subject: [PATCH 26/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 17f10bd..6fb8c89 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,8 +14,8 @@ jobs: - name: Build Credentials File run: | mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ inputs.username }}:${{ inputs.password }}" | base64) - echo "{\"auths\":{\"${{ inputs.registry }}\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64) + echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - name: Build Docker Container run: | From 10093188eec7dc81c832b485957944d5ed8c922d Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:41:37 +0000 Subject: [PATCH 27/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 6fb8c89..873047b 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -22,4 +22,4 @@ jobs: pwd ls ls -la - /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW/fibonacci_go:v0.0.1 + /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw/fibonacci_go:v0.0.1 From 1b4b4aa60a8533d785c349b22b9acf695c3d12bc Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:42:28 +0000 Subject: [PATCH 28/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 873047b..20fbc14 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -22,4 +22,5 @@ jobs: pwd ls ls -la + cat /kaniko/.docker/config.json /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw/fibonacci_go:v0.0.1 From c6672a6547e9c365a913b7ddc8ddaa7abd707ff7 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:43:22 +0000 Subject: [PATCH 29/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 20fbc14..cd025f9 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,7 +14,7 @@ jobs: - name: Build Credentials File run: | mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64) + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - name: Build Docker Container From e26c670d11c12cbc9553bde857b700ce85c4294b Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 10:51:36 +0000 Subject: [PATCH 30/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ---- 1 file changed, 4 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index cd025f9..5dbe0c3 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -19,8 +19,4 @@ jobs: - name: Build Docker Container run: | - pwd - ls - ls -la - cat /kaniko/.docker/config.json /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw/fibonacci_go:v0.0.1 From 64cacf7ed0e0653ebb73385b0d23afab6e41405f Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 12:25:01 +0000 Subject: [PATCH 31/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 5dbe0c3..2a1b030 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -8,6 +8,7 @@ jobs: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 steps: - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." + - name: Clone Repository uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main @@ -17,6 +18,6 @@ jobs: AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - - name: Build Docker Container + - name: Build and push Docker Container run: | /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw/fibonacci_go:v0.0.1 From 31fedf39f21c0c655809b221dfbc69e2d4dac3c3 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 13:19:50 +0000 Subject: [PATCH 32/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 34 +++++++++++++++++++------------ 1 file changed, 21 insertions(+), 13 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 2a1b030..c0c1125 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -4,20 +4,28 @@ on: [push] jobs: ci: runs-on: docker + container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 + image: ghcr.io/catthehacker/ubuntu:full-latest + steps: - - run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." + - uses: actions/checkout@v3 - - name: Clone Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + - uses: docker/metadata-action@v3 + id: metadata + with: + images: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }} - - name: Build Credentials File - run: | - mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - - - name: Build and push Docker Container - run: | - /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw/fibonacci_go:v0.0.1 + - uses: docker/login-action@v1 + with: + registry: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live + username: ${{ secrets.REGISTRY_USERNAME }} + password: ${{ secrets.REGISTRY_PASSWORD }} + + - uses: int128/kaniko-action@v1 + with: + push: true + tags: ${{ steps.metadata.outputs.tags }} + labels: ${{ steps.metadata.outputs.labels }} + cache: true + cache-repository: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache From 561ff9b4e1b4430de54c8777e96f7b96049ae620 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 13:31:29 +0000 Subject: [PATCH 33/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index c0c1125..db7730a 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: ghcr.io/catthehacker/ubuntu:full-latest + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 steps: - uses: actions/checkout@v3 From c502b659402b66561db7eb8c7c41dc6ca6994317 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Fri, 6 Dec 2024 13:37:19 +0000 Subject: [PATCH 34/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 24 ++++++++---------------- 1 file changed, 8 insertions(+), 16 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index db7730a..446abb5 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -11,21 +11,13 @@ jobs: steps: - uses: actions/checkout@v3 - - uses: docker/metadata-action@v3 - id: metadata + - name: Build and push + uses: https://codeberg.org/umglurf/kaniko-action@main with: - images: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }} - - - uses: docker/login-action@v1 - with: - registry: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live - username: ${{ secrets.REGISTRY_USERNAME }} - password: ${{ secrets.REGISTRY_PASSWORD }} - - - uses: int128/kaniko-action@v1 - with: - push: true - tags: ${{ steps.metadata.outputs.tags }} - labels: ${{ steps.metadata.outputs.labels }} cache: true - cache-repository: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache + cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache + credentials: | + https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/v1/=${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }} + destinations: | + forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}:latest + push: 'true' From 65ed6d6120c1e1a197cc5d186dc6cff0a9370e21 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 09:35:58 +0100 Subject: [PATCH 35/83] forgejo workflow uses complete image now --- .github/workflows/.github-ci.yaml | 43 +++++++++++++++++++------------ 1 file changed, 26 insertions(+), 17 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 446abb5..1751ae2 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -1,23 +1,32 @@ name: ci-workflow - + on: [push] jobs: ci: - runs-on: docker - + runs-on: ubuntu-latest + container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/kaniko:v1.23.2-2 - + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest + steps: - - uses: actions/checkout@v3 - - - name: Build and push - uses: https://codeberg.org/umglurf/kaniko-action@main - with: - cache: true - cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache - credentials: | - https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/v1/=${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }} - destinations: | - forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}:latest - push: 'true' + + - name: Clone Repository + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + + - name: Lint the Repository + run: | + golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + + - name: Build Credentials File + run: | + mkdir -p /kaniko/.docker + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64) + echo "{\"auths\":{\"https://gitea.cnoe.localtest.me\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + + - name: Build Docker Container + run: | + /kaniko/executor --skip-tls-verify --dockerfile=./Dockerfile --context=. --destination=gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 + + - name: trivy + run: | + trivy ... From 30312e19e95a8ff3037288db4fa2c9f8f7b6577f Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 09:39:52 +0100 Subject: [PATCH 36/83] updates actions --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 1751ae2..7f82e16 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -3,7 +3,7 @@ name: ci-workflow on: [push] jobs: ci: - runs-on: ubuntu-latest + runs-on: docker container: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest From 7725caf57d681798bccd31dc975485d74acd6578 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 09:48:41 +0100 Subject: [PATCH 37/83] fixes bug in build action --- .github/workflows/.github-ci.yaml | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 7f82e16..d9c80f2 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -20,7 +20,7 @@ jobs: - name: Build Credentials File run: | mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64) + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) echo "{\"auths\":{\"https://gitea.cnoe.localtest.me\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - name: Build Docker Container @@ -29,4 +29,6 @@ jobs: - name: trivy run: | - trivy ... + set -e + TRIVY_INSECURE=true trivy image --scanners license,vuln,secret gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 + TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 From ef8ca6650493881cc4aeb9197fe17c2582bdafa7 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 09:54:04 +0100 Subject: [PATCH 38/83] updates actions --- .github/workflows/.github-ci.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index d9c80f2..4dc8ab3 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -25,10 +25,10 @@ jobs: - name: Build Docker Container run: | - /kaniko/executor --skip-tls-verify --dockerfile=./Dockerfile --context=. --destination=gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 + /kaniko/executor --skip-tls-verify --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest - name: trivy run: | set -e - TRIVY_INSECURE=true trivy image --scanners license,vuln,secret gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 - TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig gitea.cnoe.localtest.me/giteaadmin/fib:v0.0.1 + TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest + TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest From 839e53586da578c9bc4ed661155c8ddf8eac3fb6 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 09:57:19 +0100 Subject: [PATCH 39/83] updates actions --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 4dc8ab3..4b50111 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -21,11 +21,11 @@ jobs: run: | mkdir -p /kaniko/.docker AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://gitea.cnoe.localtest.me\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - name: Build Docker Container run: | - /kaniko/executor --skip-tls-verify --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest + /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest - name: trivy run: | From d9ad3d3be96c20ddda01c4a22b8f70a7505f33ae Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 10:11:52 +0100 Subject: [PATCH 40/83] updates actions --- .github/workflows/.github-ci.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 4b50111..db10dcc 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -25,10 +25,10 @@ jobs: - name: Build Docker Container run: | - /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest + /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - name: trivy run: | set -e - TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest - TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go:latest + TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From db6c2e395d3ea07a3f832d80f116a2e569503736 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 11:08:23 +0100 Subject: [PATCH 41/83] updates actions --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index db10dcc..cab03b6 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -30,5 +30,5 @@ jobs: - name: trivy run: | set -e - TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + TRIVY_INSECURE=true /usr/local/bin/trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + TRIVY_INSECURE=true /usr/local/bin/trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From d2e4c663742132f14cca3d4ea190b7c367b298e3 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 15:37:23 +0100 Subject: [PATCH 42/83] tests actions --- .github/workflows/.github-ci.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index cab03b6..e63977e 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -29,6 +29,6 @@ jobs: - name: trivy run: | - set -e - TRIVY_INSECURE=true /usr/local/bin/trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - TRIVY_INSECURE=true /usr/local/bin/trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + + TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 64e4bfac0d57c26b15492ba34e64a0de150a470b Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 15:40:17 +0100 Subject: [PATCH 43/83] tests actions --- .github/workflows/.github-ci.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e63977e..19b9872 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -27,8 +27,7 @@ jobs: run: | /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - - name: trivy + - name: Vulnerability Scanning run: | - TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From aaea1f1cfa0538feccd055d4e97c8fad8d87a9db Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 15:49:47 +0100 Subject: [PATCH 44/83] tests actions --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 19b9872..79e6ef4 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -29,5 +29,5 @@ jobs: - name: Vulnerability Scanning run: | - TRIVY_INSECURE=true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - TRIVY_INSECURE=true trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 0243d32d2cf8482980304e2536a3be12957d1e9e Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 16:27:51 +0100 Subject: [PATCH 45/83] adds podman action for building docker --- .github/workflows/.github-ci_podman | 34 +++++++++++++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 .github/workflows/.github-ci_podman diff --git a/.github/workflows/.github-ci_podman b/.github/workflows/.github-ci_podman new file mode 100644 index 0000000..76def37 --- /dev/null +++ b/.github/workflows/.github-ci_podman @@ -0,0 +1,34 @@ +name: ci-workflow + +on: [push] +jobs: + ci: + runs-on: docker + + container: + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest + + steps: + + - name: Clone Repository + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + + - name: Lint the Repository + run: | + golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + + - name: Build Credentials File + run: | + mkdir -p /kaniko/.docker + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) + echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + + - name: Build Docker Container + run: | + podman build -t fibonacci_go:latest -f Dockerfile . + podman push fibonacci_go:latest forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + + - name: Vulnerability Scanning + run: | + trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 043e10588fe6c60a20f9d2456ef3c6530c86531b Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 16:34:24 +0100 Subject: [PATCH 46/83] tests action --- .github/workflows/.github-ci_podman | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci_podman b/.github/workflows/.github-ci_podman index 76def37..17f4a2c 100644 --- a/.github/workflows/.github-ci_podman +++ b/.github/workflows/.github-ci_podman @@ -2,7 +2,7 @@ name: ci-workflow on: [push] jobs: - ci: + ci_podman: runs-on: docker container: From e4da241062c32cdb640f4b31d6ce74e948712040 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 16:35:07 +0100 Subject: [PATCH 47/83] tests actions --- .github/workflows/{.github-ci_podman => .github-ci_podman.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename .github/workflows/{.github-ci_podman => .github-ci_podman.yaml} (100%) diff --git a/.github/workflows/.github-ci_podman b/.github/workflows/.github-ci_podman.yaml similarity index 100% rename from .github/workflows/.github-ci_podman rename to .github/workflows/.github-ci_podman.yaml From 4e3b7bd8ac1b2dc6ba2cc79b07e5a75a845cbf9c Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 16:53:38 +0100 Subject: [PATCH 48/83] tests actions --- .github/workflows/.github-ci.yaml | 5 +++++ .github/workflows/.github-ci_podman.yaml | 4 ++-- 2 files changed, 7 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 79e6ef4..1e41f44 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -29,5 +29,10 @@ jobs: - name: Vulnerability Scanning run: | + pwd + whoami + which trivy + ls -la /usr/local/bin + ls -la /usr/bin trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index 17f4a2c..5b54347 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -19,9 +19,9 @@ jobs: - name: Build Credentials File run: | - mkdir -p /kaniko/.docker + mkdir -p /root/.docker AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json + echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /root/.docker/config.json - name: Build Docker Container run: | From 41afc6cc13af5716f8ce8e2de401d8ac85bf3592 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 16:56:26 +0100 Subject: [PATCH 49/83] tests actions --- .github/workflows/.github-ci.