42 lines
976 B
YAML
42 lines
976 B
YAML
stages:
|
|
- build
|
|
- codequality
|
|
- security
|
|
|
|
build:
|
|
stage: build
|
|
image: ruby:2.6
|
|
script:
|
|
- gem install bundler --no-document
|
|
- bundle update
|
|
artifacts:
|
|
paths:
|
|
- Gemfile.lock
|
|
|
|
rubocop:
|
|
stage: codequality
|
|
image: ruby:2.6
|
|
script:
|
|
- gem install rubocop rubocop-performance --no-document
|
|
- rubocop
|
|
|
|
dependency_scanning:
|
|
stage: security
|
|
dependencies:
|
|
- build
|
|
image: docker:stable
|
|
variables:
|
|
DOCKER_DRIVER: overlay2
|
|
services:
|
|
- docker:stable-dind
|
|
script:
|
|
- export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
|
|
- docker run
|
|
--env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
|
|
--volume "$PWD:/code"
|
|
--volume /var/run/docker.sock:/var/run/docker.sock
|
|
"registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
|
|
artifacts:
|
|
paths:
|
|
- gl-dependency-scanning-report.json
|