Skip to content

Circleci project setup #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
amirdamirov wants to merge 12 commits into
base: master
Choose a base branch
from
Open

Circleci project setup #5

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
dc54644
Add .circleci/config.yml
amirdamirov Feb 10, 2022
ff5e442
Updated config.yml
amirdamirov Feb 10, 2022
36a0e4a
Add .circleci/config.yml
amirdamirov Feb 10, 2022
05f254c
Updated config.yml
amirdamirov Feb 10, 2022
0ac2b86
Updated config.yml
amirdamirov Feb 10, 2022
0241eaa
test ecr default
amirdamirov Feb 23, 2022
00f59a5
ecr orb added
amirdamirov Feb 23, 2022
1677bef
test trivy
amirdamirov Mar 4, 2022
4169fa8
sudo added to command
amirdamirov Mar 4, 2022
8474560
store artifact
amirdamirov Mar 4, 2022
683a0a9
remove no-progress
amirdamirov Mar 4, 2022
089dbcb
format json
amirdamirov Mar 4, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
42 changes: 42 additions & 0 deletions .circleci/config.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,42 @@
version: 2.1

orbs:
aws-ecr: circleci/aws-ecr@6.1.0

jobs:
say-hello:
executor: aws-ecr/default
steps:
- checkout
- run:
name: "Pull docker image"
command: "docker pull nginx"
- run:
name: "Scan docker image"
command: |
sudo apt-get install wget apt-transport-https gnupg lsb-release
wget -qO - https://aquasecurity.github.io/trivy-repo/deb/public.key | sudo apt-key add -
echo deb https://aquasecurity.github.io/trivy-repo/deb $(lsb_release -sc) main | sudo tee -a /etc/apt/sources.list.d/trivy.list
sudo apt-get update
sudo apt-get install trivy
sudo mkdir /imagesecreport
sudo trivy image --no-progress -format json --output /imagesecreport/scanning-report.txt nginx:latest
- store_artifacts:
path: /imagesecreport

say-tello:
docker:
- image: cimg/base:stable
steps:
- checkout
- run:
name: "Say hello"
command: "echo Tello, World!"

workflows:
say-hello-workflow:
jobs:
- say-hello
- say-tello:
requires:
- say-hello
36 changes: 36 additions & 0 deletions .circleci/images/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
FROM node:16-alpine

# Install packages
RUN apk update && apk add --update --no-cache \
git \
bash \
curl \
openssh \
python3 \
py3-pip \
py-cryptography \
wget \
curl \
tar \
unzip \
ca-certificates


RUN apk --no-cache add openjdk11 --repository=http://dl-cdn.alpinelinux.org/alpine/edge/community
RUN cd /opt && curl -sSl http://mirror.vorboss.net/apache/maven/maven-3/3.6.3/binaries/apache-maven-3.6.3-bin.tar.gz | tar -xz
RUN apk -U add --no-cache curl; \
curl https://downloads.gradle.org/distributions/gradle-${GRADLE_VERSION}-bin.zip > gradle.zip; \
unzip gradle.zip; \
rm gradle.zip; \
apk del curl; \
apk update && apk add --no-cache libstdc++ && rm -rf /var/cache/apk/*

RUN apk --no-cache add --virtual builds-deps build-base python3

# Update NPM
RUN npm config set unsafe-perm true
RUN npm update -g

# Install AWSCLI
RUN pip install --upgrade pip && \
pip install --upgrade awscli