From 5e2111831d34e68667f14858eb41edb7add00234 Mon Sep 17 00:00:00 2001 From: Cédric Ollivier Date: Tue, 12 Apr 2022 17:20:37 +0200 Subject: Add docker-scan in Functest images MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Change-Id: I56158b92f917410dab4113590613e230d87d122d Signed-off-by: Cédric Ollivier --- jjb/functest/functest-kubernetes.yaml | 92 +++++++++++++++++++++++++++++++++++ 1 file changed, 92 insertions(+) (limited to 'jjb/functest/functest-kubernetes.yaml') diff --git a/jjb/functest/functest-kubernetes.yaml b/jjb/functest/functest-kubernetes.yaml index 0fe4013cc..4354896aa 100644 --- a/jjb/functest/functest-kubernetes.yaml +++ b/jjb/functest/functest-kubernetes.yaml @@ -1282,6 +1282,86 @@ jobs: - 'functest-kubernetes-{repo}-{container}-{tag}-trivy' +- builder: + name: functest-kubernetes-docker-scan + builders: + - shell: | + apt-get -o DPkg::Lock::Timeout=300 update && \ + DEBIAN_FRONTEND=noninteractive apt-get -o DPkg::Lock::Timeout=300 install \ + curl docker.io -y + + mkdir -p ~/.docker/cli-plugins && \ + curl https://github.com/docker/scan-cli-plugin/releases/latest/download/docker-scan_linux_amd64 \ + -L -s -S -o ~/.docker/cli-plugins/docker-scan &&\ + chmod +x ~/.docker/cli-plugins/docker-scan + if [ "{repo}" = "_" ]; then + image={container}:{tag} + elif [ "{port}" = "None" ]; then + image={repo}/{container}:{tag} + else + image={repo}:{port}/{container}:{tag} + fi + docker-scan $image + +- job-template: + name: 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + triggers: + - timed: '@weekly' + parameters: + - functest-kubernetes-slave: + slave: '{slave}' + builders: + - functest-kubernetes-docker-scan: + <<: *functest-kubernetes-containers + publishers: + - email-ext: + failure: false + first-failure: true + fixed: true + recipients: cedric.ollivier@orange.com + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-core-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-core' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-healthcheck-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-healthcheck' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-cnf-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-cnf' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-security-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-security' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-smoke-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-smoke' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + +- project: + name: 'functest-kubernetes-opnfv-functest-kubernetes-benchmarking-docker-scan' + <<: *functest-kubernetes-params + container: 'functest-kubernetes-benchmarking' + jobs: + - 'functest-kubernetes-{repo}-{container}-{tag}-docker-scan' + - project: name: 'functest-kubernetes' <<: *functest-kubernetes-params @@ -1311,3 +1391,15 @@ - last-failure - last-duration regex: (?!functest-kubernetes-pi)(?!functest-kubernetes-ng)^functest-kubernetes-[a-z-0-9.]+-trivy$ + +- view: + name: functest-kubernetes-docker-scan + view-type: list + columns: + - status + - weather + - job + - last-success + - last-failure + - last-duration + regex: ^functest-kubernetes-[a-z0-9.]+-docker-scan$ -- cgit 1.2.3-korg