You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@buildstream.apache.org by tv...@apache.org on 2021/02/04 07:52:54 UTC

[buildstream] branch jjardon/dependency_scanning created (now 8e4d2eb)

This is an automated email from the ASF dual-hosted git repository.

tvb pushed a change to branch jjardon/dependency_scanning
in repository https://gitbox.apache.org/repos/asf/buildstream.git.


      at 8e4d2eb  Remove before_script:

This branch includes the following new commits:

     new 0f0be8f  .gitlab-ci.yml: Add job to run Dependency Scanning
     new 8e4d2eb  Remove before_script:

The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.

[buildstream] 01/02: .gitlab-ci.yml: Add job to run Dependency Scanning

Posted by tv...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

tvb pushed a commit to branch jjardon/dependency_scanning
in repository https://gitbox.apache.org/repos/asf/buildstream.git

commit 0f0be8f5f06d6f2d021ac510db983a2120221e20
Author: Javier Jardón <jj...@gnome.org>
AuthorDate: Tue Apr 24 01:14:19 2018 +0100

    .gitlab-ci.yml: Add job to run Dependency Scanning
---
 .gitlab-ci.yml | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index a7a4629..22ada8c 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -208,6 +208,24 @@ coverage:
   - tests-unix
   - source_dist
 
+dependency_scanning:
+  image: docker:stable
+  variables:
+    DOCKER_DRIVER: overlay2
+  allow_failure: true
+  services:
+    - docker:stable-dind
+  script:
+    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
+    - docker run
+        --env DEP_SCAN_DISABLE_REMOTE_CHECKS="${DEP_SCAN_DISABLE_REMOTE_CHECKS:-false}"
+        --volume "$PWD:/code"
+        --volume /var/run/docker.sock:/var/run/docker.sock
+        "registry.gitlab.com/gitlab-org/security-products/dependency-scanning:$SP_VERSION" /code
+  artifacts:
+    paths: [gl-dependency-scanning-report.json]
+
+
 # Deploy, only for merges which land on master branch.
 #
 pages:

[buildstream] 02/02: Remove before_script:

Posted by tv...@apache.org.

This is an automated email from the ASF dual-hosted git repository.

tvb pushed a commit to branch jjardon/dependency_scanning
in repository https://gitbox.apache.org/repos/asf/buildstream.git

commit 8e4d2eb2a776cd37eb49b67c72a2aa74ef1e9f8c
Author: Javier Jardón <jj...@gnome.org>
AuthorDate: Tue Apr 24 01:44:01 2018 +0100

    Remove before_script:
---
 .gitlab-ci.yml | 8 --------
 1 file changed, 8 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 22ada8c..7ec489f 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -10,14 +10,6 @@ stages:
   - test
   - post
 
-before_script:
-  # Diagnostics
-  - mount
-  - df -h
-
-  - useradd -Um buildstream
-  - chown -R buildstream:buildstream .
-
 #####################################################
 #                  Prepare stage                    #
 #####################################################