|
|
@ -29,7 +29,7 @@ steps: |
|
|
when: |
|
|
when: |
|
|
event: pull_request |
|
|
event: pull_request |
|
|
|
|
|
|
|
|
- name: trivy |
|
|
|
|
|
|
|
|
- name: trivy security scan |
|
|
image: aquasec/trivy |
|
|
image: aquasec/trivy |
|
|
volumes: |
|
|
volumes: |
|
|
- name: dockersock |
|
|
- name: dockersock |
|
|
@ -45,7 +45,7 @@ steps: |
|
|
when: |
|
|
when: |
|
|
event: pull_request |
|
|
event: pull_request |
|
|
|
|
|
|
|
|
- name: grype |
|
|
|
|
|
|
|
|
- name: grype security scan |
|
|
image: docker:dind |
|
|
image: docker:dind |
|
|
volumes: |
|
|
volumes: |
|
|
- name: dockersock |
|
|
- name: dockersock |
|
|
@ -72,7 +72,6 @@ steps: |
|
|
- docker rmi registry.fedy95.com/baseimage-yamllint:$DRONE_COMMIT_SHA |
|
|
- docker rmi registry.fedy95.com/baseimage-yamllint:$DRONE_COMMIT_SHA |
|
|
when: |
|
|
when: |
|
|
event: pull_request |
|
|
event: pull_request |
|
|
depends_on: [trivy, grype] |
|
|
|
|
|
|
|
|
|
|
|
- name: release |
|
|
- name: release |
|
|
image: docker:dind |
|
|
image: docker:dind |
|
|
|
