49 lines
1.1 KiB
YAML
49 lines
1.1 KiB
YAML
---
|
|
kind: pipeline
|
|
type: docker
|
|
name: default
|
|
steps:
|
|
# prüfe ob secrets im Repo sind
|
|
- name: run gitleaks
|
|
image: plugins/gitleaks
|
|
settings:
|
|
path: .
|
|
|
|
# linter für Dockerfiles
|
|
# https://github.com/hadolint/hadolint/blob/master/docs/INTEGRATION.md
|
|
- name: hadolint
|
|
image: hadolint/hadolint:latest-debian
|
|
# image: ghcr.io/hadolint/hadolint:latest-debian
|
|
commands:
|
|
- hadolint --version
|
|
- hadolint Dockerfile
|
|
|
|
# Bauen, taggen und pushen
|
|
- name: docker_build_and_push
|
|
image: plugins/docker
|
|
settings:
|
|
# Dockerhub-Username
|
|
# als Org-Secret hinterlegt
|
|
username:
|
|
from_secret: DOCKERHUB_USER
|
|
# Dockerhub-Password
|
|
# als Org-Secret hinterlegt
|
|
password:
|
|
from_secret: DOCKERHUB_PASS
|
|
# Container-Registry
|
|
# registry: hub.docker.com
|
|
# Name des Containerfiles
|
|
dockerfile: Dockerfile
|
|
# Repo auf dem Dockerhub
|
|
repo: quotengrote/allzweckcontainer
|
|
tags:
|
|
- latest
|
|
- ${DRONE_COMMIT_SHA:0:8}
|
|
when:
|
|
branch:
|
|
- master
|
|
event:
|
|
include:
|
|
- push
|
|
exclude:
|
|
- pull_request
|