-
Notifications
You must be signed in to change notification settings - Fork 0
/
.gitlab-ci.yml
81 lines (73 loc) · 1.24 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
stages:
- test
- analyze
- build
- deploy
###########################
# Templates #
# #
# make sure all jobs use #
# architecture tags. #
###########################
.job: &job
before_script:
- ./.gitlab-ci/$CI_JOB_STAGE/$CI_JOB_NAME.sh setup
dependencies: []
except: [schedules]
tags:
- amd64
script:
- ./.gitlab-ci/$CI_JOB_STAGE/$CI_JOB_NAME.sh
.dind: &dind
<<: *job
tags:
- amd64-dind
image: docker:stable
variables:
DOCKER_DRIVER: overlay2
services:
- docker:stable-dind
###########
# Analyze #
###########
.analyze: &analyze
<<: *job
image: hub.lavasoftware.org/lava/ci-images/amd64/analyze
stage: analyze
except:
refs:
- tags
black:
<<: *analyze
pylint:
<<: *analyze
# static analysis with bandit
include:
template: SAST.gitlab-ci.yml
sast:
tags: [amd64-dind]
stage: analyze
variables:
DOCKER_DRIVER: overlay2
SAST_DEFAULT_ANALYZERS: "bandit"
#########
# Build #
#########
docker:
<<: *dind
stage: build
##########
# Deploy #
##########
reactoweb:
<<: *job
stage: deploy
tags: [deploy]
only:
refs:
- master
variables:
CONTAINER_NAME: "reactoweb"
environment:
name: reactoweb
url: https://bus.lavasoftware.org/