Skip to content
/ gitlab_sonar_and_trivyscan Public

Gitlab CI pipeline for sonar scanner and docker vulnerability scan using trivy.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

danlix2000/gitlab_sonar_and_trivyscan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
.gitlab/ci
.gitlab/ci
 
 
container
container
 
 
.gitlab-ci.yml
.gitlab-ci.yml
 
 
README.md
README.md
 
 

Repository files navigation

Gitlab CI pipeline for sonar scanner and docker vulnerability scan using trivy.

  • SONAR_HOST and SONARQUBE_TOKEN should configure on GITLAB CI Environment variables

Following line setup for Fail CI pipeline on severe vulnerabilities

./trivy -d --cache-dir .trivycache/ image --exit-code 1 --no-progress --severity CRITICAL $IMAGE_NAME

if you need to bypass it , modify "exit-code" to 0 for continue pipeline

./trivy -d --cache-dir .trivycache/ image --exit-code 0 --no-progress --severity CRITICAL $IMAGE_NAME
  • Docker file is created for Nodejs application (container/danlix_devapp.Dockerfile)

About

Gitlab CI pipeline for sonar scanner and docker vulnerability scan using trivy.

Topics

gitlab-ci sonarqube trivy

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages