-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy pathpipeline.yaml
115 lines (115 loc) · 2.31 KB
/
pipeline.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
apiVersion: tekton.dev/v1alpha1
kind: Pipeline
metadata:
name: snyky-pipeline
spec:
resources:
- name: source-repo
type: git
tasks:
- name: conftest-verify
taskRef:
name: conftest-verify
resources:
inputs:
- name: source
resource: source-repo
- name: pipfile-conftest
taskRef:
name: conftest
runAfter:
- conftest-verify
params:
- name: files
value: Pipfile
- name: args
value:
- --input
- toml
- --namespace
- pipfile
resources:
inputs:
- name: source
resource: source-repo
- name: dockerfile-conftest
taskRef:
name: conftest
runAfter:
- conftest-verify
params:
- name: files
value: Dockerfile
- name: args
value:
- --namespace
- docker
resources:
inputs:
- name: source
resource: source-repo
- name: pytest-conftest
taskRef:
name: conftest
runAfter:
- conftest-verify
params:
- name: files
value: pytest.ini
- name: args
value:
- --namespace
- pytest
resources:
inputs:
- name: source
resource: source-repo
- name: helm-conftest
taskRef:
name: helm-conftest
runAfter:
- conftest-verify
params:
- name: chart
value: snyky
resources:
inputs:
- name: source
resource: source-repo
- name: snyk
taskRef:
name: snyk-python
resources:
inputs:
- name: source
resource: source-repo
---
apiVersion: tekton.dev/v1alpha1
kind: PipelineResource
metadata:
name: snyky-git
spec:
type: git
params:
- name: revision
value: master
- name: url
value: https://github.com/garethr/snyky.git
---
apiVersion: tekton.dev/v1alpha1
kind: Task
metadata:
name: conftest-verify
spec:
inputs:
resources:
- name: source
type: git
targetPath: source
steps:
- name: conftest-verify
workingdir: /workspace/source
image: instrumenta/conftest:latest
command:
- conftest
- verify