@catladder/pipeline 3.40.0 → 3.41.0

package/examples/__snapshots__/workspace-api-www.test.ts.snap

@@ -758,28 +758,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 api 🧾 sbom | dev ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 api 🚀 Deploy | dev ':
   stage: deploy dev
   image: path/to/docker/gcloud:the-version
@@ -859,8 +837,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: dev/api
@@ -884,8 +860,6 @@ before_script:
       artifacts: false
     - job: '🔹 api 🔨 docker | dev '
       artifacts: false
-    - job: '🔹 api 🧾 sbom | dev '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -906,8 +880,6 @@ before_script:
     - gcloud run services delete pan-test-app-dev-api --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: dev/api
@@ -985,28 +957,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 api 🧾 sbom | review ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_MERGE_REQUEST_ID
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 api 🚀 Deploy | review ':
   stage: deploy review
   image: path/to/docker/gcloud:the-version
@@ -1089,8 +1039,6 @@ before_script:
     - set -e
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: review/$CI_COMMIT_REF_NAME/api
@@ -1114,8 +1062,6 @@ before_script:
       artifacts: false
     - job: '🔹 api 🔨 docker | review '
       artifacts: false
-    - job: '🔹 api 🧾 sbom | review '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -1139,8 +1085,6 @@ before_script:
     - set +e
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
     - set -e
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: review/$CI_COMMIT_REF_NAME/api
@@ -1216,28 +1160,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 api 🧾 sbom | stage ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_TAG
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 api 🚀 Deploy | stage ':
   stage: deploy stage
   image: path/to/docker/gcloud:the-version
@@ -1317,8 +1239,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: stage/api
@@ -1335,8 +1255,6 @@ before_script:
   needs:
     - job: '🔹 api 🔨 docker | stage '
       artifacts: false
-    - job: '🔹 api 🧾 sbom | stage '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -1357,8 +1275,6 @@ before_script:
     - gcloud run services delete pan-test-app-stage-api --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: stage/api
@@ -1434,28 +1350,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 api 🧾 sbom | prod ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_TAG
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 api 🚀 Deploy | prod ':
   stage: deploy prod
   image: path/to/docker/gcloud:the-version
@@ -1535,8 +1429,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: prod/api
@@ -1553,8 +1445,6 @@ before_script:
   needs:
     - job: '🔹 api 🔨 docker | prod '
       artifacts: false
-    - job: '🔹 api 🧾 sbom | prod '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: true
@@ -1575,8 +1465,6 @@ before_script:
     - gcloud run services delete pan-test-app-prod-api --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: prod/api
@@ -1652,28 +1540,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 www 🧾 sbom | dev ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 www 🚀 Deploy | dev ':
   stage: deploy dev
   image: path/to/docker/gcloud:the-version
@@ -1756,8 +1622,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: dev/www
@@ -1781,8 +1645,6 @@ before_script:
       artifacts: false
     - job: '🔹 www 🔨 docker | dev '
       artifacts: false
-    - job: '🔹 www 🧾 sbom | dev '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -1803,8 +1665,6 @@ before_script:
     - gcloud run services delete pan-test-app-dev-www --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/www --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: dev/www
@@ -1882,28 +1742,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 www 🧾 sbom | review ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_MERGE_REQUEST_ID
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 www 🚀 Deploy | review ':
   stage: deploy review
   image: path/to/docker/gcloud:the-version
@@ -1989,8 +1827,6 @@ before_script:
     - set -e
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: review/$CI_COMMIT_REF_NAME/www
@@ -2014,8 +1850,6 @@ before_script:
       artifacts: false
     - job: '🔹 www 🔨 docker | review '
       artifacts: false
-    - job: '🔹 www 🧾 sbom | review '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -2039,8 +1873,6 @@ before_script:
     - set +e
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/www --quiet --delete-tags
     - set -e
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: review/$CI_COMMIT_REF_NAME/www
@@ -2116,28 +1948,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 www 🧾 sbom | stage ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_TAG
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 www 🚀 Deploy | stage ':
   stage: deploy stage
   image: path/to/docker/gcloud:the-version
@@ -2220,8 +2030,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: stage/www
@@ -2238,8 +2046,6 @@ before_script:
   needs:
     - job: '🔹 www 🔨 docker | stage '
       artifacts: false
-    - job: '🔹 www 🧾 sbom | stage '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: false
@@ -2260,8 +2066,6 @@ before_script:
     - gcloud run services delete pan-test-app-stage-www --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/www --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: stage/www
@@ -2337,28 +2141,6 @@ before_script:
       artifacts: true
   retry: *a1
   interruptible: true
-'🔹 www 🧾 sbom | prod ':
-  stage: build
-  image:
-    name: aquasec/trivy:0.58.2
-    entrypoint:
-      - ''
-  variables: {}
-  script:
-    - collapseable_section_start "injectvars" "Injecting variables"
-    - collapseable_section_end "injectvars"
-    - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
-  artifacts:
-    paths:
-      - __sbom.json
-  rules:
-    - when: never
-      if: $CI_PIPELINE_SOURCE  == "trigger"
-    - if: $CI_COMMIT_TAG
-  needs: []
-  retry: *a1
-  interruptible: true
-  allow_failure: true
 '🔹 www 🚀 Deploy | prod ':
   stage: deploy prod
   image: path/to/docker/gcloud:the-version
@@ -2441,8 +2223,6 @@ before_script:
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
     - set -e
     - collapseable_section_end "cleanup"
-    - echo 'Uploading SBOM to Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
     - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
   environment:
     name: prod/www
@@ -2459,8 +2239,6 @@ before_script:
   needs:
     - job: '🔹 www 🔨 docker | prod '
       artifacts: false
-    - job: '🔹 www 🧾 sbom | prod '
-      artifacts: true
   retry: *a1
   interruptible: true
   allow_failure: true
@@ -2481,8 +2259,6 @@ before_script:
     - gcloud run services delete pan-test-app-prod-www --project=google-project-id --region=europe-west6
     - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/www --quiet --delete-tags
     - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
-    - echo 'Disabling component in Dependency Track'
-    - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
     - set -e
   environment:
     name: prod/www

package/examples/{custom-sbom-java.test.ts → cloud-run-n8n.test.ts}

@@ -1,12 +1,12 @@
 import { it, expect } from "vitest";
 import { createYamlLocalPipeline } from "./__utils__/helpers";
-import config from "./custom-sbom-java";
+import config from "./cloud-run-n8n";
 
 /**
  * This test is auto-generated.
  * Modifications will be overwritten on every `yarn test` run!
  */
 
-it("matches snapshot for custom-sbom-java local pipeline YAML", async () => {
+it("matches snapshot for cloud-run-n8n local pipeline YAML", async () => {
   expect(await createYamlLocalPipeline(config)).toMatchSnapshot();
 });

package/examples/cloud-run-n8n.ts

@@ -0,0 +1,62 @@
+import type { Config } from "../src";
+
+const config = {
+  appName: "my-n8n-app",
+  customerName: "pan",
+  components: {
+    n8n: {
+      dir: "n8n",
+      build: false,
+      vars: {
+        secret: ["N8N_ENCRYPTION_KEY"],
+        public: {
+          N8N_PORT: "8080",
+          N8N_PROTOCOL: "https",
+          DB_TYPE: "postgresdb",
+          DB_POSTGRESDB_DATABASE: "${DB_NAME}",
+          DB_POSTGRESDB_HOST: "/cloudsql/${CLOUD_SQL_INSTANCE_CONNECTION_NAME}",
+          DB_POSTGRESDB_USER: "${DB_USER}",
+          DB_POSTGRESDB_PASSWORD: "${DB_PASSWORD}",
+          DB_POSTGRESDB_PORT: "5432",
+          DB_POSTGRESDB_SCHEMA: "public",
+          GENERIC_TIMEZONE: "Europe/Zurich",
+          N8N_DIAGNOSTICS_ENABLED: "false",
+          N8N_PERSONALIZATION_ENABLED: "false",
+          QUEUE_HEALTH_CHECK_ACTIVE: "true",
+          WEBHOOK_URL: "${ROOT_URL}",
+          N8N_EDITOR_BASE_URL: "${ROOT_URL}",
+        },
+      },
+      deploy: {
+        type: "google-cloudrun",
+        projectId: "google-project-id",
+        region: "europe-west6",
+        cloudSql: {
+          type: "unmanaged",
+          instanceConnectionName: "projectId:region:instancename",
+          dbBaseName: "n8n",
+        },
+        service: {
+          image: "n8nio/n8n:2.12.0", // verify which is the current version
+          command: ["/bin/sh"],
+          args: ["-c", "sleep 5; n8n start"],
+          minInstances: 1,
+          maxInstances: 1,
+          noCpuThrottling: true,
+          memory: "2Gi",
+          cpu: 2,
+          executionEnvironment: "gen2",
+          allowUnauthenticated: true,
+          timeout: "3600s",
+          sessionAffinity: true,
+        },
+      },
+    },
+  },
+} satisfies Config;
+
+export default config;
+
+export const information = {
+  title: "Cloud Run: n8n example",
+};

package/package.json

@@ -53,7 +53,7 @@
     }
   ],
   "license": "MIT",
-  "version": "3.40.0",
+  "version": "3.41.0",
   "scripts": {
     "build:tsc": "yarn tsc",
     "build": "yarn build:compile && yarn build:inline-variables",

package/src/build/base/index.ts

@@ -1,4 +1,3 @@
-import { sbomDeactivated } from "../../deploy/sbom";
 import type {
   ComponentContextWithBuild,
   WorkspaceContext,
@@ -6,7 +5,6 @@ import type {
 import {
   componentContextHasWorkspaceBuild,
   componentContextIsStandaloneBuild,
-  type ComponentContext,
 } from "../../types/context";
 import type {
   AppBuildJobDefinition,
@@ -14,7 +12,6 @@ import type {
 } from "../../types/jobDefinition";
 import type { CatladderJob } from "../../types/jobs";
 import { createDockerBuildJobBase, requiresDockerBuild } from "../docker";
-import { createSbomBuildJob } from "../sbom";
 import { APP_BUILD_JOB_NAME } from "./constants";
 import { createAppBuildJob } from "./createAppBuildJob";
 
@@ -51,7 +48,6 @@ export const createComponentBuildJobs = (
           }),
         ]
       : []),
-    ...(sbomDeactivated(context) ? [] : [createSbomBuildJob(context)]),
   ];
 };
 

package/src/build/rails/build.ts

@@ -52,6 +52,7 @@ export const createRailsBuildJobs = (
         `chmod +x /usr/local/bin/pack`,
         //  replace private git ssh gem sources with https to make bundler with credentials via env var work
         `sed --in-place 's|git@\\([^:]*\\):|https://\\1/|g' Gemfile Gemfile.lock`,
+        `pack config registry-mirrors add index.docker.io --mirror mirror.gcr.io`,
         `pack build "$DOCKER_IMAGE:$DOCKER_IMAGE_TAG" --builder '${
           cnbConf?.image
         }' --publish --cache-image "$DOCKER_CACHE_IMAGE" ${packEnvArgs} ${

package/src/build/types.ts

@@ -293,19 +293,6 @@ export type BuildConfigCustom = Omit<
    * custom audit, disabled when not set
    */
   audit?: TestJobCustom;
-
-  /**
-   * custom sbom (software bill of materials), set false to disable
-   */
-  sbom?:
-    | false
-    | {
-        /**
-         * needs to create a file at `/__sbom.json` in CycloneDX format
-         */
-        command: string | string[];
-        jobImage: GitlabJobImage;
-      };
 };
 
 export type BuildConfigRails = BuildConfigBase & {

package/src/deploy/base/deploy.ts

@@ -3,14 +3,12 @@ import {
   getDockerImageVariables,
   requiresDockerBuild,
 } from "../../build/docker";
-import { SBOM_BUILD_JOB_NAME } from "../../build/sbom";
 import type { DeployJobDefinition } from "../../types";
 import {
   componentContextHasWorkspaceBuild,
   type ComponentContext,
 } from "../../types/context";
 import type { BaseStage, CatladderJob } from "../../types/jobs";
-import { sbomDeactivated } from "../sbom";
 import { contextIsStoppable } from "../utils";
 import { STOP_JOB_NAME } from "./stop";
 
@@ -58,9 +56,6 @@ export const createDeployJob = (
     envMode: "stagePerEnv", // makes it easier to run manual tasks er env
 
     needs: [
-      ...(sbomDeactivated(context)
-        ? []
-        : [{ job: SBOM_BUILD_JOB_NAME, artifacts: true }]),
       ...(deployConfig
         ? (deployConfig.waitFor?.map((c) => ({
             componentName: c,

package/src/deploy/cloudRun/createJobs/getCloudRunDeployScripts.ts

@@ -1,7 +1,6 @@
 import { omit } from "lodash";
 import type { ComponentContext } from "../../../types/context";
 import { collapseableSection } from "../../../utils/gitlab";
-import { getDependencyTrackUploadScript } from "../../sbom";
 
 import { GCLOUD_DEPLOY_CREDENTIALS_KEY } from "..";
 import { writeBashYamlToFileScript } from "../../../bash/bashYaml";
@@ -70,6 +69,5 @@ export function getCloudRunDeployScripts(context: ComponentContext) {
     )(
       getRemoveOldRevisionsAndImagesCommand(context, "postDeploy"), // we cleanup inactive images both on deploy and stop
     ),
-    ...getDependencyTrackUploadScript(context),
   ];
 }

package/src/deploy/cloudRun/createJobs/getCloudRunStopScripts.ts

@@ -1,5 +1,4 @@
 import type { ComponentContext } from "../../../types/context";
-import { getDependencyTrackDeleteScript } from "../../sbom";
 
 import { getRemoveOldRevisionsAndImagesCommand } from "../cleanup";
 import { getDatabaseDeleteScript } from "../utils/database";
@@ -27,6 +26,5 @@ export function getCloudRunStopScripts(context: ComponentContext) {
       : []),
 
     ...getRemoveOldRevisionsAndImagesCommand(context, "onStop"), // we cleanup inactive images both on deploy and stop
-    ...getDependencyTrackDeleteScript(context),
   ];
 }

package/src/deploy/custom/deployJob.ts

@@ -4,10 +4,7 @@ import { getRunnerImage } from "../../runner";
 import type { ComponentContext } from "../../types/context";
 import type { CatladderJob } from "../../types/jobs";
 import { createDeployementJobs } from "../base";
-import {
-  getDependencyTrackDeleteScript,
-  getDependencyTrackUploadScript,
-} from "../sbom";
+
 import { isOfDeployType } from "../types";
 
 export const createCustomDeployJobs = (
@@ -32,17 +29,13 @@ export const createCustomDeployJobs = (
         `cd ${context.build.dir}`,
         ...(deployConfig.requiresYarnInstall ? yarnInstall : []),
         ...deployConfig.script,
-        ...getDependencyTrackUploadScript(context),
       ],
       variables: {},
     },
     stop: deployConfig.stopScript
       ? {
           image: deployConfig.jobImage ?? getRunnerImage("jobs-default"),
-          script: [
-            ...deployConfig.stopScript,
-            ...getDependencyTrackDeleteScript(context),
-          ],
+          script: [...deployConfig.stopScript],
           variables: {},
         }
       : undefined,