Commit 946dc30a authored by Arthur Lutz's avatar Arthur Lutz
Browse files

[.gitlab-ci] add checkov test

parent 659809772433
Pipeline #80177 failed with stages
in 9 minutes and 29 seconds
......@@ -35,3 +35,28 @@ deploy:
- kubectl -n intranet rollout restart deployment/intranet deployment/intranet-scheduler
- kubectl -n intranet rollout status --timeout=180s deployment/intranet
- kubectl -n intranet rollout status --timeout=180s deployment/intranet-scheduler
checkov:
stage: tests
allow_failure: true # True for AutoDevOps compatibility
image:
name: bridgecrew/checkov:latest
entrypoint:
- '/usr/bin/env'
- 'PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'
rules:
- changes:
- '**/*.yml'
- '**/*.yaml'
- '**/*.json'
- '**/*.template'
- '**/*.tf'
- '**/serverless.yml'
- '**/serverless.yaml'
script:
- checkov -d . -o junitxml | tee checkov.test.xml
artifacts:
reports:
junit: "checkov.test.xml"
paths:
- "checkov.test.xml"
......@@ -43,8 +43,8 @@ spec:
labels:
app: intranet
annotations:
prometheus.io/scrape: 'true'
prometheus.io/port: '8000'
prometheus.io/scrape: "true"
prometheus.io/port: "8000"
spec:
imagePullSecrets:
- name: regcred-crm
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment