-
Notifications
You must be signed in to change notification settings - Fork 0
/
azure-pipelines.yml
50 lines (43 loc) · 1.28 KB
/
azure-pipelines.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
# Node.js
# Build a general Node.js project with npm.
# Add steps that analyze code, save build artifacts, deploy, and more:
# https://docs.microsoft.com/azure/devops/pipelines/languages/javascript
trigger:
- master
pool:
vmImage: 'ubuntu-latest'
steps:
- task: NodeTool@0
inputs:
versionSpec: '10.x'
displayName: 'Install Node.js'
- script: |
npm install
npm run build
displayName: 'npm install and build'
- script: |
docker build -t goof-azure .
displayName: 'build docker image'
- task: SnykSecurityScan@0
inputs:
serviceConnectionEndpoint: 'Snyk_Token'
testType: 'app'
monitorOnBuild: true
failOnIssues: false
continueOnError: true
debug: true
projectName: 'goof-azure-pipelines'
additionalArguments: '--remote-repo-url=goof-azure-pipelines'
#additionalArguments: '--all-projects --remote-repo-url=goof-azure-pipelines'
- task: SnykSecurityScan@0
inputs:
serviceConnectionEndpoint: 'Snyk_Token'
testType: 'container'
dockerImageName: 'goof-azure'
dockerfilePath: 'Dockerfile'
severityThreshold: 'high'
monitorOnBuild: true
failOnIssues: false
projectName: 'docker-image|goof-azure-pipelines'
additionalArguments: '--app-vulns'
#additionalArguments: '--remote-repo-url=goof-azure-pipelines'