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 1e41f44..4a0e9cf 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -31,8 +31,8 @@ jobs: run: | pwd whoami - which trivy - ls -la /usr/local/bin - ls -la /usr/bin + which trivy || true + ls -la /usr/local/bin || true + ls -la /usr/bin || true trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 14c9867f83317e8a0a788c5a5db1b56fea813b04 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:13:38 +0100 Subject: [PATCH 50/83] tests action --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 4a0e9cf..873fe45 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 steps: From 8a40d297f4ed57375200cda32fb0a578b1cb7e73 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:20:08 +0100 Subject: [PATCH 51/83] tests actions --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 873fe45..98438e0 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,8 +5,8 @@ jobs: ci: runs-on: docker - container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 + # container: + # image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 steps: From 90f5d5fc4144370b8bc76ccfeadd1dbca747847f Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:26:05 +0100 Subject: [PATCH 52/83] tests actions --- .github/workflows/.github-ci.yaml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 98438e0..496e2ab 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,8 +5,8 @@ jobs: ci: runs-on: docker - # container: - # image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 + container: + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 steps: @@ -31,6 +31,7 @@ jobs: run: | pwd whoami + curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sudo sh -s -- -b /usr/bin latest which trivy || true ls -la /usr/local/bin || true ls -la /usr/bin || true From 00bb94630592f6a12e8506d961a4a8b3b7ddf4e8 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:31:58 +0100 Subject: [PATCH 53/83] tests actions --- .github/workflows/.github-ci.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 496e2ab..d416219 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 steps: @@ -31,7 +31,6 @@ jobs: run: | pwd whoami - curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sudo sh -s -- -b /usr/bin latest which trivy || true ls -la /usr/local/bin || true ls -la /usr/bin || true From d1d7a5a2f10c3ce7cab1f835da8380d305c55d11 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:37:45 +0100 Subject: [PATCH 54/83] tests actions --- .github/workflows/.github-ci.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index d416219..e6d52a6 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -15,6 +15,8 @@ jobs: - name: Lint the Repository run: | + which trivy + exit 1 golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - name: Build Credentials File From 1de21cd29b6021a79ae2acfa8bf478534916328d Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:41:07 +0100 Subject: [PATCH 55/83] tests actions --- .github/workflows/.github-ci.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e6d52a6..2102c8a 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -30,6 +30,8 @@ jobs: /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - name: Vulnerability Scanning + container: + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 run: | pwd whoami From fdb242b7a52c2379748ed37e23f40794e45698b0 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:42:44 +0100 Subject: [PATCH 56/83] tests actions --- .github/workflows/.github-ci.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 2102c8a..aafe50c 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -16,7 +16,6 @@ jobs: - name: Lint the Repository run: | which trivy - exit 1 golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - name: Build Credentials File From b872d6de0d7c604de71d4413ef36a185523c6941 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Thu, 12 Dec 2024 17:45:05 +0100 Subject: [PATCH 57/83] test actions --- .github/workflows/.github-ci.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index aafe50c..083d681 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -29,9 +29,8 @@ jobs: /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - name: Vulnerability Scanning - container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 run: | + exit 0 pwd whoami which trivy || true From 132c2abbf3a8e33fbd7dfa60dfbcf7de43a546ca Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 09:57:02 +0100 Subject: [PATCH 58/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index 5b54347..ede34a2 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -19,9 +19,7 @@ jobs: - name: Build Credentials File run: | - mkdir -p /root/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /root/.docker/config.json + echo "${{ secrets.REGISTRY_PASSWORD }}" | podman login forgejo.edf-bootstrap.cx.fg1.ffm.osc.live -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin - name: Build Docker Container run: | From 9fd2b4bb60070daa81d1a2bd0982464f8bf0339b Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 10:04:22 +0100 Subject: [PATCH 59/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index ede34a2..d3d14db 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -7,6 +7,7 @@ jobs: container: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest + options: --pull always steps: From cfc045746a11340cd5c309e5ca0ad34b591d8192 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 10:06:14 +0100 Subject: [PATCH 60/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index d3d14db..e00fc69 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -7,7 +7,7 @@ jobs: container: image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest - options: --pull always + options: --no-cache steps: From b0c2a8a7c840acbc683f1301e56fb601c638f554 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 10:07:11 +0100 Subject: [PATCH 61/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index e00fc69..416facf 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -6,8 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:latest - options: --no-cache + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 steps: From 91820cc43fe43236baefac06e8c87028d7f1b214 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 10:42:05 +0100 Subject: [PATCH 62/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index 416facf..fe90bce 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete:v0.0.1 + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete_podman:v0.0.1 steps: From 662eaf44875848ea80bcd98ace90ec8e1dacfc4b Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 11:15:01 +0100 Subject: [PATCH 63/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index fe90bce..c7be45e 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -19,12 +19,12 @@ jobs: - name: Build Credentials File run: | - echo "${{ secrets.REGISTRY_PASSWORD }}" | podman login forgejo.edf-bootstrap.cx.fg1.ffm.osc.live -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin + echo "${{ secrets.REGISTRY_PASSWORD }}" | sudo podman login forgejo.edf-bootstrap.cx.fg1.ffm.osc.live -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin - name: Build Docker Container run: | - podman build -t fibonacci_go:latest -f Dockerfile . - podman push fibonacci_go:latest forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + sudo podman build -t fibonacci_go:latest -f Dockerfile . + sudo podman push fibonacci_go:latest forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - name: Vulnerability Scanning run: | From 1051bb1b566e1985ccdbeba9dfce905d0e150ff5 Mon Sep 17 00:00:00 2001 From: "franz.germann1" Date: Fri, 13 Dec 2024 11:16:51 +0100 Subject: [PATCH 64/83] tests actions --- .github/workflows/.github-ci_podman.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml index c7be45e..2975af0 100644 --- a/.github/workflows/.github-ci_podman.yaml +++ b/.github/workflows/.github-ci_podman.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/complete_podman:v0.0.1 + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/complete_podman:v0.0.1 steps: From 896bde316fa6f276905e8aab8c7e75e0287a6562 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:03:08 +0000 Subject: [PATCH 65/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 27 +++++---------------------- 1 file changed, 5 insertions(+), 22 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 083d681..ee2eb95 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,27 +14,10 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - run: | - which trivy - golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main + with: + source: './...' - - name: Build Credentials File - run: | - mkdir -p /kaniko/.docker - AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) - echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - - - name: Build Docker Container - run: | - /kaniko/executor --dockerfile=./Dockerfile --context=. --destination=forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + #- name: Build Docker Container - - name: Vulnerability Scanning - run: | - exit 0 - pwd - whoami - which trivy || true - ls -la /usr/local/bin || true - ls -la /usr/bin || true - trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + #- name: Vulnerability Scanning From 9215ba97bdf8deb362d7bbd0f49e508c9272f920 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:03:29 +0000 Subject: [PATCH 66/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index ee2eb95..e48e7b1 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -15,7 +15,7 @@ jobs: - name: Lint the Repository uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main - with: + with: source: './...' #- name: Build Docker Container From 6c8b63c4a6f30bc544f47ddcc530a2296a669a27 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:05:06 +0000 Subject: [PATCH 67/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e48e7b1..e2cc8a2 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,7 +14,7 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@main with: source: './...' From 3d56f88e1c060d08163cbdaf3f5bb01e04f6d4ae Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:05:21 +0000 Subject: [PATCH 68/83] Delete .github/workflows/.github-ci_podman.yaml --- .github/workflows/.github-ci_podman.yaml | 32 ------------------------ 1 file changed, 32 deletions(-) delete mode 100644 .github/workflows/.github-ci_podman.yaml diff --git a/.github/workflows/.github-ci_podman.yaml b/.github/workflows/.github-ci_podman.yaml deleted file mode 100644 index 2975af0..0000000 --- a/.github/workflows/.github-ci_podman.yaml +++ /dev/null @@ -1,32 +0,0 @@ -name: ci-workflow - -on: [push] -jobs: - ci_podman: - runs-on: docker - - container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/complete_podman:v0.0.1 - - steps: - - - name: Clone Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - - - name: Lint the Repository - run: | - golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - - - name: Build Credentials File - run: | - echo "${{ secrets.REGISTRY_PASSWORD }}" | sudo podman login forgejo.edf-bootstrap.cx.fg1.ffm.osc.live -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin - - - name: Build Docker Container - run: | - sudo podman build -t fibonacci_go:latest -f Dockerfile . - sudo podman push fibonacci_go:latest forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - - - name: Vulnerability Scanning - run: | - trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 33385982e49afa1c15e107cf34307dbb2c805516 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:07:14 +0000 Subject: [PATCH 69/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e2cc8a2..b93fca4 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,7 +14,7 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@main + uses: DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main with: source: './...' From 1c0cc2418f7ea1e472f756ea454577bf1c6c2640 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:08:52 +0000 Subject: [PATCH 70/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index b93fca4..e2cc8a2 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,7 +14,7 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - uses: DevFW-CICD/lint/.github/workflows/golang-ci-lint.yml@main + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@main with: source: './...' From a824965fb39b00896fab784cf46909adc23976a8 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:09:28 +0000 Subject: [PATCH 71/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e2cc8a2..040a63d 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,7 +14,7 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@main + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@rire_action_test with: source: './...' From adcc3a168c53f399fc9d182382fc032313333b9d Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:12:08 +0000 Subject: [PATCH 72/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 040a63d..c806816 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -14,10 +14,12 @@ jobs: uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - name: Lint the Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/lint@rire_action_test - with: - source: './...' + run: | + which trivy + golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - #- name: Build Docker Container - #- name: Vulnerability Scanning + - name: Vulnerability Scanning + run: | + trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From e3c9f6fa622d157a24ce712ec9db7b7ffbfecf1e Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:15:29 +0000 Subject: [PATCH 73/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index c806816..9505779 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -18,7 +18,16 @@ jobs: which trivy golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - + - name: Build and publish + uses: DevFW-CICD/build/.github/workflows/build-docker.yml@main + with: + dockerfile: './Dockerfile' + context: '.' + tag: 'forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest' + registry: 'forgejo.edf-bootstrap.cx.fg1.ffm.osc.live' + username: ${{ secrets.REGISTRY_USERNAME }} + password: ${{ secrets.REGISTRY_PASSWORD }} + - name: Vulnerability Scanning run: | trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From b568e86504cd96d8c56dd932a6a8bffd808d569a Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:47:58 +0000 Subject: [PATCH 74/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 19 +++++++++++-------- 1 file changed, 11 insertions(+), 8 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 9505779..dffdea7 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -18,15 +18,18 @@ jobs: which trivy golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - - name: Build and publish - uses: DevFW-CICD/build/.github/workflows/build-docker.yml@main + - uses: actions/checkout@v4 + + - name: Build + uses: https://codeberg.org/umglurf/kaniko-action@main with: - dockerfile: './Dockerfile' - context: '.' - tag: 'forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest' - registry: 'forgejo.edf-bootstrap.cx.fg1.ffm.osc.live' - username: ${{ secrets.REGISTRY_USERNAME }} - password: ${{ secrets.REGISTRY_PASSWORD }} + cache: true + cache_repo: docker.io/${{ github.repository }}/cache + credentials: | + https://index.docker.io/v1/=${{ secrets.REPO_USER }}:${{ secrets.REPO_PASSWORD }} + destinations: | + docker.io/${{ github.repository }}:latest + push: 'true' - name: Vulnerability Scanning run: | From cf189584fec022988d68fa7079cddae4c3c4bfec Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:50:03 +0000 Subject: [PATCH 75/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 24 ++++++++++++------------ 1 file changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index dffdea7..ed491c4 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,18 +5,18 @@ jobs: ci: runs-on: docker - container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 + #container: + # image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 steps: - - name: Clone Repository - uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + #- name: Clone Repository + # uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - - name: Lint the Repository - run: | - which trivy - golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + #- name: Lint the Repository + # run: | + # which trivy + # golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - uses: actions/checkout@v4 @@ -31,7 +31,7 @@ jobs: docker.io/${{ github.repository }}:latest push: 'true' - - name: Vulnerability Scanning - run: | - trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + #- name: Vulnerability Scanning + # run: | + # trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + # trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 954fd698e7b506415b2b7aa84e0ebded5032a3e3 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:52:31 +0000 Subject: [PATCH 76/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index ed491c4..dfb15fc 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -24,11 +24,11 @@ jobs: uses: https://codeberg.org/umglurf/kaniko-action@main with: cache: true - cache_repo: docker.io/${{ github.repository }}/cache + cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache credentials: | - https://index.docker.io/v1/=${{ secrets.REPO_USER }}:${{ secrets.REPO_PASSWORD }} + https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/v1/=${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }} destinations: | - docker.io/${{ github.repository }}:latest + forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}:latest push: 'true' #- name: Vulnerability Scanning From f0390ba4bc536f1c7b515eda881b684357dc2b8a Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:53:34 +0000 Subject: [PATCH 77/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index dfb15fc..a496dc0 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -24,11 +24,11 @@ jobs: uses: https://codeberg.org/umglurf/kaniko-action@main with: cache: true - cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}/cache + cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go/cache credentials: | https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/v1/=${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }} destinations: | - forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/${{ github.repository }}:latest + forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest push: 'true' #- name: Vulnerability Scanning From 022683ad6c08cb1e8ab0a76ffc1f167507400b96 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:57:07 +0000 Subject: [PATCH 78/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 9 +++++++++ 1 file changed, 9 insertions(+) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index a496dc0..90af26d 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -20,6 +20,15 @@ jobs: - uses: actions/checkout@v4 + - uses: actions/setup-go@v5 + with: + go-version: stable + + - name: golangci-lint + uses: golangci/golangci-lint-action@v6 + with: + version: v1.60 + - name: Build uses: https://codeberg.org/umglurf/kaniko-action@main with: From f9e9848ad92101a5f35df133c934dd0c0efdc393 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 09:59:43 +0000 Subject: [PATCH 79/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 90af26d..e4a0cbb 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -25,7 +25,7 @@ jobs: go-version: stable - name: golangci-lint - uses: golangci/golangci-lint-action@v6 + uses: https://github.com/golangci/golangci-lint-action@v6 with: version: v1.60 From 6bd0e272d51b1cdea20be18bc54a2cb36d3e6bf4 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 10:11:10 +0000 Subject: [PATCH 80/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index e4a0cbb..5311aff 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -20,9 +20,10 @@ jobs: - uses: actions/checkout@v4 - - uses: actions/setup-go@v5 + - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 with: - go-version: stable + go-version: "1.21" + check-latest: true - name: golangci-lint uses: https://github.com/golangci/golangci-lint-action@v6 From a43f9dc5b472908c0166f286fe28150cb8d5d6aa Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 10:17:12 +0000 Subject: [PATCH 81/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 51 +++++++++++-------------------- 1 file changed, 17 insertions(+), 34 deletions(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 5311aff..cf60b23 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -5,43 +5,26 @@ jobs: ci: runs-on: docker - #container: - # image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 + container: + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 steps: - #- name: Clone Repository - # uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main + - name: Clone Repository + uses: https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/DevFW-CICD/checkout@main - #- name: Lint the Repository - # run: | - # which trivy - # golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 + - name: Lint the Repository + run: | + which trivy + golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - - uses: actions/checkout@v4 - - - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 - with: - go-version: "1.21" - check-latest: true + - name: Build Credentials File + run: | + mkdir -p /kaniko/.docker + AUTHSTRING=$(echo -n "${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }}" | base64 -w 0) + echo "{\"auths\":{\"https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live\":{\"auth\":\"${AUTHSTRING}\"}}}" > /kaniko/.docker/config.json - - name: golangci-lint - uses: https://github.com/golangci/golangci-lint-action@v6 - with: - version: v1.60 - - - name: Build - uses: https://codeberg.org/umglurf/kaniko-action@main - with: - cache: true - cache_repo: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go/cache - credentials: | - https://forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/v1/=${{ secrets.REGISTRY_USERNAME }}:${{ secrets.REGISTRY_PASSWORD }} - destinations: | - forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - push: 'true' - - #- name: Vulnerability Scanning - # run: | - # trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest - # trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + - name: Vulnerability Scanning + run: | + trivy image --scanners license,vuln,secret forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest + trivy image --image-config-scanners secret,misconfig forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/fibonacci_go/fibonacci_go:latest From 0fbaf9989804cbbf3ecc4d5ce5ffd6491c7f49f1 Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 12:29:51 +0000 Subject: [PATCH 82/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 1 - 1 file changed, 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index cf60b23..18676c3 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -15,7 +15,6 @@ jobs: - name: Lint the Repository run: | - which trivy golangci-lint run ./... --out-format=json --timeout 5m --issues-exit-code 1 - name: Build Credentials File From 900c0b8390b5ed8d822cc990b3e02fdd5a1f708f Mon Sep 17 00:00:00 2001 From: richardrobertreitz Date: Mon, 16 Dec 2024 12:30:56 +0000 Subject: [PATCH 83/83] Update .github/workflows/.github-ci.yaml --- .github/workflows/.github-ci.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/.github-ci.yaml b/.github/workflows/.github-ci.yaml index 18676c3..5372531 100644 --- a/.github/workflows/.github-ci.yaml +++ b/.github/workflows/.github-ci.yaml @@ -6,7 +6,7 @@ jobs: runs-on: docker container: - image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipe:v0.0.1 + image: forgejo.edf-bootstrap.cx.fg1.ffm.osc.live/devfw-cicd/pipeline-container/complete:v0.0.2 steps: