diff options
author | Trevor Bramwell <tbramwell@linuxfoundation.org> | 2018-05-16 16:23:56 -0700 |
---|---|---|
committer | Trevor Bramwell <tbramwell@linuxfoundation.org> | 2018-05-16 16:28:04 -0700 |
commit | afff1f88a918215eeb9060c4f43c5a332c8eb32c (patch) | |
tree | 7767640d2b3c9dbb469b912856b221c1784c9db8 /jjb/ci_gate_security/opnfv-ci-gate-security.yaml | |
parent | 7bf9e576ff0fffdac04b5892e0e41b63c0735d4e (diff) |
Rename files under jjb from 'yml' to 'yaml'
global-jjb only supports the .yaml file ending for jjb jobs. Instead of
waiting for a release we're going to rename the files.
Change-Id: Icf3339eacd2320c583333e02250998cf6b1881f7
Signed-off-by: Trevor Bramwell <tbramwell@linuxfoundation.org>
Diffstat (limited to 'jjb/ci_gate_security/opnfv-ci-gate-security.yaml')
-rw-r--r-- | jjb/ci_gate_security/opnfv-ci-gate-security.yaml | 198 |
1 files changed, 198 insertions, 0 deletions
diff --git a/jjb/ci_gate_security/opnfv-ci-gate-security.yaml b/jjb/ci_gate_security/opnfv-ci-gate-security.yaml new file mode 100644 index 000000000..cd3831310 --- /dev/null +++ b/jjb/ci_gate_security/opnfv-ci-gate-security.yaml @@ -0,0 +1,198 @@ +--- +# SPDX-license-identifier: Apache-2.0 +######################## +# Job configuration for opnfv-anteater (security audit) +######################## +- project: + + name: anteaterfw + + project: anteaterfw + + repo: + - apex + - apex-os-net-config + - apex-puppet-tripleo + - apex-tripleo-heat-templates + - armband + - auto + - availability + - bamboo + - barometer + - bottlenecks + - calipso + - clover + - compass-containers + - compass4nfv + - conductor + - container4nfv + - copper + - cperf + - daisy + - doctor + - domino + - dovetail + - dpacc + - enfv + - fds + - fuel + - functest + - ipv6 + - joid + - kvmfornfv + - models + - moon + - netready + - nfvbench + - onosfw + - opera + - opnfvdocs + - orchestra + - ovn4nfv + - ovno + - ovsnfv + - parser + - pharos + - pharos-tools + - promise + - qtip + - releng + - releng-anteater + - releng-testresults + - releng-utils + - releng-xci + - samplevnf + - sdnvpn + - securityscanning + - sfc + - snaps + - stor4nfv + - storperf + - ves + - vswitchperf + - yardstick + + jobs: + - 'opnfv-security-audit-verify-{stream}' + - 'opnfv-security-audit-{repo}-weekly-{stream}' + + stream: + - master: + branch: '{stream}' + gs-pathname: '' + disabled: false + +######################## +# job templates +######################## +- job-template: + name: 'opnfv-security-audit-{repo}-weekly-{stream}' + + disabled: '{obj:disabled}' + + parameters: + - ericsson-build3-defaults + - string: + name: ANTEATER_SCAN_PATCHSET + default: "false" + description: "Have anteater scan patchsets (true) or full project (false)" + - project-parameter: + project: '{repo}' + branch: '{branch}' + + scm: + - git-scm-gerrit + + triggers: + - timed: '@weekly' + + builders: + - anteater-security-audit-weekly + + publishers: + # defined in jjb/global/releng-macros.yml + - 'email-{repo}-ptl': + subject: 'OPNFV Security Scan Result: {repo}' + - workspace-cleanup: + fail-build: false + +- job-template: + name: 'opnfv-security-audit-verify-{stream}' + + disabled: '{obj:disabled}' + + parameters: + - label: + name: SLAVE_LABEL + default: 'opnfv-build' + description: 'Slave label on Jenkins' + - project-parameter: + project: $GERRIT_PROJECT + branch: '{branch}' + - string: + name: GIT_BASE + default: https://gerrit.opnfv.org/gerrit/$PROJECT + # yamllint disable rule:line-length + description: "Used for overriding the GIT URL coming from Global Jenkins configuration in case if the stuff is done on none-LF HW." + # yamllint enable rule:line-length + + scm: + - git-scm-gerrit + + # yamllint disable rule:line-length + triggers: + - gerrit: + server-name: 'gerrit.opnfv.org' + trigger-on: + - patchset-created-event: + exclude-drafts: 'false' + exclude-trivial-rebase: 'false' + exclude-no-code-change: 'false' + - draft-published-event + - comment-added-contains-event: + comment-contains-value: 'recheck' + - comment-added-contains-event: + comment-contains-value: 'reverify' + projects: + - project-compare-type: 'REG_EXP' + project-pattern: 'apex|armband|bamboo|barometer|bottlenecks|calipso|compass4nfv|conductor|copper|cperf|daisy|doctor|dovetail|dpacc|enfv|fds|fuel|functest|pharos|releng|sandbox|yardstick|infra|ipv6|kvmfornfv|models|moon|netready' + branches: + - branch-compare-type: 'ANT' + branch-pattern: '**/{branch}' + file-paths: + - compare-type: ANT + pattern: '**' + skip-vote: + successful: true + failed: true + unstable: true + notbuilt: true + # yamllint enable rule:line-length + + builders: + - anteater-security-audit + - report-security-audit-result-to-gerrit + publishers: + - archive-artifacts: + artifacts: ".reports/*" + +######################## +# builder macros +######################## +- builder: + name: anteater-security-audit + builders: + - shell: + !include-raw: ./anteater-security-audit.sh + +- builder: + name: report-security-audit-result-to-gerrit + builders: + - shell: + !include-raw: ./anteater-report-to-gerrit.sh + +- builder: + name: anteater-security-audit-weekly + builders: + - shell: + !include-raw: ./anteater-security-audit-weekly.sh |