Fix container scanning in vendored GitLab CI configuration for Auto Devops
This commit is contained in:
parent
671a204ccc
commit
07905c6916
|
@ -30,6 +30,7 @@ sast:container:
|
||||||
- mv clair-scanner_linux_amd64 clair-scanner
|
- mv clair-scanner_linux_amd64 clair-scanner
|
||||||
- chmod +x clair-scanner
|
- chmod +x clair-scanner
|
||||||
- touch clair-whitelist.yml
|
- touch clair-whitelist.yml
|
||||||
|
- while( ! wget -q -O /dev/null http://docker:6060/v1/namespaces ) ; do sleep 1 ; done
|
||||||
- ./clair-scanner -c http://docker:6060 --ip $(hostname -i) -r gl-sast-container-report.json -l clair.log -w clair-whitelist.yml ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG} || true
|
- ./clair-scanner -c http://docker:6060 --ip $(hostname -i) -r gl-sast-container-report.json -l clair.log -w clair-whitelist.yml ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG} || true
|
||||||
artifacts:
|
artifacts:
|
||||||
paths: [gl-sast-container-report.json]
|
paths: [gl-sast-container-report.json]
|
||||||
|
|
|
@ -315,6 +315,7 @@ production:
|
||||||
mv clair-scanner_linux_amd64 clair-scanner
|
mv clair-scanner_linux_amd64 clair-scanner
|
||||||
chmod +x clair-scanner
|
chmod +x clair-scanner
|
||||||
touch clair-whitelist.yml
|
touch clair-whitelist.yml
|
||||||
|
while( ! wget -q -O /dev/null http://docker:6060/v1/namespaces ) ; do sleep 1 ; done
|
||||||
./clair-scanner -c http://docker:6060 --ip $(hostname -i) -r gl-sast-container-report.json -l clair.log -w clair-whitelist.yml ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG} || true
|
./clair-scanner -c http://docker:6060 --ip $(hostname -i) -r gl-sast-container-report.json -l clair.log -w clair-whitelist.yml ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG} || true
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue