Commit ab8138a7 authored by Joshua Lambert's avatar Joshua Lambert

Remove SAST:Image for now.

parent 032658e0
...@@ -109,19 +109,6 @@ sast: ...@@ -109,19 +109,6 @@ sast:
artifacts: artifacts:
paths: [gl-sast-report.json] paths: [gl-sast-report.json]
sast:image:
image: docker:latest
variables:
DOCKER_DRIVER: overlay2
allow_failure: true
services:
- docker:dind
script:
- setup_docker
- sast_image
artifacts:
paths: [gl-sast-image-report.json]
review: review:
stage: review stage: review
script: script:
...@@ -257,18 +244,6 @@ production: ...@@ -257,18 +244,6 @@ production:
export CI_CONTAINER_NAME=ci_job_build_${CI_JOB_ID} export CI_CONTAINER_NAME=ci_job_build_${CI_JOB_ID}
export TILLER_NAMESPACE=$KUBE_NAMESPACE export TILLER_NAMESPACE=$KUBE_NAMESPACE
function sast_image() {
docker run -d --name db arminc/clair-db:latest
docker run -p 6060:6060 --link db:postgres -d --name clair arminc/clair-local-scan:v2.0.1
apk add -U wget ca-certificates
docker pull ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG}
wget https://github.com/arminc/clair-scanner/releases/download/v6/clair-scanner_linux_386
mv clair-scanner_linux_386 clair-scanner
chmod +x clair-scanner
touch clair-whitelist.yml
./clair-scanner -c http://docker:6060 --ip $(hostname -i) -r gl-sast-image-report.json -l clair.log -w clair-whitelist.yml ${CI_APPLICATION_REPOSITORY}:${CI_APPLICATION_TAG} || true
}
function codeclimate() { function codeclimate() {
cc_opts="--env CODECLIMATE_CODE="$PWD" \ cc_opts="--env CODECLIMATE_CODE="$PWD" \
--volume "$PWD":/code \ --volume "$PWD":/code \
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment