@catladder/pipeline 3.40.1 โ†’ 3.42.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (81) hide show
  1. package/dist/build/base/index.js +2 -4
  2. package/dist/build/types.d.ts +0 -10
  3. package/dist/constants.js +1 -1
  4. package/dist/deploy/base/deploy.js +1 -6
  5. package/dist/deploy/cloudRun/createJobs/getCloudRunDeployScripts.js +2 -3
  6. package/dist/deploy/cloudRun/createJobs/getCloudRunStopScripts.js +2 -3
  7. package/dist/deploy/custom/deployJob.js +2 -3
  8. package/dist/deploy/kubernetes/deployJob.js +2 -3
  9. package/dist/tsconfig.tsbuildinfo +1 -1
  10. package/examples/__snapshots__/automatic-releases.test.ts.snap +0 -112
  11. package/examples/__snapshots__/cloud-run-execute-script-on-deploy.test.ts.snap +0 -112
  12. package/examples/__snapshots__/cloud-run-health-check-defaults.test.ts.snap +0 -112
  13. package/examples/__snapshots__/cloud-run-health-check-only-startup.test.ts.snap +0 -112
  14. package/examples/__snapshots__/cloud-run-health-check.test.ts.snap +0 -112
  15. package/examples/__snapshots__/cloud-run-http2.test.ts.snap +0 -112
  16. package/examples/__snapshots__/cloud-run-memory-limit.test.ts.snap +0 -112
  17. package/examples/__snapshots__/cloud-run-meteor-with-worker.test.ts.snap +0 -112
  18. package/examples/__snapshots__/cloud-run-n8n.test.ts.snap +940 -0
  19. package/examples/__snapshots__/cloud-run-nextjs.test.ts.snap +0 -112
  20. package/examples/__snapshots__/cloud-run-no-cpu-throttling.test.ts.snap +0 -112
  21. package/examples/__snapshots__/cloud-run-no-service.test.ts.snap +0 -112
  22. package/examples/__snapshots__/cloud-run-non-public.test.ts.snap +0 -112
  23. package/examples/__snapshots__/cloud-run-post-stop-job.test.ts.snap +0 -112
  24. package/examples/__snapshots__/cloud-run-service-custom-vpc-connector.test.ts.snap +0 -112
  25. package/examples/__snapshots__/cloud-run-service-custom-vpc.test.ts.snap +0 -112
  26. package/examples/__snapshots__/cloud-run-service-gen2.test.ts.snap +0 -112
  27. package/examples/__snapshots__/cloud-run-service-increase-timout.test.ts.snap +0 -112
  28. package/examples/__snapshots__/cloud-run-service-with-volumes.test.ts.snap +0 -112
  29. package/examples/__snapshots__/cloud-run-session-affinity.test.ts.snap +0 -112
  30. package/examples/__snapshots__/cloud-run-storybook.test.ts.snap +0 -112
  31. package/examples/__snapshots__/cloud-run-with-agents.test.ts.snap +0 -112
  32. package/examples/__snapshots__/cloud-run-with-gpu.test.ts.snap +0 -112
  33. package/examples/__snapshots__/cloud-run-with-ngnix.test.ts.snap +0 -112
  34. package/examples/__snapshots__/cloud-run-with-sql-legacy-jobs.test.ts.snap +0 -112
  35. package/examples/__snapshots__/cloud-run-with-sql-multiple-dbs.test.ts.snap +0 -336
  36. package/examples/__snapshots__/cloud-run-with-sql-reuse-db.test.ts.snap +0 -224
  37. package/examples/__snapshots__/cloud-run-with-sql.test.ts.snap +0 -112
  38. package/examples/__snapshots__/cloud-run-with-worker.test.ts.snap +0 -112
  39. package/examples/__snapshots__/custom-build-job-with-tests.test.ts.snap +0 -112
  40. package/examples/__snapshots__/custom-build-job.test.ts.snap +0 -112
  41. package/examples/__snapshots__/custom-deploy.test.ts.snap +0 -106
  42. package/examples/__snapshots__/custom-docker-file.test.ts.snap +0 -112
  43. package/examples/__snapshots__/custom-envs.test.ts.snap +0 -132
  44. package/examples/__snapshots__/custom-verify-job.test.ts.snap +0 -112
  45. package/examples/__snapshots__/git-submodule.test.ts.snap +0 -112
  46. package/examples/__snapshots__/kubernetes-application-customization.test.ts.snap +0 -112
  47. package/examples/__snapshots__/kubernetes-with-cloud-sql.test.ts.snap +0 -112
  48. package/examples/__snapshots__/kubernetes-with-jobs.test.ts.snap +0 -224
  49. package/examples/__snapshots__/kubernetes-with-mongodb.test.ts.snap +0 -112
  50. package/examples/__snapshots__/local-dot-env.test.ts.snap +0 -112
  51. package/examples/__snapshots__/meteor-kubernetes.test.ts.snap +0 -112
  52. package/examples/__snapshots__/modify-generated-files.test.ts.snap +0 -88
  53. package/examples/__snapshots__/modify-generated-yaml.test.ts.snap +0 -88
  54. package/examples/__snapshots__/multiline-var.test.ts.snap +0 -336
  55. package/examples/__snapshots__/native-app.test.ts.snap +0 -216
  56. package/examples/__snapshots__/node-build-with-custom-image.test.ts.snap +0 -112
  57. package/examples/__snapshots__/node-build-with-docker-additions.test.ts.snap +0 -112
  58. package/examples/__snapshots__/override-secrets.test.ts.snap +0 -112
  59. package/examples/__snapshots__/rails-k8s-with-worker-dockerfile.test.ts.snap +0 -112
  60. package/examples/__snapshots__/rails-k8s-with-worker.test.ts.snap +0 -112
  61. package/examples/__snapshots__/referencing-other-vars.test.ts.snap +0 -336
  62. package/examples/__snapshots__/wait-for-other-deploy.test.ts.snap +0 -208
  63. package/examples/__snapshots__/workspace-api-www-turbo-cache.test.ts.snap +0 -224
  64. package/examples/__snapshots__/workspace-api-www.test.ts.snap +0 -224
  65. package/examples/{custom-sbom-java.test.ts โ†’ cloud-run-n8n.test.ts} +2 -2
  66. package/examples/cloud-run-n8n.ts +62 -0
  67. package/package.json +1 -1
  68. package/src/build/base/index.ts +0 -4
  69. package/src/build/types.ts +0 -13
  70. package/src/deploy/base/deploy.ts +0 -5
  71. package/src/deploy/cloudRun/createJobs/getCloudRunDeployScripts.ts +0 -2
  72. package/src/deploy/cloudRun/createJobs/getCloudRunStopScripts.ts +0 -2
  73. package/src/deploy/custom/deployJob.ts +2 -9
  74. package/src/deploy/kubernetes/deployJob.ts +3 -10
  75. package/dist/build/sbom.d.ts +0 -5
  76. package/dist/build/sbom.js +0 -35
  77. package/dist/deploy/sbom.d.ts +0 -4
  78. package/dist/deploy/sbom.js +0 -21
  79. package/examples/custom-sbom-java.ts +0 -38
  80. package/src/build/sbom.ts +0 -53
  81. package/src/deploy/sbom.ts +0 -34
package/examples/__snapshots__/cloud-run-with-agents.test.ts.snap CHANGED
@@ -357,28 +357,6 @@ before_script:
357
357
  - 'www ๐Ÿ”จ app | dev '
358
358
  retry: *a1
359
359
  interruptible: true
360
- 'www ๐Ÿงพ sbom | dev ':
361
- stage: build
362
- image:
363
- name: aquasec/trivy:0.58.2
364
- entrypoint:
365
- - ''
366
- variables: {}
367
- script:
368
- - collapseable_section_start "injectvars" "Injecting variables"
369
- - collapseable_section_end "injectvars"
370
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
371
- artifacts:
372
- paths:
373
- - __sbom.json
374
- rules:
375
- - when: never
376
- if: $CI_PIPELINE_SOURCE == "trigger"
377
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
378
- needs: []
379
- retry: *a1
380
- interruptible: true
381
- allow_failure: true
382
360
  'www ๐Ÿš€ Deploy | dev ':
383
361
  stage: deploy dev
384
362
  image: path/to/docker/gcloud:the-version
@@ -458,8 +436,6 @@ before_script:
458
436
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
459
437
  - set -e
460
438
  - collapseable_section_end "cleanup"
461
- - echo 'Uploading SBOM to Dependency Track'
462
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-agent-example-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
463
439
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
464
440
  environment:
465
441
  name: dev/www
@@ -483,8 +459,6 @@ before_script:
483
459
  artifacts: false
484
460
  - job: 'www ๐Ÿงช test | dev '
485
461
  artifacts: false
486
- - job: 'www ๐Ÿงพ sbom | dev '
487
- artifacts: true
488
462
  - job: 'www ๐Ÿ›ก audit | dev '
489
463
  artifacts: false
490
464
  retry: *a1
@@ -507,8 +481,6 @@ before_script:
507
481
  - gcloud run services delete pan-agent-example-app-dev-www --project=google-project-id --region=europe-west6
508
482
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/dev/www --quiet --delete-tags
509
483
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
510
- - echo 'Disabling component in Dependency Track'
511
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-agent-example-app/www" "$CI_ENVIRONMENT_URL" || true
512
484
  - set -e
513
485
  environment:
514
486
  name: dev/www
@@ -791,28 +763,6 @@ before_script:
791
763
  - 'www ๐Ÿ”จ app | review '
792
764
  retry: *a1
793
765
  interruptible: true
794
- 'www ๐Ÿงพ sbom | review ':
795
- stage: build
796
- image:
797
- name: aquasec/trivy:0.58.2
798
- entrypoint:
799
- - ''
800
- variables: {}
801
- script:
802
- - collapseable_section_start "injectvars" "Injecting variables"
803
- - collapseable_section_end "injectvars"
804
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
805
- artifacts:
806
- paths:
807
- - __sbom.json
808
- rules:
809
- - when: never
810
- if: $CI_PIPELINE_SOURCE == "trigger"
811
- - if: $CI_MERGE_REQUEST_ID
812
- needs: []
813
- retry: *a1
814
- interruptible: true
815
- allow_failure: true
816
766
  'www ๐Ÿš€ Deploy | review ':
817
767
  stage: deploy review
818
768
  image: path/to/docker/gcloud:the-version
@@ -895,8 +845,6 @@ before_script:
895
845
  - set -e
896
846
  - set -e
897
847
  - collapseable_section_end "cleanup"
898
- - echo 'Uploading SBOM to Dependency Track'
899
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-agent-example-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
900
848
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
901
849
  environment:
902
850
  name: review/$CI_COMMIT_REF_NAME/www
@@ -920,8 +868,6 @@ before_script:
920
868
  artifacts: false
921
869
  - job: 'www ๐Ÿงช test | review '
922
870
  artifacts: false
923
- - job: 'www ๐Ÿงพ sbom | review '
924
- artifacts: true
925
871
  - job: 'www ๐Ÿ›ก audit | review '
926
872
  artifacts: false
927
873
  retry: *a1
@@ -947,8 +893,6 @@ before_script:
947
893
  - set +e
948
894
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/review/www --quiet --delete-tags
949
895
  - set -e
950
- - echo 'Disabling component in Dependency Track'
951
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-agent-example-app/www" "$CI_ENVIRONMENT_URL" || true
952
896
  - set -e
953
897
  environment:
954
898
  name: review/$CI_COMMIT_REF_NAME/www
@@ -1112,28 +1056,6 @@ before_script:
1112
1056
  - 'www ๐Ÿ”จ app | stage '
1113
1057
  retry: *a1
1114
1058
  interruptible: true
1115
- 'www ๐Ÿงพ sbom | stage ':
1116
- stage: build
1117
- image:
1118
- name: aquasec/trivy:0.58.2
1119
- entrypoint:
1120
- - ''
1121
- variables: {}
1122
- script:
1123
- - collapseable_section_start "injectvars" "Injecting variables"
1124
- - collapseable_section_end "injectvars"
1125
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
1126
- artifacts:
1127
- paths:
1128
- - __sbom.json
1129
- rules:
1130
- - when: never
1131
- if: $CI_PIPELINE_SOURCE == "trigger"
1132
- - if: $CI_COMMIT_TAG
1133
- needs: []
1134
- retry: *a1
1135
- interruptible: true
1136
- allow_failure: true
1137
1059
  'www ๐Ÿš€ Deploy | stage ':
1138
1060
  stage: deploy stage
1139
1061
  image: path/to/docker/gcloud:the-version
@@ -1213,8 +1135,6 @@ before_script:
1213
1135
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
1214
1136
  - set -e
1215
1137
  - collapseable_section_end "cleanup"
1216
- - echo 'Uploading SBOM to Dependency Track'
1217
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-agent-example-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
1218
1138
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1219
1139
  environment:
1220
1140
  name: stage/www
