@catladder/pipeline 3.40.1 โ 3.42.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/build/base/index.js +2 -4
- package/dist/build/types.d.ts +0 -10
- package/dist/constants.js +1 -1
- package/dist/deploy/base/deploy.js +1 -6
- package/dist/deploy/cloudRun/createJobs/getCloudRunDeployScripts.js +2 -3
- package/dist/deploy/cloudRun/createJobs/getCloudRunStopScripts.js +2 -3
- package/dist/deploy/custom/deployJob.js +2 -3
- package/dist/deploy/kubernetes/deployJob.js +2 -3
- package/dist/tsconfig.tsbuildinfo +1 -1
- package/examples/__snapshots__/automatic-releases.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-execute-script-on-deploy.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-health-check-defaults.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-health-check-only-startup.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-health-check.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-http2.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-memory-limit.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-meteor-with-worker.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-n8n.test.ts.snap +940 -0
- package/examples/__snapshots__/cloud-run-nextjs.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-no-cpu-throttling.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-no-service.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-non-public.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-post-stop-job.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-service-custom-vpc-connector.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-service-custom-vpc.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-service-gen2.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-service-increase-timout.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-service-with-volumes.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-session-affinity.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-storybook.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-agents.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-gpu.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-ngnix.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-sql-legacy-jobs.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-sql-multiple-dbs.test.ts.snap +0 -336
- package/examples/__snapshots__/cloud-run-with-sql-reuse-db.test.ts.snap +0 -224
- package/examples/__snapshots__/cloud-run-with-sql.test.ts.snap +0 -112
- package/examples/__snapshots__/cloud-run-with-worker.test.ts.snap +0 -112
- package/examples/__snapshots__/custom-build-job-with-tests.test.ts.snap +0 -112
- package/examples/__snapshots__/custom-build-job.test.ts.snap +0 -112
- package/examples/__snapshots__/custom-deploy.test.ts.snap +0 -106
- package/examples/__snapshots__/custom-docker-file.test.ts.snap +0 -112
- package/examples/__snapshots__/custom-envs.test.ts.snap +0 -132
- package/examples/__snapshots__/custom-verify-job.test.ts.snap +0 -112
- package/examples/__snapshots__/git-submodule.test.ts.snap +0 -112
- package/examples/__snapshots__/kubernetes-application-customization.test.ts.snap +0 -112
- package/examples/__snapshots__/kubernetes-with-cloud-sql.test.ts.snap +0 -112
- package/examples/__snapshots__/kubernetes-with-jobs.test.ts.snap +0 -224
- package/examples/__snapshots__/kubernetes-with-mongodb.test.ts.snap +0 -112
- package/examples/__snapshots__/local-dot-env.test.ts.snap +0 -112
- package/examples/__snapshots__/meteor-kubernetes.test.ts.snap +0 -112
- package/examples/__snapshots__/modify-generated-files.test.ts.snap +0 -88
- package/examples/__snapshots__/modify-generated-yaml.test.ts.snap +0 -88
- package/examples/__snapshots__/multiline-var.test.ts.snap +0 -336
- package/examples/__snapshots__/native-app.test.ts.snap +0 -216
- package/examples/__snapshots__/node-build-with-custom-image.test.ts.snap +0 -112
- package/examples/__snapshots__/node-build-with-docker-additions.test.ts.snap +0 -112
- package/examples/__snapshots__/override-secrets.test.ts.snap +0 -112
- package/examples/__snapshots__/rails-k8s-with-worker-dockerfile.test.ts.snap +0 -112
- package/examples/__snapshots__/rails-k8s-with-worker.test.ts.snap +0 -112
- package/examples/__snapshots__/referencing-other-vars.test.ts.snap +0 -336
- package/examples/__snapshots__/wait-for-other-deploy.test.ts.snap +0 -208
- package/examples/__snapshots__/workspace-api-www-turbo-cache.test.ts.snap +0 -224
- package/examples/__snapshots__/workspace-api-www.test.ts.snap +0 -224
- package/examples/{custom-sbom-java.test.ts โ cloud-run-n8n.test.ts} +2 -2
- package/examples/cloud-run-n8n.ts +62 -0
- package/package.json +1 -1
- package/src/build/base/index.ts +0 -4
- package/src/build/types.ts +0 -13
- package/src/deploy/base/deploy.ts +0 -5
- package/src/deploy/cloudRun/createJobs/getCloudRunDeployScripts.ts +0 -2
- package/src/deploy/cloudRun/createJobs/getCloudRunStopScripts.ts +0 -2
- package/src/deploy/custom/deployJob.ts +2 -9
- package/src/deploy/kubernetes/deployJob.ts +3 -10
- package/dist/build/sbom.d.ts +0 -5
- package/dist/build/sbom.js +0 -35
- package/dist/deploy/sbom.d.ts +0 -4
- package/dist/deploy/sbom.js +0 -21
- package/examples/custom-sbom-java.ts +0 -38
- package/src/build/sbom.ts +0 -53
- package/src/deploy/sbom.ts +0 -34
|
@@ -353,28 +353,6 @@ before_script:
|
|
|
353
353
|
- 'api ๐จ app | dev '
|
|
354
354
|
retry: *a1
|
|
355
355
|
interruptible: true
|
|
356
|
-
'api ๐งพ sbom | dev ':
|
|
357
|
-
stage: build
|
|
358
|
-
image:
|
|
359
|
-
name: aquasec/trivy:0.58.2
|
|
360
|
-
entrypoint:
|
|
361
|
-
- ''
|
|
362
|
-
variables: {}
|
|
363
|
-
script:
|
|
364
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
365
|
-
- collapseable_section_end "injectvars"
|
|
366
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" api
|
|
367
|
-
artifacts:
|
|
368
|
-
paths:
|
|
369
|
-
- __sbom.json
|
|
370
|
-
rules:
|
|
371
|
-
- when: never
|
|
372
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
373
|
-
- if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
|
|
374
|
-
needs: []
|
|
375
|
-
retry: *a1
|
|
376
|
-
interruptible: true
|
|
377
|
-
allow_failure: true
|
|
378
356
|
'api ๐ Deploy | dev ':
|
|
379
357
|
stage: deploy dev
|
|
380
358
|
image: path/to/docker/gcloud:the-version
|
|
@@ -454,8 +432,6 @@ before_script:
|
|
|
454
432
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
455
433
|
- set -e
|
|
456
434
|
- collapseable_section_end "cleanup"
|
|
457
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
458
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
459
435
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
460
436
|
environment:
|
|
461
437
|
name: dev/api
|
|
@@ -479,8 +455,6 @@ before_script:
|
|
|
479
455
|
artifacts: false
|
|
480
456
|
- job: 'api ๐งช test | dev '
|
|
481
457
|
artifacts: false
|
|
482
|
-
- job: 'api ๐งพ sbom | dev '
