2023-11-03 19:10:12 +01:00
---
steps :
gitleaks :
2024-02-01 21:44:48 +01:00
image : zricethezav/gitleaks:v8.18.2
2023-11-03 19:10:12 +01:00
commands :
- gitleaks detect --no-git --verbose --source $CI_WORKSPACE
when :
event :
exclude :
- tag
2024-01-29 11:58:25 +01:00
2023-11-03 19:10:12 +01:00
hadolint :
2024-01-29 14:44:38 +01:00
image : pipelinecomponents/hadolint:0.26.0
2023-11-03 19:10:12 +01:00
commands :
- hadolint Dockerfile
when :
event :
exclude :
- tag
2024-01-29 11:58:25 +01:00
shellcheck :
2024-02-02 22:18:14 +01:00
image : "registry.mgrote.net/allzweckcontainer:latest" # sonst triggert ein Renovate-Lauf den Neubau, da komt ein neuer Tag, der Renovate triggert... usw.
commands :
2024-01-29 12:02:01 +01:00
- |
2024-01-29 12:12:01 +01:00
find . -type f -not -path './.git/*' -not -path './collections/*' -exec file {} \; | while IFS= read -r line; do
if echo "$line" | grep -q "shell script"; then
file_path=$(echo "$line" | awk -F':' '{print $1}')
shellcheck "$file_path"
fi
done
2024-01-29 11:58:25 +01:00
when :
event :
exclude :
- tag
...
