From 5d10d8e987e102a84699b8d8c16fbd7d6c04272f Mon Sep 17 00:00:00 2001
From: mrichomme <morgan.richomme@orange.com>
Date: Mon, 10 Feb 2020 17:49:43 +0100
Subject: Add security docker for functest-kubernetes
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

run kube-hunter and kube-bench cases dealing with security in kubernetes (check
vulnerabilities) [1][2]

It's the first step only printing the output.

[1]: https://github.com/aquasecurity/kube-bench
[2]: https://github.com/aquasecurity/kube-hunter

Co-Authored-By: Cédric Ollivier <cedric.ollivier@orange.com>
Change-Id: I3bd9bda80046ef7a0c494d51dfb0b8cbfea02bb0
Signed-off-by: mrichomme <morgan.richomme@orange.com>
(cherry picked from commit 98d9f93337ab514fa9aafc1cd1e87473de68b364)
(cherry picked from commit 0626f54b8686134515eab3b9014c5b538405d84f)
(cherry picked from commit a7191389900b58f50e428af47e6819f30ba07d8f)
---
 .travis.yml | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

(limited to '.travis.yml')

diff --git a/.travis.yml b/.travis.yml
index 292ff8ae..3d9b3b4d 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -34,7 +34,7 @@ jobs:
           --platforms linux/amd64 \
           --template ${DOCKER_USERNAME}/functest-kubernetes-core:ARCH-hunter \
           --target ${DOCKER_USERNAME}/functest-kubernetes-core:hunter
-    - stage: build functest-kubernetes-[healthcheck,features] image
+    - stage: build functest-kubernetes-[healthcheck,security] images
       script: sudo -E bash build.sh
       env:
         - REPO="${DOCKER_USERNAME}"
@@ -43,9 +43,10 @@ jobs:
     - script: sudo -E bash build.sh
       env:
         - REPO="${DOCKER_USERNAME}"
-        - amd64_dirs="docker/features"
+        - amd64_dirs="docker/security"
         - arm64_dirs=""
-    - stage: publish functest-kubernetes-[healthcheck,features] manifests
+        - arm_dirs=""
+    - stage: publish functest-kubernetes-[healthcheck,security] manifests
       script: >
         sudo manifest-tool push from-args \
           --platforms linux/amd64 \
@@ -56,8 +57,8 @@ jobs:
         sudo manifest-tool push from-args \
           --platforms linux/amd64 \
           --template \
-          ${DOCKER_USERNAME}/functest-kubernetes-features:ARCH-hunter \
-          --target ${DOCKER_USERNAME}/functest-kubernetes-features:hunter
+            ${DOCKER_USERNAME}/functest-kubernetes-security:ARCH-hunter \
+          --target ${DOCKER_USERNAME}/functest-kubernetes-security:hunter
     - stage: build functest-kubernetes-smoke image
       script: sudo -E bash build.sh
       env:
-- 
cgit 1.2.3-korg