@catladder/pipeline 3.40.0 โ†’ 3.41.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (83) hide show
  1. package/dist/build/base/index.js +2 -4
  2. package/dist/build/rails/build.js +1 -1
  3. package/dist/build/types.d.ts +0 -10
  4. package/dist/constants.js +1 -1
  5. package/dist/deploy/base/deploy.js +1 -6
  6. package/dist/deploy/cloudRun/createJobs/getCloudRunDeployScripts.js +2 -3
  7. package/dist/deploy/cloudRun/createJobs/getCloudRunStopScripts.js +2 -3
  8. package/dist/deploy/custom/deployJob.js +2 -3
  9. package/dist/deploy/kubernetes/deployJob.js +2 -3
  10. package/dist/tsconfig.tsbuildinfo +1 -1
  11. package/examples/__snapshots__/automatic-releases.test.ts.snap +0 -112
  12. package/examples/__snapshots__/cloud-run-execute-script-on-deploy.test.ts.snap +0 -112
  13. package/examples/__snapshots__/cloud-run-health-check-defaults.test.ts.snap +0 -112
  14. package/examples/__snapshots__/cloud-run-health-check-only-startup.test.ts.snap +0 -112
  15. package/examples/__snapshots__/cloud-run-health-check.test.ts.snap +0 -112
  16. package/examples/__snapshots__/cloud-run-http2.test.ts.snap +0 -112
  17. package/examples/__snapshots__/cloud-run-memory-limit.test.ts.snap +0 -112
  18. package/examples/__snapshots__/cloud-run-meteor-with-worker.test.ts.snap +0 -112
  19. package/examples/__snapshots__/cloud-run-n8n.test.ts.snap +940 -0
  20. package/examples/__snapshots__/cloud-run-nextjs.test.ts.snap +0 -112
  21. package/examples/__snapshots__/cloud-run-no-cpu-throttling.test.ts.snap +0 -112
  22. package/examples/__snapshots__/cloud-run-no-service.test.ts.snap +0 -112
  23. package/examples/__snapshots__/cloud-run-non-public.test.ts.snap +0 -112
  24. package/examples/__snapshots__/cloud-run-post-stop-job.test.ts.snap +0 -112
  25. package/examples/__snapshots__/cloud-run-service-custom-vpc-connector.test.ts.snap +0 -112
  26. package/examples/__snapshots__/cloud-run-service-custom-vpc.test.ts.snap +0 -112
  27. package/examples/__snapshots__/cloud-run-service-gen2.test.ts.snap +0 -112
  28. package/examples/__snapshots__/cloud-run-service-increase-timout.test.ts.snap +0 -112
  29. package/examples/__snapshots__/cloud-run-service-with-volumes.test.ts.snap +0 -112
  30. package/examples/__snapshots__/cloud-run-session-affinity.test.ts.snap +0 -112
  31. package/examples/__snapshots__/cloud-run-storybook.test.ts.snap +0 -112
  32. package/examples/__snapshots__/cloud-run-with-agents.test.ts.snap +0 -112
  33. package/examples/__snapshots__/cloud-run-with-gpu.test.ts.snap +0 -112
  34. package/examples/__snapshots__/cloud-run-with-ngnix.test.ts.snap +0 -112
  35. package/examples/__snapshots__/cloud-run-with-sql-legacy-jobs.test.ts.snap +0 -112
  36. package/examples/__snapshots__/cloud-run-with-sql-multiple-dbs.test.ts.snap +0 -336
  37. package/examples/__snapshots__/cloud-run-with-sql-reuse-db.test.ts.snap +0 -224
  38. package/examples/__snapshots__/cloud-run-with-sql.test.ts.snap +0 -112
  39. package/examples/__snapshots__/cloud-run-with-worker.test.ts.snap +0 -112
  40. package/examples/__snapshots__/custom-build-job-with-tests.test.ts.snap +0 -112
  41. package/examples/__snapshots__/custom-build-job.test.ts.snap +0 -112
  42. package/examples/__snapshots__/custom-deploy.test.ts.snap +0 -106
  43. package/examples/__snapshots__/custom-docker-file.test.ts.snap +0 -112
  44. package/examples/__snapshots__/custom-envs.test.ts.snap +0 -132
  45. package/examples/__snapshots__/custom-verify-job.test.ts.snap +0 -112
  46. package/examples/__snapshots__/git-submodule.test.ts.snap +0 -112
  47. package/examples/__snapshots__/kubernetes-application-customization.test.ts.snap +0 -112
  48. package/examples/__snapshots__/kubernetes-with-cloud-sql.test.ts.snap +0 -112
  49. package/examples/__snapshots__/kubernetes-with-jobs.test.ts.snap +0 -224
  50. package/examples/__snapshots__/kubernetes-with-mongodb.test.ts.snap +0 -112
  51. package/examples/__snapshots__/local-dot-env.test.ts.snap +0 -112
  52. package/examples/__snapshots__/meteor-kubernetes.test.ts.snap +0 -112
  53. package/examples/__snapshots__/modify-generated-files.test.ts.snap +0 -88
  54. package/examples/__snapshots__/modify-generated-yaml.test.ts.snap +0 -88
  55. package/examples/__snapshots__/multiline-var.test.ts.snap +0 -336
  56. package/examples/__snapshots__/native-app.test.ts.snap +0 -216
  57. package/examples/__snapshots__/node-build-with-custom-image.test.ts.snap +0 -112
  58. package/examples/__snapshots__/node-build-with-docker-additions.test.ts.snap +0 -112
  59. package/examples/__snapshots__/override-secrets.test.ts.snap +0 -112
  60. package/examples/__snapshots__/rails-k8s-with-worker-dockerfile.test.ts.snap +0 -112
  61. package/examples/__snapshots__/rails-k8s-with-worker.test.ts.snap +4 -112
  62. package/examples/__snapshots__/referencing-other-vars.test.ts.snap +0 -336
  63. package/examples/__snapshots__/wait-for-other-deploy.test.ts.snap +0 -208
  64. package/examples/__snapshots__/workspace-api-www-turbo-cache.test.ts.snap +0 -224
  65. package/examples/__snapshots__/workspace-api-www.test.ts.snap +0 -224
  66. package/examples/{custom-sbom-java.test.ts โ†’ cloud-run-n8n.test.ts} +2 -2
  67. package/examples/cloud-run-n8n.ts +62 -0
  68. package/package.json +1 -1
  69. package/src/build/base/index.ts +0 -4
  70. package/src/build/rails/build.ts +1 -0
  71. package/src/build/types.ts +0 -13
  72. package/src/deploy/base/deploy.ts +0 -5
  73. package/src/deploy/cloudRun/createJobs/getCloudRunDeployScripts.ts +0 -2
  74. package/src/deploy/cloudRun/createJobs/getCloudRunStopScripts.ts +0 -2
  75. package/src/deploy/custom/deployJob.ts +2 -9
  76. package/src/deploy/kubernetes/deployJob.ts +3 -10
  77. package/dist/build/sbom.d.ts +0 -5
  78. package/dist/build/sbom.js +0 -35
  79. package/dist/deploy/sbom.d.ts +0 -4
  80. package/dist/deploy/sbom.js +0 -21
  81. package/examples/custom-sbom-java.ts +0 -38
  82. package/src/build/sbom.ts +0 -53
  83. package/src/deploy/sbom.ts +0 -34
package/examples/__snapshots__/cloud-run-nextjs.test.ts.snap CHANGED
@@ -357,28 +357,6 @@ before_script:
357
357
  - 'www ๐Ÿ”จ app | dev '
358
358
  retry: *a1
359
359
  interruptible: true
360
- 'www ๐Ÿงพ sbom | dev ':
361
- stage: build
362
- image:
363
- name: aquasec/trivy:0.58.2
364
- entrypoint:
365
- - ''
366
- variables: {}
367
- script:
368
- - collapseable_section_start "injectvars" "Injecting variables"
369
- - collapseable_section_end "injectvars"
370
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
371
- artifacts:
372
- paths:
373
- - __sbom.json
374
- rules:
375
- - when: never
376
- if: $CI_PIPELINE_SOURCE == "trigger"
377
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
378
- needs: []
379
- retry: *a1
380
- interruptible: true
381
- allow_failure: true
382
360
  'www ๐Ÿš€ Deploy | dev ':
383
361
  stage: deploy dev
384
362
  image: path/to/docker/gcloud:the-version
@@ -458,8 +436,6 @@ before_script:
458
436
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
459
437
  - set -e
460
438
  - collapseable_section_end "cleanup"
461
- - echo 'Uploading SBOM to Dependency Track'
462
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
463
439
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
464
440
  environment:
465
441
  name: dev/www
@@ -483,8 +459,6 @@ before_script:
483
459
  artifacts: false
484
460
  - job: 'www ๐Ÿงช test | dev '
485
461
  artifacts: false
486
- - job: 'www ๐Ÿงพ sbom | dev '
487
- artifacts: true
488
462
  - job: 'www ๐Ÿ›ก audit | dev '
489
463
  artifacts: false
490
464
  retry: *a1
@@ -507,8 +481,6 @@ before_script:
507
481
  - gcloud run services delete pan-test-app-dev-www --project=google-project-id --region=europe-west6
508
482
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/www --quiet --delete-tags
509
483
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
510
- - echo 'Disabling component in Dependency Track'
511
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
512
484
  - set -e
513
485
  environment:
514
486
  name: dev/www
@@ -791,28 +763,6 @@ before_script:
791
763
  - 'www ๐Ÿ”จ app | review '
792
764
  retry: *a1
793
765
  interruptible: true
794
- 'www ๐Ÿงพ sbom | review ':
795
- stage: build
796
- image:
797
- name: aquasec/trivy:0.58.2
798
- entrypoint:
799
- - ''
800
- variables: {}
801
- script:
802
- - collapseable_section_start "injectvars" "Injecting variables"
803
- - collapseable_section_end "injectvars"
804
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
805
- artifacts:
806
- paths:
807
- - __sbom.json
808
- rules:
809
- - when: never
810
- if: $CI_PIPELINE_SOURCE == "trigger"
811
- - if: $CI_MERGE_REQUEST_ID
812
- needs: []
813
- retry: *a1
814
- interruptible: true
815
- allow_failure: true
816
766
  'www ๐Ÿš€ Deploy | review ':
817
767
  stage: deploy review
818
768
  image: path/to/docker/gcloud:the-version
@@ -895,8 +845,6 @@ before_script:
895
845
  - set -e
896
846
  - set -e
897
847
  - collapseable_section_end "cleanup"
898
- - echo 'Uploading SBOM to Dependency Track'
899
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
900
848
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
901
849
  environment:
902
850
  name: review/$CI_COMMIT_REF_NAME/www
@@ -920,8 +868,6 @@ before_script:
920
868
  artifacts: false
921
869
  - job: 'www ๐Ÿงช test | review '
922
870
  artifacts: false
923
- - job: 'www ๐Ÿงพ sbom | review '
924
- artifacts: true
925
871
  - job: 'www ๐Ÿ›ก audit | review '
926
872
  artifacts: false
927
873
  retry: *a1
@@ -947,8 +893,6 @@ before_script:
947
893
  - set +e
948
894
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/www --quiet --delete-tags
949
895
  - set -e
950
- - echo 'Disabling component in Dependency Track'
951
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
952
896
  - set -e
953
897
  environment:
954
898
  name: review/$CI_COMMIT_REF_NAME/www
@@ -1112,28 +1056,6 @@ before_script:
1112
1056
  - 'www ๐Ÿ”จ app | stage '
1113
1057
  retry: *a1
1114
1058
  interruptible: true
1115
- 'www ๐Ÿงพ sbom | stage ':
1116
- stage: build
1117
- image:
1118
- name: aquasec/trivy:0.58.2
1119
- entrypoint:
1120
- - ''
1121
- variables: {}
1122
- script:
1123
- - collapseable_section_start "injectvars" "Injecting variables"
1124
- - collapseable_section_end "injectvars"
1125
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
1126
- artifacts:
1127
- paths:
1128
- - __sbom.json
1129
- rules:
1130
- - when: never
1131
- if: $CI_PIPELINE_SOURCE == "trigger"
1132
- - if: $CI_COMMIT_TAG
1133
- needs: []
1134
- retry: *a1
1135
- interruptible: true
1136
- allow_failure: true
1137
1059
  'www ๐Ÿš€ Deploy | stage ':
1138
1060
  stage: deploy stage
1139
1061
  image: path/to/docker/gcloud:the-version
@@ -1213,8 +1135,6 @@ before_script:
1213
1135
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
1214
1136
  - set -e
1215
1137
  - collapseable_section_end "cleanup"
1216
- - echo 'Uploading SBOM to Dependency Track'
1217
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
1218
1138
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1219
1139
  environment:
1220
1140
  name: stage/www
@@ -1233,8 +1153,6 @@ before_script:
1233
1153
  artifacts: false
1234
1154
  - job: 'www ๐Ÿ”จ docker | stage '
1235
1155
  artifacts: false
1236
- - job: 'www ๐Ÿงพ sbom | stage '
1237
- artifacts: true
1238
1156
  retry: *a1
1239
1157
  interruptible: true
1240
1158
  allow_failure: false
@@ -1255,8 +1173,6 @@ before_script:
1255
1173
  - gcloud run services delete pan-test-app-stage-www --project=google-project-id --region=europe-west6
1256
1174
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/www --quiet --delete-tags
1257
1175
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
1258
- - echo 'Disabling component in Dependency Track'
1259
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
1260
1176
  - set -e
1261
1177
  environment:
1262
1178
  name: stage/www
@@ -1420,28 +1336,6 @@ before_script:
1420
1336
  - 'www ๐Ÿ”จ app | prod '
1421
1337
  retry: *a1
1422
1338
  interruptible: true
1423
- 'www ๐Ÿงพ sbom | prod ':
1424
- stage: build
1425
- image:
1426
- name: aquasec/trivy:0.58.2
1427
- entrypoint:
1428
- - ''
1429
- variables: {}
1430
- script:
1431
- - collapseable_section_start "injectvars" "Injecting variables"
1432
- - collapseable_section_end "injectvars"
1433
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
1434
- artifacts:
1435
- paths:
1436
- - __sbom.json
1437
- rules:
1438
- - when: never
1439
- if: $CI_PIPELINE_SOURCE == "trigger"
1440
- - if: $CI_COMMIT_TAG
1441
- needs: []
1442
- retry: *a1
1443
- interruptible: true
1444
- allow_failure: true
1445
1339
  'www ๐Ÿš€ Deploy | prod ':
1446
1340
  stage: deploy prod
1447
1341
  image: path/to/docker/gcloud:the-version
@@ -1521,8 +1415,6 @@ before_script:
1521
1415
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
1522
1416
  - set -e
1523
1417
  - collapseable_section_end "cleanup"
1524
- - echo 'Uploading SBOM to Dependency Track'
1525
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
1526
1418
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1527
1419
  environment:
1528
1420
  name: prod/www
@@ -1541,8 +1433,6 @@ before_script:
1541
1433
  artifacts: false
1542
1434
  - job: 'www ๐Ÿ”จ docker | prod '
1543
1435
  artifacts: false
1544
- - job: 'www ๐Ÿงพ sbom | prod '
1545
- artifacts: true
1546
1436
  retry: *a1
1547
1437
  interruptible: true
1548
1438
  allow_failure: true
@@ -1563,8 +1453,6 @@ before_script:
1563
1453
  - gcloud run services delete pan-test-app-prod-www --project=google-project-id --region=europe-west6
1564
1454
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/www --quiet --delete-tags
1565
1455
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/www@$version --quiet --delete-tags; done
1566
- - echo 'Disabling component in Dependency Track'
1567
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/www" "$CI_ENVIRONMENT_URL" || true
1568
1456
  - set -e
1569
1457
  environment:
1570
1458
  name: prod/www
package/examples/__snapshots__/cloud-run-no-cpu-throttling.test.ts.snap CHANGED
@@ -353,28 +353,6 @@ before_script:
353
353
  - 'api ๐Ÿ”จ app | dev '
354
354
  retry: *a1
355
355
  interruptible: true
356
- 'api ๐Ÿงพ sbom | dev ':
357
- stage: build
358
- image:
359
- name: aquasec/trivy:0.58.2
360
- entrypoint:
361
- - ''
362
- variables: {}
363
- script:
364
- - collapseable_section_start "injectvars" "Injecting variables"
365
- - collapseable_section_end "injectvars"
366
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
367
- artifacts:
368
- paths:
369
- - __sbom.json
370
- rules:
371
- - when: never
372
- if: $CI_PIPELINE_SOURCE == "trigger"
373
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
374
- needs: []
375
- retry: *a1
376
- interruptible: true
377
- allow_failure: true
378
356
  'api ๐Ÿš€ Deploy | dev ':
379
357
  stage: deploy dev
380
358
  image: path/to/docker/gcloud:the-version
@@ -454,8 +432,6 @@ before_script:
454
432
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
455
433
  - set -e
456
434
  - collapseable_section_end "cleanup"
457
- - echo 'Uploading SBOM to Dependency Track'
458
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
459
435
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
460
436
  environment:
461
437
  name: dev/api
@@ -479,8 +455,6 @@ before_script:
479
455
  artifacts: false
480
456
  - job: 'api ๐Ÿงช test | dev '
481
457
  artifacts: false
482
- - job: 'api ๐Ÿงพ sbom | dev '
483
- artifacts: true
484
458
  - job: 'api ๐Ÿ›ก audit | dev '
485
459
  artifacts: false
486
460
  retry: *a1
@@ -503,8 +477,6 @@ before_script:
503
477
  - gcloud run services delete pan-test-app-dev-api --project=google-project-id --region=europe-west6
504
478
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
505
479
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
506
- - echo 'Disabling component in Dependency Track'
507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
508
480
  - set -e
509
481
  environment:
510
482
  name: dev/api
@@ -781,28 +753,6 @@ before_script:
781
753
  - 'api ๐Ÿ”จ app | review '
782
754
  retry: *a1
783
755
  interruptible: true
784
- 'api ๐Ÿงพ sbom | review ':
785
- stage: build
786
- image:
787
- name: aquasec/trivy:0.58.2
788
- entrypoint:
789
- - ''
790
- variables: {}
791
- script:
792
- - collapseable_section_start "injectvars" "Injecting variables"
793
- - collapseable_section_end "injectvars"
794
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
795
- artifacts:
796
- paths:
797
- - __sbom.json
798
- rules:
799
- - when: never
800
- if: $CI_PIPELINE_SOURCE == "trigger"
801
- - if: $CI_MERGE_REQUEST_ID
802
- needs: []
803
- retry: *a1
804
- interruptible: true
805
- allow_failure: true
806
756
  'api ๐Ÿš€ Deploy | review ':
807
757
  stage: deploy review
808
758
  image: path/to/docker/gcloud:the-version
@@ -885,8 +835,6 @@ before_script:
885
835
  - set -e
886
836
  - set -e
887
837
  - collapseable_section_end "cleanup"
888
- - echo 'Uploading SBOM to Dependency Track'
889
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
890
838
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
891
839
  environment:
892
840
  name: review/$CI_COMMIT_REF_NAME/api
@@ -910,8 +858,6 @@ before_script:
910
858
  artifacts: false
911
859
  - job: 'api ๐Ÿงช test | review '
912
860
  artifacts: false
913
- - job: 'api ๐Ÿงพ sbom | review '
914
- artifacts: true
915
861
  - job: 'api ๐Ÿ›ก audit | review '
916
862
  artifacts: false
917
863
  retry: *a1
@@ -937,8 +883,6 @@ before_script:
937
883
  - set +e
938
884
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
939
885
  - set -e
940
- - echo 'Disabling component in Dependency Track'
941
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
942
886
  - set -e
943
887
  environment:
944
888
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1098,28 +1042,6 @@ before_script:
1098
1042
  - 'api ๐Ÿ”จ app | stage '
1099
1043
  retry: *a1
1100
1044
  interruptible: true
1101
- 'api ๐Ÿงพ sbom | stage ':
1102
- stage: build
1103
- image:
1104
- name: aquasec/trivy:0.58.2
1105
- entrypoint:
1106
- - ''
1107
- variables: {}
1108
- script:
1109
- - collapseable_section_start "injectvars" "Injecting variables"
1110
- - collapseable_section_end "injectvars"
1111
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1112
- artifacts:
1113
- paths:
1114
- - __sbom.json
1115
- rules:
1116
- - when: never
1117
- if: $CI_PIPELINE_SOURCE == "trigger"
1118
- - if: $CI_COMMIT_TAG
1119
- needs: []
1120
- retry: *a1
1121
- interruptible: true
1122
- allow_failure: true
1123
1045
  'api ๐Ÿš€ Deploy | stage ':
1124
1046
  stage: deploy stage
1125
1047
  image: path/to/docker/gcloud:the-version
@@ -1199,8 +1121,6 @@ before_script:
1199
1121
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1200
1122
  - set -e
1201
1123
  - collapseable_section_end "cleanup"
1202
- - echo 'Uploading SBOM to Dependency Track'
1203
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1204
1124
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1205
1125
  environment:
1206
1126
  name: stage/api
@@ -1219,8 +1139,6 @@ before_script:
1219
1139
  artifacts: false
1220
1140
  - job: 'api ๐Ÿ”จ docker | stage '
1221
1141
  artifacts: false
1222
- - job: 'api ๐Ÿงพ sbom | stage '
1223
- artifacts: true
1224
1142
  retry: *a1
1225
1143
  interruptible: true
1226
1144
  allow_failure: false
@@ -1241,8 +1159,6 @@ before_script:
1241
1159
  - gcloud run services delete pan-test-app-stage-api --project=google-project-id --region=europe-west6
1242
1160
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1243
1161
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1244
- - echo 'Disabling component in Dependency Track'
1245
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1246
1162
  - set -e
1247
1163
  environment:
1248
1164
  name: stage/api
@@ -1402,28 +1318,6 @@ before_script:
1402
1318
  - 'api ๐Ÿ”จ app | prod '
1403
1319
  retry: *a1
1404
1320
  interruptible: true
1405
- 'api ๐Ÿงพ sbom | prod ':
1406
- stage: build
1407
- image:
1408
- name: aquasec/trivy:0.58.2
1409
- entrypoint:
1410
- - ''
1411
- variables: {}
1412
- script:
1413
- - collapseable_section_start "injectvars" "Injecting variables"
1414
- - collapseable_section_end "injectvars"
1415
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1416
- artifacts:
1417
- paths:
1418
- - __sbom.json
1419
- rules:
1420
- - when: never
1421
- if: $CI_PIPELINE_SOURCE == "trigger"
1422
- - if: $CI_COMMIT_TAG
1423
- needs: []
1424
- retry: *a1
1425
- interruptible: true
1426
- allow_failure: true
1427
1321
  'api ๐Ÿš€ Deploy | prod ':
1428
1322
  stage: deploy prod
1429
1323
  image: path/to/docker/gcloud:the-version
@@ -1503,8 +1397,6 @@ before_script:
1503
1397
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1504
1398
  - set -e
1505
1399
  - collapseable_section_end "cleanup"
1506
- - echo 'Uploading SBOM to Dependency Track'
1507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1508
1400
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1509
1401
  environment:
1510
1402
  name: prod/api
@@ -1523,8 +1415,6 @@ before_script:
1523
1415
  artifacts: false
1524
1416
  - job: 'api ๐Ÿ”จ docker | prod '
1525
1417
  artifacts: false
1526
- - job: 'api ๐Ÿงพ sbom | prod '
1527
- artifacts: true
1528
1418
  retry: *a1
1529
1419
  interruptible: true
1530
1420
  allow_failure: true
@@ -1545,8 +1435,6 @@ before_script:
1545
1435
  - gcloud run services delete pan-test-app-prod-api --project=google-project-id --region=europe-west6
1546
1436
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1547
1437
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1548
- - echo 'Disabling component in Dependency Track'
1549
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1550
1438
  - set -e
1551
1439
  environment:
1552
1440
  name: prod/api
package/examples/__snapshots__/cloud-run-no-service.test.ts.snap CHANGED
@@ -355,28 +355,6 @@ before_script:
355
355
  - 'api ๐Ÿ”จ app | dev '
356
356
  retry: *a1
357
357
  interruptible: true
358
- 'api ๐Ÿงพ sbom | dev ':
359
- stage: build
360
- image:
361
- name: aquasec/trivy:0.58.2
362
- entrypoint:
363
- - ''
364
- variables: {}
365
- script:
366
- - collapseable_section_start "injectvars" "Injecting variables"
367
- - collapseable_section_end "injectvars"
368
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
369
- artifacts:
370
- paths:
371
- - __sbom.json
372
- rules:
373
- - when: never
374
- if: $CI_PIPELINE_SOURCE == "trigger"
375
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
376
- needs: []
377
- retry: *a1
378
- interruptible: true
379
- allow_failure: true
380
358
  'api ๐Ÿš€ Deploy | dev ':
381
359
  stage: deploy dev
382
360
  image: path/to/docker/gcloud:the-version
@@ -479,8 +457,6 @@ before_script:
479
457
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
480
458
  - set -e
481
459
  - collapseable_section_end "cleanup"
482
- - echo 'Uploading SBOM to Dependency Track'
483
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
484
460
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
485
461
  environment:
486
462
  name: dev/api
@@ -504,8 +480,6 @@ before_script:
504
480
  artifacts: false
505
481
  - job: 'api ๐Ÿงช test | dev '
506
482
  artifacts: false
507
- - job: 'api ๐Ÿงพ sbom | dev '
508
- artifacts: true
509
483
  - job: 'api ๐Ÿ›ก audit | dev '
510
484
  artifacts: false
511
485
  retry: *a1
@@ -530,8 +504,6 @@ before_script:
530
504
  - gcloud run jobs delete pan-test-app-dev-api-alarm-clock --project=asdf --region=asia-east1
531
505
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
532
506
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
533
- - echo 'Disabling component in Dependency Track'
534
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
535
507
  - set -e
536
508
  environment:
537
509
  name: dev/api
@@ -810,28 +782,6 @@ before_script:
810
782
  - 'api ๐Ÿ”จ app | review '
811
783
  retry: *a1
812
784
  interruptible: true
813
- 'api ๐Ÿงพ sbom | review ':
814
- stage: build
815
- image:
816
- name: aquasec/trivy:0.58.2
817
- entrypoint:
818
- - ''
819
- variables: {}
820
- script:
821
- - collapseable_section_start "injectvars" "Injecting variables"
822
- - collapseable_section_end "injectvars"
823
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
824
- artifacts:
825
- paths:
826
- - __sbom.json
827
- rules:
828
- - when: never
829
- if: $CI_PIPELINE_SOURCE == "trigger"
830
- - if: $CI_MERGE_REQUEST_ID
831
- needs: []
832
- retry: *a1
833
- interruptible: true
834
- allow_failure: true
835
785
  'api ๐Ÿš€ Deploy | review ':
836
786
  stage: deploy review
837
787
  image: path/to/docker/gcloud:the-version
@@ -937,8 +887,6 @@ before_script:
937
887
  - set -e
938
888
  - set -e
939
889
  - collapseable_section_end "cleanup"
940
- - echo 'Uploading SBOM to Dependency Track'
941
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
942
890
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
943
891
  environment:
944
892
  name: review/$CI_COMMIT_REF_NAME/api
@@ -962,8 +910,6 @@ before_script:
962
910
  artifacts: false
963
911
  - job: 'api ๐Ÿงช test | review '
964
912
  artifacts: false
965
- - job: 'api ๐Ÿงพ sbom | review '
966
- artifacts: true
967
913
  - job: 'api ๐Ÿ›ก audit | review '
968
914
  artifacts: false
969
915
  retry: *a1
@@ -991,8 +937,6 @@ before_script:
991
937
  - set +e
992
938
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
993
939
  - set -e
994
- - echo 'Disabling component in Dependency Track'
995
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
996
940
  - set -e
997
941
  environment:
998
942
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1154,28 +1098,6 @@ before_script:
1154
1098
  - 'api ๐Ÿ”จ app | stage '
1155
1099
  retry: *a1
1156
1100
  interruptible: true
1157
- 'api ๐Ÿงพ sbom | stage ':
1158
- stage: build
1159
- image:
1160
- name: aquasec/trivy:0.58.2
1161
- entrypoint:
1162
- - ''
1163
- variables: {}
1164
- script:
1165
- - collapseable_section_start "injectvars" "Injecting variables"
1166
- - collapseable_section_end "injectvars"
1167
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
1168
- artifacts:
1169
- paths:
1170
- - __sbom.json
1171
- rules:
1172
- - when: never
1173
- if: $CI_PIPELINE_SOURCE == "trigger"
1174
- - if: $CI_COMMIT_TAG
1175
- needs: []
1176
- retry: *a1
1177
- interruptible: true
1178
- allow_failure: true
1179
1101
  'api ๐Ÿš€ Deploy | stage ':
1180
1102
  stage: deploy stage
1181
1103
  image: path/to/docker/gcloud:the-version
@@ -1278,8 +1200,6 @@ before_script:
1278
1200
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1279
1201
  - set -e
1280
1202
  - collapseable_section_end "cleanup"
1281
- - echo 'Uploading SBOM to Dependency Track'
1282
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1283
1203
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1284
1204
  environment:
1285
1205
  name: stage/api
@@ -1298,8 +1218,6 @@ before_script:
1298
1218
  artifacts: false
1299
1219
  - job: 'api ๐Ÿ”จ docker | stage '
1300
1220
  artifacts: false
1301
- - job: 'api ๐Ÿงพ sbom | stage '
1302
- artifacts: true
1303
1221
  retry: *a1
1304
1222
  interruptible: true
1305
1223
  allow_failure: false
@@ -1322,8 +1240,6 @@ before_script:
1322
1240
  - gcloud run jobs delete pan-test-app-stage-api-alarm-clock --project=asdf --region=asia-east1
1323
1241
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1324
1242
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1325
- - echo 'Disabling component in Dependency Track'
1326
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1327
1243
  - set -e
1328
1244
  environment:
1329
1245
  name: stage/api
@@ -1485,28 +1401,6 @@ before_script:
1485
1401
  - 'api ๐Ÿ”จ app | prod '
1486
1402
  retry: *a1
1487
1403
  interruptible: true
1488
- 'api ๐Ÿงพ sbom | prod ':
1489
- stage: build
1490
- image:
1491
- name: aquasec/trivy:0.58.2
1492
- entrypoint:
1493
- - ''
1494
- variables: {}
1495
- script:
1496
- - collapseable_section_start "injectvars" "Injecting variables"
1497
- - collapseable_section_end "injectvars"
1498
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
1499
- artifacts:
1500
- paths:
1501
- - __sbom.json
1502
- rules:
1503
- - when: never
1504
- if: $CI_PIPELINE_SOURCE == "trigger"
1505
- - if: $CI_COMMIT_TAG
1506
- needs: []
1507
- retry: *a1
1508
- interruptible: true
1509
- allow_failure: true
1510
1404
  'api ๐Ÿš€ Deploy | prod ':
1511
1405
  stage: deploy prod
1512
1406
  image: path/to/docker/gcloud:the-version
@@ -1609,8 +1503,6 @@ before_script:
1609
1503
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1610
1504
  - set -e
1611
1505
  - collapseable_section_end "cleanup"
1612
- - echo 'Uploading SBOM to Dependency Track'
1613
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1614
1506
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1615
1507
  environment:
1616
1508
  name: prod/api
@@ -1629,8 +1521,6 @@ before_script:
1629
1521
  artifacts: false
1630
1522
  - job: 'api ๐Ÿ”จ docker | prod '
1631
1523
  artifacts: false
1632
- - job: 'api ๐Ÿงพ sbom | prod '
1633
- artifacts: true
1634
1524
  retry: *a1
1635
1525
  interruptible: true
1636
1526
  allow_failure: true
@@ -1653,8 +1543,6 @@ before_script:
1653
1543
  - gcloud run jobs delete pan-test-app-prod-api-alarm-clock --project=asdf --region=asia-east1
1654
1544
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1655
1545
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1656
- - echo 'Disabling component in Dependency Track'
1657
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1658
1546
  - set -e
1659
1547
  environment:
1660
1548
  name: prod/api