mirror of
https://github.com/bitnami/containers.git
synced 2026-03-06 15:09:19 +08:00
255b403872
* Add grype action to verify phase Signed-off-by: Fran Mulero <fmulero@vmware.com> * Remove application.kind Signed-off-by: Fran Mulero <fmulero@vmware.com>
53 lines
1008 B
JSON
53 lines
1008 B
JSON
{
|
|
"context": {
|
|
"resources": {
|
|
"url": "{SHA_ARCHIVE}",
|
|
"path": "{VIB_ENV_PATH}"
|
|
}
|
|
},
|
|
"phases": {
|
|
"package": {
|
|
"actions": [
|
|
{
|
|
"action_id": "container-image-package",
|
|
"params": {
|
|
"application": {
|
|
"details": {
|
|
"name": "{VIB_ENV_CONTAINER}",
|
|
"tag": "{VIB_ENV_TAG}"
|
|
}
|
|
}
|
|
}
|
|
},
|
|
{
|
|
"action_id": "container-image-lint",
|
|
"params": {
|
|
"threshold": "error"
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"verify": {
|
|
"actions": [
|
|
{
|
|
"action_id": "trivy",
|
|
"params": {
|
|
"threshold": "CRITICAL",
|
|
"vuln_type": [
|
|
"OS"
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"action_id": "grype",
|
|
"params": {
|
|
"threshold": "CRITICAL",
|
|
"package_type": [
|
|
"OS"
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
} |