@catladder/pipeline 3.40.1 โ†’ 3.41.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (81) hide show
  1. package/dist/build/base/index.js +2 -4
  2. package/dist/build/types.d.ts +0 -10
  3. package/dist/constants.js +1 -1
  4. package/dist/deploy/base/deploy.js +1 -6
  5. package/dist/deploy/cloudRun/createJobs/getCloudRunDeployScripts.js +2 -3
  6. package/dist/deploy/cloudRun/createJobs/getCloudRunStopScripts.js +2 -3
  7. package/dist/deploy/custom/deployJob.js +2 -3
  8. package/dist/deploy/kubernetes/deployJob.js +2 -3
  9. package/dist/tsconfig.tsbuildinfo +1 -1
  10. package/examples/__snapshots__/automatic-releases.test.ts.snap +0 -112
  11. package/examples/__snapshots__/cloud-run-execute-script-on-deploy.test.ts.snap +0 -112
  12. package/examples/__snapshots__/cloud-run-health-check-defaults.test.ts.snap +0 -112
  13. package/examples/__snapshots__/cloud-run-health-check-only-startup.test.ts.snap +0 -112
  14. package/examples/__snapshots__/cloud-run-health-check.test.ts.snap +0 -112
  15. package/examples/__snapshots__/cloud-run-http2.test.ts.snap +0 -112
  16. package/examples/__snapshots__/cloud-run-memory-limit.test.ts.snap +0 -112
  17. package/examples/__snapshots__/cloud-run-meteor-with-worker.test.ts.snap +0 -112
  18. package/examples/__snapshots__/cloud-run-n8n.test.ts.snap +940 -0
  19. package/examples/__snapshots__/cloud-run-nextjs.test.ts.snap +0 -112
  20. package/examples/__snapshots__/cloud-run-no-cpu-throttling.test.ts.snap +0 -112
  21. package/examples/__snapshots__/cloud-run-no-service.test.ts.snap +0 -112
  22. package/examples/__snapshots__/cloud-run-non-public.test.ts.snap +0 -112
  23. package/examples/__snapshots__/cloud-run-post-stop-job.test.ts.snap +0 -112
  24. package/examples/__snapshots__/cloud-run-service-custom-vpc-connector.test.ts.snap +0 -112
  25. package/examples/__snapshots__/cloud-run-service-custom-vpc.test.ts.snap +0 -112
  26. package/examples/__snapshots__/cloud-run-service-gen2.test.ts.snap +0 -112
  27. package/examples/__snapshots__/cloud-run-service-increase-timout.test.ts.snap +0 -112
  28. package/examples/__snapshots__/cloud-run-service-with-volumes.test.ts.snap +0 -112
  29. package/examples/__snapshots__/cloud-run-session-affinity.test.ts.snap +0 -112
  30. package/examples/__snapshots__/cloud-run-storybook.test.ts.snap +0 -112
  31. package/examples/__snapshots__/cloud-run-with-agents.test.ts.snap +0 -112
  32. package/examples/__snapshots__/cloud-run-with-gpu.test.ts.snap +0 -112
  33. package/examples/__snapshots__/cloud-run-with-ngnix.test.ts.snap +0 -112
  34. package/examples/__snapshots__/cloud-run-with-sql-legacy-jobs.test.ts.snap +0 -112
  35. package/examples/__snapshots__/cloud-run-with-sql-multiple-dbs.test.ts.snap +0 -336
  36. package/examples/__snapshots__/cloud-run-with-sql-reuse-db.test.ts.snap +0 -224
  37. package/examples/__snapshots__/cloud-run-with-sql.test.ts.snap +0 -112
  38. package/examples/__snapshots__/cloud-run-with-worker.test.ts.snap +0 -112
  39. package/examples/__snapshots__/custom-build-job-with-tests.test.ts.snap +0 -112
  40. package/examples/__snapshots__/custom-build-job.test.ts.snap +0 -112
  41. package/examples/__snapshots__/custom-deploy.test.ts.snap +0 -106
  42. package/examples/__snapshots__/custom-docker-file.test.ts.snap +0 -112
  43. package/examples/__snapshots__/custom-envs.test.ts.snap +0 -132
  44. package/examples/__snapshots__/custom-verify-job.test.ts.snap +0 -112
  45. package/examples/__snapshots__/git-submodule.test.ts.snap +0 -112
  46. package/examples/__snapshots__/kubernetes-application-customization.test.ts.snap +0 -112
  47. package/examples/__snapshots__/kubernetes-with-cloud-sql.test.ts.snap +0 -112
  48. package/examples/__snapshots__/kubernetes-with-jobs.test.ts.snap +0 -224
  49. package/examples/__snapshots__/kubernetes-with-mongodb.test.ts.snap +0 -112
  50. package/examples/__snapshots__/local-dot-env.test.ts.snap +0 -112
  51. package/examples/__snapshots__/meteor-kubernetes.test.ts.snap +0 -112
  52. package/examples/__snapshots__/modify-generated-files.test.ts.snap +0 -88
  53. package/examples/__snapshots__/modify-generated-yaml.test.ts.snap +0 -88
  54. package/examples/__snapshots__/multiline-var.test.ts.snap +0 -336
  55. package/examples/__snapshots__/native-app.test.ts.snap +0 -216
  56. package/examples/__snapshots__/node-build-with-custom-image.test.ts.snap +0 -112
  57. package/examples/__snapshots__/node-build-with-docker-additions.test.ts.snap +0 -112
  58. package/examples/__snapshots__/override-secrets.test.ts.snap +0 -112
  59. package/examples/__snapshots__/rails-k8s-with-worker-dockerfile.test.ts.snap +0 -112
  60. package/examples/__snapshots__/rails-k8s-with-worker.test.ts.snap +0 -112
  61. package/examples/__snapshots__/referencing-other-vars.test.ts.snap +0 -336
  62. package/examples/__snapshots__/wait-for-other-deploy.test.ts.snap +0 -208
  63. package/examples/__snapshots__/workspace-api-www-turbo-cache.test.ts.snap +0 -224
  64. package/examples/__snapshots__/workspace-api-www.test.ts.snap +0 -224
  65. package/examples/{custom-sbom-java.test.ts โ†’ cloud-run-n8n.test.ts} +2 -2
  66. package/examples/cloud-run-n8n.ts +62 -0
  67. package/package.json +1 -1
  68. package/src/build/base/index.ts +0 -4
  69. package/src/build/types.ts +0 -13
  70. package/src/deploy/base/deploy.ts +0 -5
  71. package/src/deploy/cloudRun/createJobs/getCloudRunDeployScripts.ts +0 -2
  72. package/src/deploy/cloudRun/createJobs/getCloudRunStopScripts.ts +0 -2
  73. package/src/deploy/custom/deployJob.ts +2 -9
  74. package/src/deploy/kubernetes/deployJob.ts +3 -10
  75. package/dist/build/sbom.d.ts +0 -5
  76. package/dist/build/sbom.js +0 -35
  77. package/dist/deploy/sbom.d.ts +0 -4
  78. package/dist/deploy/sbom.js +0 -21
  79. package/examples/custom-sbom-java.ts +0 -38
  80. package/src/build/sbom.ts +0 -53
  81. package/src/deploy/sbom.ts +0 -34
package/examples/__snapshots__/cloud-run-service-with-volumes.test.ts.snap CHANGED
@@ -355,28 +355,6 @@ before_script:
355
355
  - 'api ๐Ÿ”จ app | dev '
356
356
  retry: *a1
357
357
  interruptible: true
358
- 'api ๐Ÿงพ sbom | dev ':
359
- stage: build
360
- image:
361
- name: aquasec/trivy:0.58.2
362
- entrypoint:
363
- - ''
364
- variables: {}
365
- script:
366
- - collapseable_section_start "injectvars" "Injecting variables"
367
- - collapseable_section_end "injectvars"
368
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
369
- artifacts:
370
- paths:
371
- - __sbom.json
372
- rules:
373
- - when: never
374
- if: $CI_PIPELINE_SOURCE == "trigger"
375
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
376
- needs: []
377
- retry: *a1
378
- interruptible: true
379
- allow_failure: true
380
358
  'api ๐Ÿš€ Deploy | dev ':
381
359
  stage: deploy dev
382
360
  image: path/to/docker/gcloud:the-version
@@ -470,8 +448,6 @@ before_script:
470
448
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
471
449
  - set -e
472
450
  - collapseable_section_end "cleanup"
473
- - echo 'Uploading SBOM to Dependency Track'
474
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
475
451
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
476
452
  environment:
477
453
  name: dev/api
@@ -495,8 +471,6 @@ before_script:
495
471
  artifacts: false
496
472
  - job: 'api ๐Ÿงช test | dev '
497
473
  artifacts: false
498
- - job: 'api ๐Ÿงพ sbom | dev '
499
- artifacts: true
500
474
  - job: 'api ๐Ÿ›ก audit | dev '
501
475
  artifacts: false
502
476
  retry: *a1
@@ -521,8 +495,6 @@ before_script:
521
495
  - gcloud run jobs delete pan-test-app-dev-api-migrate --project=google-project-id --region=europe-west6
522
496
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
523
497
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
524
- - echo 'Disabling component in Dependency Track'
525
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
526
498
  - set -e
527
499
  environment:
528
500
  name: dev/api
@@ -801,28 +773,6 @@ before_script:
801
773
  - 'api ๐Ÿ”จ app | review '
802
774
  retry: *a1
803
775
  interruptible: true
804
- 'api ๐Ÿงพ sbom | review ':
805
- stage: build
806
- image:
807
- name: aquasec/trivy:0.58.2
808
- entrypoint:
809
- - ''
810
- variables: {}
811
- script:
812
- - collapseable_section_start "injectvars" "Injecting variables"
813
- - collapseable_section_end "injectvars"
814
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
815
- artifacts:
816
- paths:
817
- - __sbom.json
818
- rules:
819
- - when: never
820
- if: $CI_PIPELINE_SOURCE == "trigger"
821
- - if: $CI_MERGE_REQUEST_ID
822
- needs: []
823
- retry: *a1
824
- interruptible: true
825
- allow_failure: true
826
776
  'api ๐Ÿš€ Deploy | review ':
827
777
  stage: deploy review
828
778
  image: path/to/docker/gcloud:the-version
@@ -919,8 +869,6 @@ before_script:
919
869
  - set -e
920
870
  - set -e
921
871
  - collapseable_section_end "cleanup"
922
- - echo 'Uploading SBOM to Dependency Track'
923
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
924
872
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
925
873
  environment:
926
874
  name: review/$CI_COMMIT_REF_NAME/api
@@ -944,8 +892,6 @@ before_script:
944
892
  artifacts: false
945
893
  - job: 'api ๐Ÿงช test | review '
946
894
  artifacts: false
947
- - job: 'api ๐Ÿงพ sbom | review '
948
- artifacts: true
949
895
  - job: 'api ๐Ÿ›ก audit | review '
950
896
  artifacts: false
951
897
  retry: *a1
@@ -973,8 +919,6 @@ before_script:
973
919
  - set +e
974
920
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
975
921
  - set -e
976
- - echo 'Disabling component in Dependency Track'
977
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
978
922
  - set -e
979
923
  environment:
980
924
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1136,28 +1080,6 @@ before_script:
1136
1080
  - 'api ๐Ÿ”จ app | stage '
1137
1081
  retry: *a1
1138
1082
  interruptible: true
1139
- 'api ๐Ÿงพ sbom | stage ':
1140
- stage: build
1141
- image:
1142
- name: aquasec/trivy:0.58.2
1143
- entrypoint:
1144
- - ''
1145
- variables: {}
1146
- script:
1147
- - collapseable_section_start "injectvars" "Injecting variables"
1148
- - collapseable_section_end "injectvars"
1149
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1150
- artifacts:
1151
- paths:
1152
- - __sbom.json
1153
- rules:
1154
- - when: never
1155
- if: $CI_PIPELINE_SOURCE == "trigger"
1156
- - if: $CI_COMMIT_TAG
1157
- needs: []
1158
- retry: *a1
1159
- interruptible: true
1160
- allow_failure: true
1161
1083
  'api ๐Ÿš€ Deploy | stage ':
1162
1084
  stage: deploy stage
1163
1085
  image: path/to/docker/gcloud:the-version
@@ -1251,8 +1173,6 @@ before_script:
1251
1173
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1252
1174
  - set -e
1253
1175
  - collapseable_section_end "cleanup"
1254
- - echo 'Uploading SBOM to Dependency Track'
1255
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1256
1176
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1257
1177
  environment:
1258
1178
  name: stage/api
@@ -1271,8 +1191,6 @@ before_script:
1271
1191
  artifacts: false
1272
1192
  - job: 'api ๐Ÿ”จ docker | stage '
1273
1193
  artifacts: false
1274
- - job: 'api ๐Ÿงพ sbom | stage '
1275
- artifacts: true
1276
1194
  retry: *a1
1277
1195
  interruptible: true
1278
1196
  allow_failure: false
@@ -1295,8 +1213,6 @@ before_script:
1295
1213
  - gcloud run jobs delete pan-test-app-stage-api-migrate --project=google-project-id --region=europe-west6
1296
1214
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1297
1215
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1298
- - echo 'Disabling component in Dependency Track'
1299
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1300
1216
  - set -e
1301
1217
  environment:
1302
1218
  name: stage/api
@@ -1458,28 +1374,6 @@ before_script:
1458
1374
  - 'api ๐Ÿ”จ app | prod '
1459
1375
  retry: *a1
1460
1376
  interruptible: true
1461
- 'api ๐Ÿงพ sbom | prod ':
1462
- stage: build
1463
- image:
1464
- name: aquasec/trivy:0.58.2
1465
- entrypoint:
1466
- - ''
1467
- variables: {}
1468
- script:
1469
- - collapseable_section_start "injectvars" "Injecting variables"
1470
- - collapseable_section_end "injectvars"
1471
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1472
- artifacts:
1473
- paths:
1474
- - __sbom.json
1475
- rules:
1476
- - when: never
1477
- if: $CI_PIPELINE_SOURCE == "trigger"
1478
- - if: $CI_COMMIT_TAG
1479
- needs: []
1480
- retry: *a1
1481
- interruptible: true
1482
- allow_failure: true
1483
1377
  'api ๐Ÿš€ Deploy | prod ':
1484
1378
  stage: deploy prod
1485
1379
  image: path/to/docker/gcloud:the-version
@@ -1573,8 +1467,6 @@ before_script:
1573
1467
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1574
1468
  - set -e
1575
1469
  - collapseable_section_end "cleanup"
1576
- - echo 'Uploading SBOM to Dependency Track'
1577
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1578
1470
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1579
1471
  environment:
1580
1472
  name: prod/api
@@ -1593,8 +1485,6 @@ before_script:
1593
1485
  artifacts: false
1594
1486
  - job: 'api ๐Ÿ”จ docker | prod '
1595
1487
  artifacts: false
1596
- - job: 'api ๐Ÿงพ sbom | prod '
1597
- artifacts: true
1598
1488
  retry: *a1
1599
1489
  interruptible: true
1600
1490
  allow_failure: true
@@ -1617,8 +1507,6 @@ before_script:
1617
1507
  - gcloud run jobs delete pan-test-app-prod-api-migrate --project=google-project-id --region=europe-west6
1618
1508
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1619
1509
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1620
- - echo 'Disabling component in Dependency Track'
1621
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1622
1510
  - set -e
1623
1511
  environment:
1624
1512
  name: prod/api
package/examples/__snapshots__/cloud-run-session-affinity.test.ts.snap CHANGED
@@ -353,28 +353,6 @@ before_script:
353
353
  - 'api ๐Ÿ”จ app | dev '
354
354
  retry: *a1
355
355
  interruptible: true
356
- 'api ๐Ÿงพ sbom | dev ':
357
- stage: build
358
- image:
359
- name: aquasec/trivy:0.58.2
360
- entrypoint:
361
- - ''
362
- variables: {}
363
- script:
364
- - collapseable_section_start "injectvars" "Injecting variables"
365
- - collapseable_section_end "injectvars"
366
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
367
- artifacts:
368
- paths:
369
- - __sbom.json
370
- rules:
371
- - when: never
372
- if: $CI_PIPELINE_SOURCE == "trigger"
373
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
374
- needs: []
375
- retry: *a1
376
- interruptible: true
377
- allow_failure: true
378
356
  'api ๐Ÿš€ Deploy | dev ':
379
357
  stage: deploy dev
380
358
  image: path/to/docker/gcloud:the-version
@@ -454,8 +432,6 @@ before_script:
454
432
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
455
433
  - set -e
456
434
  - collapseable_section_end "cleanup"
457
- - echo 'Uploading SBOM to Dependency Track'
458
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
459
435
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
460
436
  environment:
461
437
  name: dev/api
@@ -479,8 +455,6 @@ before_script:
479
455
  artifacts: false
480
456
  - job: 'api ๐Ÿงช test | dev '
481
457
  artifacts: false
482
- - job: 'api ๐Ÿงพ sbom | dev '
483
- artifacts: true
484
458
  - job: 'api ๐Ÿ›ก audit | dev '
485
459
  artifacts: false
486
460
  retry: *a1
@@ -503,8 +477,6 @@ before_script:
503
477
  - gcloud run services delete pan-test-app-dev-api --project=google-project-id --region=europe-west6
504
478
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
505
479
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
506
- - echo 'Disabling component in Dependency Track'
507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
508
480
  - set -e
509
481
  environment:
510
482
  name: dev/api
@@ -781,28 +753,6 @@ before_script:
781
753
  - 'api ๐Ÿ”จ app | review '
782
754
  retry: *a1
783
755
  interruptible: true
784
- 'api ๐Ÿงพ sbom | review ':
785
- stage: build
786
- image:
787
- name: aquasec/trivy:0.58.2
788
- entrypoint:
789
- - ''
790
- variables: {}
791
- script:
792
- - collapseable_section_start "injectvars" "Injecting variables"
793
- - collapseable_section_end "injectvars"
794
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
795
- artifacts:
796
- paths:
797
- - __sbom.json
798
- rules:
799
- - when: never
800
- if: $CI_PIPELINE_SOURCE == "trigger"
801
- - if: $CI_MERGE_REQUEST_ID
802
- needs: []
803
- retry: *a1
804
- interruptible: true
805
- allow_failure: true
806
756
  'api ๐Ÿš€ Deploy | review ':
807
757
  stage: deploy review
808
758
  image: path/to/docker/gcloud:the-version
@@ -885,8 +835,6 @@ before_script:
885
835
  - set -e
886
836
  - set -e
887
837
  - collapseable_section_end "cleanup"
888
- - echo 'Uploading SBOM to Dependency Track'
889
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
890
838
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
891
839
  environment:
892
840
  name: review/$CI_COMMIT_REF_NAME/api
@@ -910,8 +858,6 @@ before_script:
910
858
  artifacts: false
911
859
  - job: 'api ๐Ÿงช test | review '
912
860
  artifacts: false
913
- - job: 'api ๐Ÿงพ sbom | review '
914
- artifacts: true
915
861
  - job: 'api ๐Ÿ›ก audit | review '
916
862
  artifacts: false
917
863
  retry: *a1
@@ -937,8 +883,6 @@ before_script:
937
883
  - set +e
938
884
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
939
885
  - set -e
940
- - echo 'Disabling component in Dependency Track'
941
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
942
886
  - set -e
943
887
  environment:
944
888
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1098,28 +1042,6 @@ before_script:
1098
1042
  - 'api ๐Ÿ”จ app | stage '
1099
1043
  retry: *a1
1100
1044
  interruptible: true
1101
- 'api ๐Ÿงพ sbom | stage ':
1102
- stage: build
1103
- image:
1104
- name: aquasec/trivy:0.58.2
1105
- entrypoint:
1106
- - ''
1107
- variables: {}
1108
- script:
1109
- - collapseable_section_start "injectvars" "Injecting variables"
1110
- - collapseable_section_end "injectvars"
1111
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1112
- artifacts:
1113
- paths:
1114
- - __sbom.json
1115
- rules:
1116
- - when: never
1117
- if: $CI_PIPELINE_SOURCE == "trigger"
1118
- - if: $CI_COMMIT_TAG
1119
- needs: []
1120
- retry: *a1
1121
- interruptible: true
1122
- allow_failure: true
1123
1045
  'api ๐Ÿš€ Deploy | stage ':
1124
1046
  stage: deploy stage
1125
1047
  image: path/to/docker/gcloud:the-version
@@ -1199,8 +1121,6 @@ before_script:
1199
1121
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1200
1122
  - set -e
1201
1123
  - collapseable_section_end "cleanup"
1202
- - echo 'Uploading SBOM to Dependency Track'
1203
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1204
1124
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1205
1125
  environment:
1206
1126
  name: stage/api
@@ -1219,8 +1139,6 @@ before_script:
1219
1139
  artifacts: false
1220
1140
  - job: 'api ๐Ÿ”จ docker | stage '
1221
1141
  artifacts: false
1222
- - job: 'api ๐Ÿงพ sbom | stage '
1223
- artifacts: true
1224
1142
  retry: *a1
1225
1143
  interruptible: true
1226
1144
  allow_failure: false
@@ -1241,8 +1159,6 @@ before_script:
1241
1159
  - gcloud run services delete pan-test-app-stage-api --project=google-project-id --region=europe-west6
1242
1160
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1243
1161
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1244
- - echo 'Disabling component in Dependency Track'
1245
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1246
1162
  - set -e
1247
1163
  environment:
1248
1164
  name: stage/api
@@ -1402,28 +1318,6 @@ before_script:
1402
1318
  - 'api ๐Ÿ”จ app | prod '
1403
1319
  retry: *a1
1404
1320
  interruptible: true
1405
- 'api ๐Ÿงพ sbom | prod ':
1406
- stage: build
1407
- image:
1408
- name: aquasec/trivy:0.58.2
1409
- entrypoint:
1410
- - ''
1411
- variables: {}
1412
- script:
1413
- - collapseable_section_start "injectvars" "Injecting variables"
1414
- - collapseable_section_end "injectvars"
1415
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1416
- artifacts:
1417
- paths:
1418
- - __sbom.json
1419
- rules:
1420
- - when: never
1421
- if: $CI_PIPELINE_SOURCE == "trigger"
1422
- - if: $CI_COMMIT_TAG
1423
- needs: []
1424
- retry: *a1
1425
- interruptible: true
1426
- allow_failure: true
1427
1321
  'api ๐Ÿš€ Deploy | prod ':
1428
1322
  stage: deploy prod
1429
1323
  image: path/to/docker/gcloud:the-version
@@ -1503,8 +1397,6 @@ before_script:
1503
1397
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1504
1398
  - set -e
1505
1399
  - collapseable_section_end "cleanup"
1506
- - echo 'Uploading SBOM to Dependency Track'
1507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1508
1400
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1509
1401
  environment:
1510
1402
  name: prod/api
@@ -1523,8 +1415,6 @@ before_script:
1523
1415
  artifacts: false
1524
1416
  - job: 'api ๐Ÿ”จ docker | prod '
1525
1417
  artifacts: false
1526
- - job: 'api ๐Ÿงพ sbom | prod '
1527
- artifacts: true
1528
1418
  retry: *a1
1529
1419
  interruptible: true
1530
1420
  allow_failure: true
@@ -1545,8 +1435,6 @@ before_script:
1545
1435
  - gcloud run services delete pan-test-app-prod-api --project=google-project-id --region=europe-west6
1546
1436
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1547
1437
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1548
- - echo 'Disabling component in Dependency Track'
1549
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1550
1438
  - set -e
1551
1439
  environment:
1552
1440
  name: prod/api
package/examples/__snapshots__/cloud-run-storybook.test.ts.snap CHANGED
@@ -250,28 +250,6 @@ before_script:
250
250
  - 'api ๐Ÿ”จ app | dev '
251
251
  retry: *a1
252
252
  interruptible: true
253
- 'api ๐Ÿงพ sbom | dev ':
254
- stage: build
255
- image:
256
- name: aquasec/trivy:0.58.2
257
- entrypoint:
258
- - ''
259
- variables: {}
260
- script:
261
- - collapseable_section_start "injectvars" "Injecting variables"
262
- - collapseable_section_end "injectvars"
263
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
264
- artifacts:
265
- paths:
266
- - __sbom.json
267
- rules:
268
- - when: never
269
- if: $CI_PIPELINE_SOURCE == "trigger"
270
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
271
- needs: []
272
- retry: *a1
273
- interruptible: true
274
- allow_failure: true
275
253
  'api ๐Ÿš€ Deploy | dev ':
276
254
  stage: deploy dev
277
255
  image: path/to/docker/gcloud:the-version
@@ -351,8 +329,6 @@ before_script:
351
329
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
352
330
  - set -e
353
331
  - collapseable_section_end "cleanup"
354
- - echo 'Uploading SBOM to Dependency Track'
355
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
356
332
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
357
333
  environment:
358
334
  name: dev/api
@@ -372,8 +348,6 @@ before_script:
372
348
  artifacts: false
373
349
  - job: 'api ๐Ÿ”จ docker | dev '
374
350
  artifacts: false
375
- - job: 'api ๐Ÿงพ sbom | dev '
376
- artifacts: true
377
351
  retry: *a1
378
352
  interruptible: true
379
353
  allow_failure: false
@@ -394,8 +368,6 @@ before_script:
394
368
  - gcloud run services delete pan-test-app-dev-api --project=asdf --region=asia-east1
395
369
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
396
370
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
397
- - echo 'Disabling component in Dependency Track'
398
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
399
371
  - set -e
400
372
  environment:
401
373
  name: dev/api
@@ -561,28 +533,6 @@ before_script:
561
533
  - 'api ๐Ÿ”จ app | review '
562
534
  retry: *a1
563
535
  interruptible: true
564
- 'api ๐Ÿงพ sbom | review ':
565
- stage: build
566
- image:
567
- name: aquasec/trivy:0.58.2
568
- entrypoint:
569
- - ''
570
- variables: {}
571
- script:
572
- - collapseable_section_start "injectvars" "Injecting variables"
573
- - collapseable_section_end "injectvars"
574
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
575
- artifacts:
576
- paths:
577
- - __sbom.json
578
- rules:
579
- - when: never
580
- if: $CI_PIPELINE_SOURCE == "trigger"
581
- - if: $CI_MERGE_REQUEST_ID
582
- needs: []
583
- retry: *a1
584
- interruptible: true
585
- allow_failure: true
586
536
  'api ๐Ÿš€ Deploy | review ':
587
537
  stage: deploy review
588
538
  image: path/to/docker/gcloud:the-version
@@ -665,8 +615,6 @@ before_script:
665
615
  - set -e
666
616
  - set -e
667
617
  - collapseable_section_end "cleanup"
668
- - echo 'Uploading SBOM to Dependency Track'
669
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
670
618
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
671
619
  environment:
672
620
  name: review/$CI_COMMIT_REF_NAME/api
@@ -686,8 +634,6 @@ before_script:
686
634
  artifacts: false
687
635
  - job: 'api ๐Ÿ”จ docker | review '
688
636
  artifacts: false
689
- - job: 'api ๐Ÿงพ sbom | review '
690
- artifacts: true
691
637
  retry: *a1
692
638
  interruptible: true
693
639
  allow_failure: false
@@ -711,8 +657,6 @@ before_script:
711
657
  - set +e
712
658
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
713
659
  - set -e
714
- - echo 'Disabling component in Dependency Track'
715
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
716
660
  - set -e
717
661
  environment:
718
662
  name: review/$CI_COMMIT_REF_NAME/api
@@ -872,28 +816,6 @@ before_script:
872
816
  - 'api ๐Ÿ”จ app | stage '
873
817
  retry: *a1
874
818
  interruptible: true
875
- 'api ๐Ÿงพ sbom | stage ':
876
- stage: build
877
- image:
878
- name: aquasec/trivy:0.58.2
879
- entrypoint:
880
- - ''
881
- variables: {}
882
- script:
883
- - collapseable_section_start "injectvars" "Injecting variables"
884
- - collapseable_section_end "injectvars"
885
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
886
- artifacts:
887
- paths:
888
- - __sbom.json
889
- rules:
890
- - when: never
891
- if: $CI_PIPELINE_SOURCE == "trigger"
892
- - if: $CI_COMMIT_TAG
893
- needs: []
894
- retry: *a1
895
- interruptible: true
896
- allow_failure: true
897
819
  'api ๐Ÿš€ Deploy | stage ':
898
820
  stage: deploy stage
899
821
  image: path/to/docker/gcloud:the-version
@@ -973,8 +895,6 @@ before_script:
973
895
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
974
896
  - set -e
975
897
  - collapseable_section_end "cleanup"
976
- - echo 'Uploading SBOM to Dependency Track'
977
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
978
898
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
979
899
  environment:
980
900
  name: stage/api
@@ -993,8 +913,6 @@ before_script:
993
913
  artifacts: false
994
914
  - job: 'api ๐Ÿ”จ docker | stage '
995
915
  artifacts: false
996
- - job: 'api ๐Ÿงพ sbom | stage '
997
- artifacts: true
998
916
  retry: *a1
999
917
  interruptible: true
1000
918
  allow_failure: false
@@ -1015,8 +933,6 @@ before_script:
1015
933
  - gcloud run services delete pan-test-app-stage-api --project=asdf --region=asia-east1
1016
934
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1017
935
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1018
- - echo 'Disabling component in Dependency Track'
1019
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1020
936
  - set -e
1021
937
  environment:
1022
938
  name: stage/api
@@ -1176,28 +1092,6 @@ before_script:
1176
1092
  - 'api ๐Ÿ”จ app | prod '
1177
1093
  retry: *a1
1178
1094
  interruptible: true
1179
- 'api ๐Ÿงพ sbom | prod ':
1180
- stage: build
1181
- image:
1182
- name: aquasec/trivy:0.58.2
1183
- entrypoint:
1184
- - ''
1185
- variables: {}
1186
- script:
1187
- - collapseable_section_start "injectvars" "Injecting variables"
1188
- - collapseable_section_end "injectvars"
1189
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
1190
- artifacts:
1191
- paths:
1192
- - __sbom.json
1193
- rules:
1194
- - when: never
1195
- if: $CI_PIPELINE_SOURCE == "trigger"
1196
- - if: $CI_COMMIT_TAG
1197
- needs: []
1198
- retry: *a1
1199
- interruptible: true
1200
- allow_failure: true
1201
1095
  'api ๐Ÿš€ Deploy | prod ':
1202
1096
  stage: deploy prod
1203
1097
  image: path/to/docker/gcloud:the-version
@@ -1277,8 +1171,6 @@ before_script:
1277
1171
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1278
1172
  - set -e
1279
1173
  - collapseable_section_end "cleanup"
1280
- - echo 'Uploading SBOM to Dependency Track'
1281
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1282
1174
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1283
1175
  environment:
1284
1176
  name: prod/api
@@ -1297,8 +1189,6 @@ before_script:
1297
1189
  artifacts: false
1298
1190
  - job: 'api ๐Ÿ”จ docker | prod '
1299
1191
  artifacts: false
1300
- - job: 'api ๐Ÿงพ sbom | prod '
1301
- artifacts: true
1302
1192
  retry: *a1
1303
1193
  interruptible: true
1304
1194
  allow_failure: true
@@ -1319,8 +1209,6 @@ before_script:
1319
1209
  - gcloud run services delete pan-test-app-prod-api --project=asdf --region=asia-east1
1320
1210
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1321
1211
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1322
- - echo 'Disabling component in Dependency Track'
1323
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1324
1212
  - set -e
1325
1213
  environment:
1326
1214
  name: prod/api