|
|
483
|
-
artifacts: true
|
|
484
458
|
- job: 'api ๐ก audit | dev '
|
|
485
459
|
artifacts: false
|
|
486
460
|
retry: *a1
|
|
@@ -503,8 +477,6 @@ before_script:
|
|
|
503
477
|
- gcloud run services delete pan-test-app-dev-api --project=google-project-id --region=europe-west6
|
|
504
478
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/api --quiet --delete-tags
|
|
505
479
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
506
|
-
- echo 'Disabling component in Dependency Track'
|
|
507
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
|
|
508
480
|
- set -e
|
|
509
481
|
environment:
|
|
510
482
|
name: dev/api
|
|
@@ -781,28 +753,6 @@ before_script:
|
|
|
781
753
|
- 'api ๐จ app | review '
|
|
782
754
|
retry: *a1
|
|
783
755
|
interruptible: true
|
|
784
|
-
'api ๐งพ sbom | review ':
|
|
785
|
-
stage: build
|
|
786
|
-
image:
|
|
787
|
-
name: aquasec/trivy:0.58.2
|
|
788
|
-
entrypoint:
|
|
789
|
-
- ''
|
|
790
|
-
variables: {}
|
|
791
|
-
script:
|
|
792
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
793
|
-
- collapseable_section_end "injectvars"
|
|
794
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" api
|
|
795
|
-
artifacts:
|
|
796
|
-
paths:
|
|
797
|
-
- __sbom.json
|
|
798
|
-
rules:
|
|
799
|
-
- when: never
|
|
800
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
801
|
-
- if: $CI_MERGE_REQUEST_ID
|
|
802
|
-
needs: []
|
|
803
|
-
retry: *a1
|
|
804
|
-
interruptible: true
|
|
805
|
-
allow_failure: true
|
|
806
756
|
'api ๐ Deploy | review ':
|
|
807
757
|
stage: deploy review
|
|
808
758
|
image: path/to/docker/gcloud:the-version
|
|
@@ -885,8 +835,6 @@ before_script:
|
|
|
885
835
|
- set -e
|
|
886
836
|
- set -e
|
|
887
837
|
- collapseable_section_end "cleanup"
|
|
888
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
889
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
890
838
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
891
839
|
environment:
|
|
892
840
|
name: review/$CI_COMMIT_REF_NAME/api
|
|
@@ -910,8 +858,6 @@ before_script:
|
|
|
910
858
|
artifacts: false
|
|
911
859
|
- job: 'api ๐งช test | review '
|
|
912
860
|
artifacts: false
|
|
913
|
-
- job: 'api ๐งพ sbom | review '
|
|
914
|
-
artifacts: true
|
|
915
861
|
- job: 'api ๐ก audit | review '
|
|
916
862
|
artifacts: false
|
|
917
863
|
retry: *a1
|
|
@@ -937,8 +883,6 @@ before_script:
|
|
|
937
883
|
- set +e
|
|
938
884
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/api --quiet --delete-tags
|
|
939
885
|
- set -e
|
|
940
|
-
- echo 'Disabling component in Dependency Track'
|
|
941
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
|
|
942
886
|
- set -e
|
|
943
887
|
environment:
|
|
944
888
|
name: review/$CI_COMMIT_REF_NAME/api
|
|
@@ -1098,28 +1042,6 @@ before_script:
|
|
|
1098
1042
|
- 'api ๐จ app | stage '
|
|
1099
1043
|
retry: *a1
|
|
1100
1044
|
interruptible: true
|
|
1101
|
-
'api ๐งพ sbom | stage ':
|
|
1102
|
-
stage: build
|
|
1103
|
-
image:
|
|
1104
|
-
name: aquasec/trivy:0.58.2
|
|
1105
|
-
entrypoint:
|
|
1106
|
-
- ''
|
|
1107
|
-
variables: {}
|
|
1108
|
-
script:
|
|
1109
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
1110
|
-
- collapseable_section_end "injectvars"
|
|
1111
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" api
|
|
1112
|
-
artifacts:
|
|
1113
|
-
paths:
|
|
1114
|
-
- __sbom.json
|
|
1115
|
-
rules:
|
|
1116
|
-
- when: never
|
|
1117
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
1118
|
-
- if: $CI_COMMIT_TAG
|
|
1119
|
-
needs: []
|
|
1120
|
-
retry: *a1
|
|
1121
|
-
interruptible: true
|
|
1122
|
-
allow_failure: true
|
|
1123
1045
|
'api ๐ Deploy | stage ':
|
|
1124
1046
|
stage: deploy stage
|
|
1125
1047
|
image: path/to/docker/gcloud:the-version
|
|
@@ -1199,8 +1121,6 @@ before_script:
|
|
|
1199
1121
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
1200
1122
|
- set -e
|
|
1201
1123
|
- collapseable_section_end "cleanup"
|
|
1202
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
1203
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
1204
1124
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
1205
1125
|
environment:
|
|
1206
1126
|
name: stage/api
|
|
@@ -1219,8 +1139,6 @@ before_script:
|
|
|
1219
1139
|
artifacts: false
|
|
1220
1140
|
- job: 'api ๐จ docker | stage '
|
|
1221
1141
|
artifacts: false
|
|
1222
|
-
- job: 'api ๐งพ sbom | stage '
|
|
1223
|
-
artifacts: true
|
|
1224
1142
|
retry: *a1
|
|
1225
1143
|
interruptible: true
|
|
1226
1144
|
allow_failure: false
|
|
@@ -1241,8 +1159,6 @@ before_script:
|
|
|
1241
1159
|
- gcloud run services delete pan-test-app-stage-api --project=google-project-id --region=europe-west6
|
|
1242
1160
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/api --quiet --delete-tags
|
|
1243
1161
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
1244
|
-
- echo 'Disabling component in Dependency Track'
|
|
1245
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
|
|
1246
1162
|
- set -e
|
|
1247
1163
|
environment:
|
|
1248
1164
|
name: stage/api
|
|
@@ -1402,28 +1318,6 @@ before_script:
|
|
|
1402
1318
|
- 'api ๐จ app | prod '
|
|
1403
1319
|
retry: *a1
|
|
1404
1320
|
interruptible: true
|
|
1405
|
-
'api ๐งพ sbom | prod ':
|
|
1406
|
-
stage: build
|
|
1407
|
-
image:
|
|
1408
|
-
name: aquasec/trivy:0.58.2
|
|
1409
|
-
entrypoint:
|
|
1410
|
-
- ''
|
|
1411
|
-
variables: {}
|
|
1412
|
-
script:
|
|
1413
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
1414
|
-
- collapseable_section_end "injectvars"
|
|
1415
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" api
|
|
1416
|
-
artifacts:
|
|
1417
|
-
paths:
|
|
1418
|
-
- __sbom.json
|
|
1419
|
-
rules:
|
|
1420
|
-
- when: never
|
|
1421
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
1422
|
-
- if: $CI_COMMIT_TAG
|
|
1423
|
-
needs: []
|
|
1424
|
-
retry: *a1
|
|
1425
|
-
interruptible: true
|
|
1426
|
-
allow_failure: true
|
|
1427
1321
|
'api ๐ Deploy | prod ':
|
|
1428
1322
|
stage: deploy prod
|
|
1429
1323
|
image: path/to/docker/gcloud:the-version
|
|
@@ -1503,8 +1397,6 @@ before_script:
|
|
|
1503
1397
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
1504
1398
|
- set -e
|
|
1505
1399
|
- collapseable_section_end "cleanup"
|
|
1506
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
1507
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/api" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
1508
1400
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
1509
1401
|
environment:
|
|
1510
1402
|
name: prod/api
|
|
@@ -1523,8 +1415,6 @@ before_script:
|
|
|
1523
1415
|
artifacts: false
|
|
1524
1416
|
- job: 'api ๐จ docker | prod '
|
|
1525
1417
|
artifacts: false
|
|
1526
|
-
- job: 'api ๐งพ sbom | prod '
|
|
1527
|
-
artifacts: true
|
|
1528
1418
|
retry: *a1
|
|
1529
1419
|
interruptible: true
|
|
1530
1420
|
allow_failure: true
|
|
@@ -1545,8 +1435,6 @@ before_script:
|
|
|
1545
1435
|
- gcloud run services delete pan-test-app-prod-api --project=google-project-id --region=europe-west6
|
|
1546
1436
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/api --quiet --delete-tags
|
|
1547
1437
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/api@$version --quiet --delete-tags; done
|
|
1548
|
-
- echo 'Disabling component in Dependency Track'
|
|
1549
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/api" "$CI_ENVIRONMENT_URL" || true
|
|
1550
1438
|
- set -e
|
|
1551
1439
|
environment:
|
|
1552
1440
|
name: prod/api
|
|
@@ -348,28 +348,6 @@ before_script:
|
|
|
348
348
|
- 'web ๐จ app | dev '
|
|
349
349
|
retry: *a1
|
|
350
350
|
interruptible: true
|
|
351
|
-
'web ๐งพ sbom | dev ':
|
|
352
|
-
stage: build
|
|
353
|
-
image:
|
|
354
|
-
name: aquasec/trivy:0.58.2
|
|
355
|
-
entrypoint:
|
|
356
|
-
- ''
|
|
357
|
-
variables: {}
|
|
358
|
-
script:
|
|
359
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
360
|
-
- collapseable_section_end "injectvars"
|
|
361
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" web
|
|
362
|
-
artifacts:
|
|
363
|
-
paths:
|
|
364
|
-
- __sbom.json
|
|
365
|
-
rules:
|
|
366
|
-
- when: never
|
|
367
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
368
|
-
- if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH && $CI_COMMIT_MESSAGE !~ /^chore\\(release\\).*/
|
|
369
|
-
needs: []
|
|
370
|
-
retry: *a1
|
|
371
|
-
interruptible: true
|
|
372
|
-
allow_failure: true
|
|
373
351
|
'web ๐ Deploy | dev ':
|
|
374
352
|
stage: deploy dev
|
|
375
353
|
image: path/to/docker/gcloud:the-version
|
|
@@ -450,8 +428,6 @@ before_script:
|
|
|
450
428
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
451
429
|
- set -e
|
|
452
430
|
- collapseable_section_end "cleanup"
|
|
453
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
454
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/web" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
455
431
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
456
432
|
environment:
|
|
457
433
|
name: dev/web
|
|
@@ -475,8 +451,6 @@ before_script:
|
|
|
475
451
|
artifacts: false
|
|
476
452
|
- job: 'web ๐งช test | dev '
|
|
477
453
|
artifacts: false
|
|
478
|
-
- job: 'web ๐งพ sbom | dev '
|
|
479
|
-
artifacts: true
|
|
480
454
|
- job: 'web ๐ก audit | dev '
|
|
481
455
|
artifacts: false
|
|
482
456
|
retry: *a1
|
|
@@ -500,8 +474,6 @@ before_script:
|
|
|
500
474
|
- gcloud run services delete pan-test-app-dev-web-worker --project=google-project-id --region=europe-west6
|
|
501
475
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/dev/web --quiet --delete-tags
|
|
502
476
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
503
|
-
- echo 'Disabling component in Dependency Track'
|
|
504
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/web" "$CI_ENVIRONMENT_URL" || true
|
|
505
477
|
- set -e
|
|
506
478
|
environment:
|
|
507
479
|
name: dev/web
|
|
@@ -773,28 +745,6 @@ before_script:
|
|
|
773
745
|
- 'web ๐จ app | review '
|
|
774
746
|
retry: *a1
|
|
775
747
|
interruptible: true
|
|
776
|
-
'web ๐งพ sbom | review ':
|
|
777
|
-
stage: build
|
|
778
|
-
image:
|
|
779
|
-
name: aquasec/trivy:0.58.2
|
|
780
|
-
entrypoint:
|
|
781
|
-
- ''
|
|
782
|
-
variables: {}
|
|
783
|
-
script:
|
|
784
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
785
|
-
- collapseable_section_end "injectvars"
|
|
786
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" web
|
|
787
|
-
artifacts:
|
|
788
|
-
paths:
|
|
789
|
-
- __sbom.json
|
|
790
|
-
rules:
|
|
791
|
-
- when: never
|
|
792
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
793
|
-
- if: $CI_MERGE_REQUEST_ID
|
|
794
|
-
needs: []
|
|
795
|
-
retry: *a1
|
|
796
|
-
interruptible: true
|
|
797
|
-
allow_failure: true
|
|
798
748
|
'web ๐ Deploy | review ':
|
|
799
749
|
stage: deploy review
|
|
800
750
|
image: path/to/docker/gcloud:the-version
|
|
@@ -878,8 +828,6 @@ before_script:
|
|
|
878
828
|
- set -e
|
|
879
829
|
- set -e
|
|
880
830
|
- collapseable_section_end "cleanup"
|
|
881
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
882
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/web" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
883
831
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
884
832
|
environment:
|
|
885
833
|
name: review/$CI_COMMIT_REF_NAME/web
|
|
@@ -903,8 +851,6 @@ before_script:
|
|
|
903
851
|
artifacts: false
|
|
904
852
|
- job: 'web ๐งช test | review '
|
|
905
853
|
artifacts: false
|
|
906
|
-
- job: 'web ๐งพ sbom | review '
|
|
907
|
-
artifacts: true
|
|
908
854
|
- job: 'web ๐ก audit | review '
|
|
909
855
|
artifacts: false
|
|
910
856
|
retry: *a1
|
|
@@ -931,8 +877,6 @@ before_script:
|
|
|
931
877
|
- set +e
|
|
932
878
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/review/web --quiet --delete-tags
|
|
933
879
|
- set -e
|
|
934
|
-
- echo 'Disabling component in Dependency Track'
|
|
935
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/web" "$CI_ENVIRONMENT_URL" || true
|
|
936
880
|
- set -e
|
|
937
881
|
environment:
|
|
938
882
|
name: review/$CI_COMMIT_REF_NAME/web
|
|
@@ -1087,28 +1031,6 @@ before_script:
|
|
|
1087
1031
|
- 'web ๐จ app | stage '
|
|
1088
1032
|
retry: *a1
|
|
1089
1033
|
interruptible: true
|
|
1090
|
-
'web ๐งพ sbom | stage ':
|
|
1091
|
-
stage: build
|
|
1092
|
-
image:
|
|
1093
|
-
name: aquasec/trivy:0.58.2
|
|
1094
|
-
entrypoint:
|
|
1095
|
-
- ''
|
|
1096
|
-
variables: {}
|
|
1097
|
-
script:
|
|
1098
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
1099
|
-
- collapseable_section_end "injectvars"
|
|
1100
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" web
|
|
1101
|
-
artifacts:
|
|
1102
|
-
paths:
|
|
1103
|
-
- __sbom.json
|
|
1104
|
-
rules:
|
|
1105
|
-
- when: never
|
|
1106
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
1107
|
-
- if: $CI_COMMIT_TAG
|
|
1108
|
-
needs: []
|
|
1109
|
-
retry: *a1
|
|
1110
|
-
interruptible: true
|
|
1111
|
-
allow_failure: true
|
|
1112
1034
|
'web ๐ Deploy | stage ':
|
|
1113
1035
|
stage: deploy stage
|
|
1114
1036
|
image: path/to/docker/gcloud:the-version
|
|
@@ -1189,8 +1111,6 @@ before_script:
|
|
|
1189
1111
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
1190
1112
|
- set -e
|
|
1191
1113
|
- collapseable_section_end "cleanup"
|
|
1192
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
1193
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/web" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
1194
1114
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
1195
1115
|
environment:
|
|
1196
1116
|
name: stage/web
|
|
@@ -1209,8 +1129,6 @@ before_script:
|
|
|
1209
1129
|
artifacts: false
|
|
1210
1130
|
- job: 'web ๐จ docker | stage '
|
|
1211
1131
|
artifacts: false
|
|
1212
|
-
- job: 'web ๐งพ sbom | stage '
|
|
1213
|
-
artifacts: true
|
|
1214
1132
|
retry: *a1
|
|
1215
1133
|
interruptible: true
|
|
1216
1134
|
allow_failure: false
|
|
@@ -1232,8 +1150,6 @@ before_script:
|
|
|
1232
1150
|
- gcloud run services delete pan-test-app-stage-web-worker --project=google-project-id --region=europe-west6
|
|
1233
1151
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/stage/web --quiet --delete-tags
|
|
1234
1152
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
1235
|
-
- echo 'Disabling component in Dependency Track'
|
|
1236
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/web" "$CI_ENVIRONMENT_URL" || true
|
|
1237
1153
|
- set -e
|
|
1238
1154
|
environment:
|
|
1239
1155
|
name: stage/web
|
|
@@ -1388,28 +1304,6 @@ before_script:
|
|
|
1388
1304
|
- 'web ๐จ app | prod '
|
|
1389
1305
|
retry: *a1
|
|
1390
1306
|
interruptible: true
|
|
1391
|
-
'web ๐งพ sbom | prod ':
|
|
1392
|
-
stage: build
|
|
1393
|
-
image:
|
|
1394
|
-
name: aquasec/trivy:0.58.2
|
|
1395
|
-
entrypoint:
|
|
1396
|
-
- ''
|
|
1397
|
-
variables: {}
|
|
1398
|
-
script:
|
|
1399
|
-
- collapseable_section_start "injectvars" "Injecting variables"
|
|
1400
|
-
- collapseable_section_end "injectvars"
|
|
1401
|
-
- trivy fs --quiet --format cyclonedx --output "__sbom.json" web
|
|
1402
|
-
artifacts:
|
|
1403
|
-
paths:
|
|
1404
|
-
- __sbom.json
|
|
1405
|
-
rules:
|
|
1406
|
-
- when: never
|
|
1407
|
-
if: $CI_PIPELINE_SOURCE == "trigger"
|
|
1408
|
-
- if: $CI_COMMIT_TAG
|
|
1409
|
-
needs: []
|
|
1410
|
-
retry: *a1
|
|
1411
|
-
interruptible: true
|
|
1412
|
-
allow_failure: true
|
|
1413
1307
|
'web ๐ Deploy | prod ':
|
|
1414
1308
|
stage: deploy prod
|
|
1415
1309
|
image: path/to/docker/gcloud:the-version
|
|
@@ -1490,8 +1384,6 @@ before_script:
|
|
|
1490
1384
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
1491
1385
|
- set -e
|
|
1492
1386
|
- collapseable_section_end "cleanup"
|
|
1493
|
-
- echo 'Uploading SBOM to Dependency Track'
|
|
1494
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" upload "pan-test-app/web" "$ROOT_URL" "__sbom.json" vex.json || true
|
|
1495
1387
|
- echo "CL_GITLAB_ENVIRONMENT_URL=$ROOT_URL" >> gitlab_environment.env
|
|
1496
1388
|
environment:
|
|
1497
1389
|
name: prod/web
|
|
@@ -1510,8 +1402,6 @@ before_script:
|
|
|
1510
1402
|
artifacts: false
|
|
1511
1403
|
- job: 'web ๐จ docker | prod '
|
|
1512
1404
|
artifacts: false
|
|
1513
|
-
- job: 'web ๐งพ sbom | prod '
|
|
1514
|
-
artifacts: true
|
|
1515
1405
|
retry: *a1
|
|
1516
1406
|
interruptible: true
|
|
1517
1407
|
allow_failure: true
|
|
@@ -1533,8 +1423,6 @@ before_script:
|
|
|
1533
1423
|
- gcloud run services delete pan-test-app-prod-web-worker --project=google-project-id --region=europe-west6
|
|
1534
1424
|
- gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/prod/web --quiet --delete-tags
|
|
1535
1425
|
- gcloud artifacts docker images list europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web --sort-by=~CREATE_TIME --format="value(version)" | tail -n +2 | while read -r version; do gcloud artifacts docker images delete europe-west6-docker.pkg.dev/google-project-id/catladder-deploy/pan-test-app/caches/web@$version --quiet --delete-tags; done
|
|
1536
|
-
- echo 'Disabling component in Dependency Track'
|
|
1537
|
-
- /dtrackuploader https://dep.panter.swiss/ "$DT_KEY_PROD" disable "pan-test-app/web" "$CI_ENVIRONMENT_URL" || true
|
|
1538
1426
|
- set -e
|
|
1539
1427
|
environment:
|
|
1540
1428
|
name: prod/web
|