@@ -1233,8 +1153,6 @@ before_script:
1233
1153
  artifacts: false
1234
1154
  - job: 'www ๐Ÿ”จ docker | stage '
1235
1155
  artifacts: false
1236
- - job: 'www ๐Ÿงพ sbom | stage '
1237
- artifacts: true
1238
1156
  retry: *a1
1239
1157
  interruptible: true
1240
1158
  allow_failure: false
@@ -1255,8 +1173,6 @@ before_script:
1255
1173
  - gcloud run services delete pan-agent-example-app-stage-www --project=google-project-id --region=europe-west6
1256
1174
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/stage/www --quiet --delete-tags
1257
1175
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
1258
- - echo 'Disabling component in Dependency Track'
1259
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-agent-example-app/www" "$CI_ENVIRONMENT_URL" || true
1260
1176
  - set -e
1261
1177
  environment:
1262
1178
  name: stage/www
@@ -1420,28 +1336,6 @@ before_script:
1420
1336
  - 'www ๐Ÿ”จ app | prod '
1421
1337
  retry: *a1
1422
1338
  interruptible: true
1423
- 'www ๐Ÿงพ sbom | prod ':
1424
- stage: build
1425
- image:
1426
- name: aquasec/trivy:0.58.2
1427
- entrypoint:
1428
- - ''
1429
- variables: {}
1430
- script:
1431
- - collapseable_section_start "injectvars" "Injecting variables"
1432
- - collapseable_section_end "injectvars"
1433
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" www
1434
- artifacts:
1435
- paths:
1436
- - __sbom.json
1437
- rules:
1438
- - when: never
1439
- if: $CI_PIPELINE_SOURCE == "trigger"
1440
- - if: $CI_COMMIT_TAG
1441
- needs: []
1442
- retry: *a1
1443
- interruptible: true
1444
- allow_failure: true
1445
1339
  'www ๐Ÿš€ Deploy | prod ':
1446
1340
  stage: deploy prod
1447
1341
  image: path/to/docker/gcloud:the-version
@@ -1521,8 +1415,6 @@ before_script:
1521
1415
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
1522
1416
  - set -e
1523
1417
  - collapseable_section_end "cleanup"
1524
- - echo 'Uploading SBOM to Dependency Track'
1525
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-agent-example-app/www" "$ROOT_URL" "__sbom.json" vex.json || true
1526
1418
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1527
1419
  environment:
1528
1420
  name: prod/www
@@ -1541,8 +1433,6 @@ before_script:
1541
1433
  artifacts: false
1542
1434
  - job: 'www ๐Ÿ”จ docker | prod '
1543
1435
  artifacts: false
1544
- - job: 'www ๐Ÿงพ sbom | prod '
1545
- artifacts: true
1546
1436
  retry: *a1
1547
1437
  interruptible: true
1548
1438
  allow_failure: true
@@ -1563,8 +1453,6 @@ before_script:
1563
1453
  - gcloud run services delete pan-agent-example-app-prod-www --project=google-project-id --region=europe-west6
1564
1454
  - gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/prod/www --quiet --delete-tags
1565
1455
  - gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-agent-example-app/caches/www@$version --quiet --delete-tags; done
1566
- - echo 'Disabling component in Dependency Track'
1567
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-agent-example-app/www" "$CI_ENVIRONMENT_URL" || true
1568
1456
  - set -e
1569
1457
  environment:
1570
1458
  name: prod/www
package/examples/__snapshots__/cloud-run-with-gpu.test.ts.snap CHANGED
@@ -353,28 +353,6 @@ before_script:
353
353
  - 'api ๐Ÿ”จ app | dev '
354
354
  retry: *a1
355
355
  interruptible: true
356
- 'api ๐Ÿงพ sbom | dev ':
357
- stage: build
358
- image:
359
- name: aquasec/trivy:0.58.2
360
- entrypoint:
361
- - ''
362
- variables: {}
363
- script:
364
- - collapseable_section_start "injectvars" "Injecting variables"
365
- - collapseable_section_end "injectvars"
366
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
367
- artifacts:
368
- paths:
369
- - __sbom.json
370
- rules:
371
- - when: never
372
- if: $CI_PIPELINE_SOURCE == "trigger"
373
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
374
- needs: []
375
- retry: *a1
376
- interruptible: true
377
- allow_failure: true
378
356
  'api ๐Ÿš€ Deploy | dev ':
379
357
  stage: deploy dev
380
358
  image: path/to/docker/gcloud:the-version
@@ -454,8 +432,6 @@ before_script:
454
432
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
455
433
  - set -e
456
434
  - collapseable_section_end "cleanup"
457
- - echo 'Uploading SBOM to Dependency Track'
458
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
459
435
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
460
436
  environment:
461
437
  name: dev/api
@@ -479,8 +455,6 @@ before_script:
479
455
  artifacts: false
480
456
  - job: 'api ๐Ÿงช test | dev '
481
457
  artifacts: false
482
- - job: 'api ๐Ÿงพ sbom | dev '
483
- artifacts: true
484
458
  - job: 'api ๐Ÿ›ก audit | dev '
485
459
  artifacts: false
486
460
  retry: *a1
@@ -503,8 +477,6 @@ before_script:
503
477
  - gcloud run services delete pan-test-app-dev-api --project=google-project-id --region=europe-west4
504
478
  - gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
505
479
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
506
- - echo 'Disabling component in Dependency Track'
507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
508
480
  - set -e
509
481
  environment:
510
482
  name: dev/api
@@ -781,28 +753,6 @@ before_script:
781
753
  - 'api ๐Ÿ”จ app | review '
782
754
  retry: *a1
783
755
  interruptible: true
784
- 'api ๐Ÿงพ sbom | review ':
785
- stage: build
786
- image:
787
- name: aquasec/trivy:0.58.2
788
- entrypoint:
789
- - ''
790
- variables: {}
791
- script:
792
- - collapseable_section_start "injectvars" "Injecting variables"
793
- - collapseable_section_end "injectvars"
794
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
795
- artifacts:
796
- paths:
797
- - __sbom.json
798
- rules:
799
- - when: never
800
- if: $CI_PIPELINE_SOURCE == "trigger"
801
- - if: $CI_MERGE_REQUEST_ID
802
- needs: []
803
- retry: *a1
804
- interruptible: true
805
- allow_failure: true
806
756
  'api ๐Ÿš€ Deploy | review ':
807
757
  stage: deploy review
808
758
  image: path/to/docker/gcloud:the-version
@@ -885,8 +835,6 @@ before_script:
885
835
  - set -e
886
836
  - set -e
887
837
  - collapseable_section_end "cleanup"
888
- - echo 'Uploading SBOM to Dependency Track'
889
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
890
838
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
891
839
  environment:
892
840
  name: review/$CI_COMMIT_REF_NAME/api
@@ -910,8 +858,6 @@ before_script:
910
858
  artifacts: false
911
859
  - job: 'api ๐Ÿงช test | review '
912
860
  artifacts: false
913
- - job: 'api ๐Ÿงพ sbom | review '
914
- artifacts: true
915
861
  - job: 'api ๐Ÿ›ก audit | review '
916
862
  artifacts: false
917
863
  retry: *a1
@@ -937,8 +883,6 @@ before_script:
937
883
  - set +e
938
884
  - gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
939
885
  - set -e
940
- - echo 'Disabling component in Dependency Track'
941
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
942
886
  - set -e
943
887
  environment:
944
888
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1098,28 +1042,6 @@ before_script:
1098
1042
  - 'api ๐Ÿ”จ app | stage '
1099
1043
  retry: *a1
1100
1044
  interruptible: true
1101
- 'api ๐Ÿงพ sbom | stage ':
1102
- stage: build
1103
- image:
1104
- name: aquasec/trivy:0.58.2
1105
- entrypoint:
1106
- - ''
1107
- variables: {}
1108
- script:
1109
- - collapseable_section_start "injectvars" "Injecting variables"
1110
- - collapseable_section_end "injectvars"
1111
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1112
- artifacts:
1113
- paths:
1114
- - __sbom.json
1115
- rules:
1116
- - when: never
1117
- if: $CI_PIPELINE_SOURCE == "trigger"
1118
- - if: $CI_COMMIT_TAG
1119
- needs: []
1120
- retry: *a1
1121
- interruptible: true
1122
- allow_failure: true
1123
1045
  'api ๐Ÿš€ Deploy | stage ':
1124
1046
  stage: deploy stage
1125
1047
  image: path/to/docker/gcloud:the-version
@@ -1199,8 +1121,6 @@ before_script:
1199
1121
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1200
1122
  - set -e
1201
1123
  - collapseable_section_end "cleanup"
1202
- - echo 'Uploading SBOM to Dependency Track'
1203
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1204
1124
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1205
1125
  environment:
1206
1126
  name: stage/api
@@ -1219,8 +1139,6 @@ before_script:
1219
1139
  artifacts: false
1220
1140
  - job: 'api ๐Ÿ”จ docker | stage '
1221
1141
  artifacts: false
1222
- - job: 'api ๐Ÿงพ sbom | stage '
1223
- artifacts: true
1224
1142
  retry: *a1
1225
1143
  interruptible: true
1226
1144
  allow_failure: false
@@ -1241,8 +1159,6 @@ before_script:
1241
1159
  - gcloud run services delete pan-test-app-stage-api --project=google-project-id --region=europe-west4
1242
1160
  - gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1243
1161
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1244
- - echo 'Disabling component in Dependency Track'
1245
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1246
1162
  - set -e
1247
1163
  environment:
1248
1164
  name: stage/api
@@ -1402,28 +1318,6 @@ before_script:
1402
1318
  - 'api ๐Ÿ”จ app | prod '
1403
1319
  retry: *a1
1404
1320
  interruptible: true
1405
- 'api ๐Ÿงพ sbom | prod ':
1406
- stage: build
1407
- image:
1408
- name: aquasec/trivy:0.58.2
1409
- entrypoint:
1410
- - ''
1411
- variables: {}
1412
- script:
1413
- - collapseable_section_start "injectvars" "Injecting variables"
1414
- - collapseable_section_end "injectvars"
1415
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" api
1416
- artifacts:
1417
- paths:
1418
- - __sbom.json
1419
- rules:
1420
- - when: never
1421
- if: $CI_PIPELINE_SOURCE == "trigger"
1422
- - if: $CI_COMMIT_TAG
1423
- needs: []
1424
- retry: *a1
1425
- interruptible: true
1426
- allow_failure: true
1427
1321
  'api ๐Ÿš€ Deploy | prod ':
1428
1322
  stage: deploy prod
1429
1323
  image: path/to/docker/gcloud:the-version
@@ -1503,8 +1397,6 @@ before_script:
1503
1397
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1504
1398
  - set -e
1505
1399
  - collapseable_section_end "cleanup"
1506
- - echo 'Uploading SBOM to Dependency Track'
1507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1508
1400
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1509
1401
  environment:
1510
1402
  name: prod/api
@@ -1523,8 +1415,6 @@ before_script:
1523
1415
  artifacts: false
1524
1416
  - job: 'api ๐Ÿ”จ docker | prod '
1525
1417
  artifacts: false
1526
- - job: 'api ๐Ÿงพ sbom | prod '
1527
- artifacts: true
1528
1418
  retry: *a1
1529
1419
  interruptible: true
1530
1420
  allow_failure: true
@@ -1545,8 +1435,6 @@ before_script:
1545
1435
  - gcloud run services delete pan-test-app-prod-api --project=google-project-id --region=europe-west4
1546
1436
  - gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1547
1437
  - gcloud artifacts docker images list europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west4-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1548
- - echo 'Disabling component in Dependency Track'
1549
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1550
1438
  - set -e
1551
1439
  environment:
1552
1440
  name: prod/api
package/examples/__snapshots__/cloud-run-with-ngnix.test.ts.snap CHANGED
@@ -353,28 +353,6 @@ before_script:
353
353
  - 'api ๐Ÿ”จ app | dev '
354
354
  retry: *a1
355
355
  interruptible: true
356
- 'api ๐Ÿงพ sbom | dev ':
357
- stage: build
358
- image:
359
- name: aquasec/trivy:0.58.2
360
- entrypoint:
361
- - ''
362
- variables: {}
363
- script:
364
- - collapseable_section_start "injectvars" "Injecting variables"
365
- - collapseable_section_end "injectvars"
366
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
367
- artifacts:
368
- paths:
369
- - __sbom.json
370
- rules:
371
- - when: never
372
- if: $CI_PIPELINE_SOURCE == "trigger"
373
- - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
374
- needs: []
375
- retry: *a1
376
- interruptible: true
377
- allow_failure: true
378
356
  'api ๐Ÿš€ Deploy | dev ':
379
357
  stage: deploy dev
380
358
  image: path/to/docker/gcloud:the-version
@@ -454,8 +432,6 @@ before_script:
454
432
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
455
433
  - set -e
456
434
  - collapseable_section_end "cleanup"
457
- - echo 'Uploading SBOM to Dependency Track'
458
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
459
435
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
460
436
  environment:
461
437
  name: dev/api
@@ -479,8 +455,6 @@ before_script:
479
455
  artifacts: false
480
456
  - job: 'api ๐Ÿงช test | dev '
481
457
  artifacts: false
482
- - job: 'api ๐Ÿงพ sbom | dev '
483
- artifacts: true
484
458
  - job: 'api ๐Ÿ›ก audit | dev '
485
459
  artifacts: false
486
460
  retry: *a1
@@ -503,8 +477,6 @@ before_script:
503
477
  - gcloud run services delete pan-test-app-dev-api --project=asdf --region=asia-east1
504
478
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
505
479
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
506
- - echo 'Disabling component in Dependency Track'
507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
508
480
  - set -e
509
481
  environment:
510
482
  name: dev/api
@@ -781,28 +753,6 @@ before_script:
781
753
  - 'api ๐Ÿ”จ app | review '
782
754
  retry: *a1
783
755
  interruptible: true
784
- 'api ๐Ÿงพ sbom | review ':
785
- stage: build
786
- image:
787
- name: aquasec/trivy:0.58.2
788
- entrypoint:
789
- - ''
790
- variables: {}
791
- script:
792
- - collapseable_section_start "injectvars" "Injecting variables"
793
- - collapseable_section_end "injectvars"
794
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
795
- artifacts:
796
- paths:
797
- - __sbom.json
798
- rules:
799
- - when: never
800
- if: $CI_PIPELINE_SOURCE == "trigger"
801
- - if: $CI_MERGE_REQUEST_ID
802
- needs: []
803
- retry: *a1
804
- interruptible: true
805
- allow_failure: true
806
756
  'api ๐Ÿš€ Deploy | review ':
807
757
  stage: deploy review
808
758
  image: path/to/docker/gcloud:the-version
@@ -885,8 +835,6 @@ before_script:
885
835
  - set -e
886
836
  - set -e
887
837
  - collapseable_section_end "cleanup"
888
- - echo 'Uploading SBOM to Dependency Track'
889
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
890
838
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
891
839
  environment:
892
840
  name: review/$CI_COMMIT_REF_NAME/api
@@ -910,8 +858,6 @@ before_script:
910
858
  artifacts: false
911
859
  - job: 'api ๐Ÿงช test | review '
912
860
  artifacts: false
913
- - job: 'api ๐Ÿงพ sbom | review '
914
- artifacts: true
915
861
  - job: 'api ๐Ÿ›ก audit | review '
916
862
  artifacts: false
917
863
  retry: *a1
@@ -937,8 +883,6 @@ before_script:
937
883
  - set +e
938
884
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
939
885
  - set -e
940
- - echo 'Disabling component in Dependency Track'
941
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
942
886
  - set -e
943
887
  environment:
944
888
  name: review/$CI_COMMIT_REF_NAME/api
@@ -1098,28 +1042,6 @@ before_script:
1098
1042
  - 'api ๐Ÿ”จ app | stage '
1099
1043
  retry: *a1
1100
1044
  interruptible: true
1101
- 'api ๐Ÿงพ sbom | stage ':
1102
- stage: build
1103
- image:
1104
- name: aquasec/trivy:0.58.2
1105
- entrypoint:
1106
- - ''
1107
- variables: {}
1108
- script:
1109
- - collapseable_section_start "injectvars" "Injecting variables"
1110
- - collapseable_section_end "injectvars"
1111
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
1112
- artifacts:
1113
- paths:
1114
- - __sbom.json
1115
- rules:
1116
- - when: never
1117
- if: $CI_PIPELINE_SOURCE == "trigger"
1118
- - if: $CI_COMMIT_TAG
1119
- needs: []
1120
- retry: *a1
1121
- interruptible: true
1122
- allow_failure: true
1123
1045
  'api ๐Ÿš€ Deploy | stage ':
1124
1046
  stage: deploy stage
1125
1047
  image: path/to/docker/gcloud:the-version
@@ -1199,8 +1121,6 @@ before_script:
1199
1121
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1200
1122
  - set -e
1201
1123
  - collapseable_section_end "cleanup"
1202
- - echo 'Uploading SBOM to Dependency Track'
1203
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1204
1124
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1205
1125
  environment:
1206
1126
  name: stage/api
@@ -1219,8 +1139,6 @@ before_script:
1219
1139
  artifacts: false
1220
1140
  - job: 'api ๐Ÿ”จ docker | stage '
1221
1141
  artifacts: false
1222
- - job: 'api ๐Ÿงพ sbom | stage '
1223
- artifacts: true
1224
1142
  retry: *a1
1225
1143
  interruptible: true
1226
1144
  allow_failure: false
@@ -1241,8 +1159,6 @@ before_script:
1241
1159
  - gcloud run services delete pan-test-app-stage-api --project=asdf --region=asia-east1
1242
1160
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
1243
1161
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1244
- - echo 'Disabling component in Dependency Track'
1245
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1246
1162
  - set -e
1247
1163
  environment:
1248
1164
  name: stage/api
@@ -1402,28 +1318,6 @@ before_script:
1402
1318
  - 'api ๐Ÿ”จ app | prod '
1403
1319
  retry: *a1
1404
1320
  interruptible: true
1405
- 'api ๐Ÿงพ sbom | prod ':
1406
- stage: build
1407
- image:
1408
- name: aquasec/trivy:0.58.2
1409
- entrypoint:
1410
- - ''
1411
- variables: {}
1412
- script:
1413
- - collapseable_section_start "injectvars" "Injecting variables"
1414
- - collapseable_section_end "injectvars"
1415
- - trivy fs --quiet --format cyclonedx --output "__sbom.json" app
1416
- artifacts:
1417
- paths:
1418
- - __sbom.json
1419
- rules:
1420
- - when: never
1421
- if: $CI_PIPELINE_SOURCE == "trigger"
1422
- - if: $CI_COMMIT_TAG
1423
- needs: []
1424
- retry: *a1
1425
- interruptible: true
1426
- allow_failure: true
1427
1321
  'api ๐Ÿš€ Deploy | prod ':
1428
1322
  stage: deploy prod
1429
1323
  image: path/to/docker/gcloud:the-version
@@ -1503,8 +1397,6 @@ before_script:
1503
1397
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1504
1398
  - set -e
1505
1399
  - collapseable_section_end "cleanup"
1506
- - echo 'Uploading SBOM to Dependency Track'
1507
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
1508
1400
  - echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
1509
1401
  environment:
1510
1402
  name: prod/api
@@ -1523,8 +1415,6 @@ before_script:
1523
1415
  artifacts: false
1524
1416
  - job: 'api ๐Ÿ”จ docker | prod '
1525
1417
  artifacts: false
1526
- - job: 'api ๐Ÿงพ sbom | prod '
1527
- artifacts: true
1528
1418
  retry: *a1
1529
1419
  interruptible: true
1530
1420
  allow_failure: true
@@ -1545,8 +1435,6 @@ before_script:
1545
1435
  - gcloud run services delete pan-test-app-prod-api --project=asdf --region=asia-east1
1546
1436
  - gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
1547
1437
  - gcloud artifacts docker images list asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete asia-east1-docker.pkg.dev/asdf/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
1548
- - echo 'Disabling component in Dependency Track'
1549
- - /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
1550
1438
  - set -e
1551
1439
  environment:
1552
1440
  name: prod/api