Compare commits
13 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
7c8e1156aa
|
|||
|
226456ccd2
|
|||
|
227ef294d3
|
|||
|
a14e0ab2c5
|
|||
|
471fcb2177
|
|||
|
0d4ac4022a
|
|||
|
405d66cdcb
|
|||
|
a32d9fd643
|
|||
|
7f394f82ee
|
|||
|
c8577edf0c
|
|||
|
02aba34391
|
|||
|
1fb4c387a7
|
|||
|
92b61fdae0
|
@ -82,11 +82,11 @@ dockerize:
|
|||||||
script:
|
script:
|
||||||
- tar -xzf defectdojo-api-client.tgz
|
- tar -xzf defectdojo-api-client.tgz
|
||||||
- tar -xzf dtrack-api-client.tgz
|
- tar -xzf dtrack-api-client.tgz
|
||||||
- docker build --tag $IMAGE_NAME:latest
|
- docker build --build-arg ADDITIONAL_CA_URL="$KROHNE_CA_URL"
|
||||||
|
--build-arg ADDITIONAL_CA_CHECKSUM=$KROHNE_CA_CHECKSUM
|
||||||
|
--tag $IMAGE_NAME:latest
|
||||||
--tag $IMAGE_NAME:$CI_COMMIT_SHA
|
--tag $IMAGE_NAME:$CI_COMMIT_SHA
|
||||||
--tag $IMAGE_NAME:$CI_COMMIT_TAG
|
--tag $IMAGE_NAME:$CI_COMMIT_TAG
|
||||||
--build-arg "CUSTOM_CA_URL=$KROHNE_CA_URL"
|
|
||||||
--build-arg "CUSTOM_CA_CHECKSUM=$KROHNE_CA_CHECKSUM"
|
|
||||||
.
|
.
|
||||||
- docker login -u $NEXUS_USER -p $NEXUS_PASSWORD $REGISTRY
|
- docker login -u $NEXUS_USER -p $NEXUS_PASSWORD $REGISTRY
|
||||||
- docker push $IMAGE_NAME:latest
|
- docker push $IMAGE_NAME:latest
|
||||||
|
|||||||
11
Dockerfile
11
Dockerfile
@ -6,18 +6,21 @@ ENV DEFECTDOJO_URL=""
|
|||||||
ENV DEFECTDOJO_TOKEN=""
|
ENV DEFECTDOJO_TOKEN=""
|
||||||
|
|
||||||
ARG APP_DIR=/opt/app
|
ARG APP_DIR=/opt/app
|
||||||
ARG ADDITIONAL_CA_URL=""
|
ARG ADDITIONAL_CA_URL="x"
|
||||||
ARG ADDITIONAL_CA_CHECKSUM=""
|
ARG ADDITIONAL_CA_CHECKSUM="y"
|
||||||
|
|
||||||
RUN \
|
RUN \
|
||||||
|
set -e &&\
|
||||||
apk add --no-cache syft &&\
|
apk add --no-cache syft &&\
|
||||||
adduser -s /bin/sh -D user &&\
|
adduser -s /bin/sh -D user &&\
|
||||||
mkdir -p $APP_DIR &&\
|
mkdir -p $APP_DIR &&\
|
||||||
chown user:user $APP_DIR &&\
|
chown user:user $APP_DIR &&\
|
||||||
if [ "$ADDITIONAL_CA_URL" != "" -a "$ADDITIONAL_CA_CHECKSUM" != "" ]; then \
|
echo $ADDITIONAL_CA_URL &&\
|
||||||
|
echo $ADDITIONAL_CA_CHECKSUM &&\
|
||||||
|
if [ "$ADDITIONAL_CA_URL" != "x" ]; then \
|
||||||
cd /usr/share/ca-certificates; \
|
cd /usr/share/ca-certificates; \
|
||||||
wget --no-check-certificate -O custom-ca.crt $ADDITIONAL_CA_URL; \
|
wget --no-check-certificate -O custom-ca.crt $ADDITIONAL_CA_URL; \
|
||||||
echo "a921e440a742f1e67c7714306e2c0d76 custom-ca.crt" | md5sum -c; \
|
echo "$ADDITIONAL_CA_CHECKSUM custom-ca.crt" | md5sum -c; \
|
||||||
/usr/sbin/update-ca-certificates; \
|
/usr/sbin/update-ca-certificates; \
|
||||||
echo "custom ca added"; \
|
echo "custom ca added"; \
|
||||||
else \
|
else \
|
||||||
|
|||||||
@ -1,11 +1,11 @@
|
|||||||
#!/bin/sh
|
#!/bin/sh
|
||||||
# entrypoint.sh
|
# entrypoint.sh
|
||||||
|
|
||||||
source ./.venv/bin/activate
|
source /opt/app/.venv/bin/activate
|
||||||
|
|
||||||
PYTHONPATH="$PYTHONPATH:./dependencytrack-client"
|
PYTHONPATH="$PYTHONPATH:/opt/app/dependencytrack-client"
|
||||||
PYTHONPATH="$PYTHONPATH:./defectdojo-client"
|
PYTHONPATH="$PYTHONPATH:/opt/app/defectdojo-client"
|
||||||
export PYTHONPATH
|
export PYTHONPATH
|
||||||
|
|
||||||
exec python sbom-dt-dd.py "$@"
|
exec python /opt/app/sbom-dt-dd.py "$@"
|
||||||
|
|
||||||
|
|||||||
@ -48,9 +48,13 @@ def generateSBOM(target='.', name='dummyName', version='0.0.0'):
|
|||||||
|
|
||||||
try:
|
try:
|
||||||
DTRACK_API_URL = os.environ["DTRACK_API_URL"]
|
DTRACK_API_URL = os.environ["DTRACK_API_URL"]
|
||||||
|
logger.debug(f"{DTRACK_API_URL=}")
|
||||||
DTRACK_TOKEN = os.environ["DTRACK_TOKEN"]
|
DTRACK_TOKEN = os.environ["DTRACK_TOKEN"]
|
||||||
|
logger.debug(f"{DTRACK_TOKEN=}")
|
||||||
DEFECTDOJO_URL = os.environ["DEFECTDOJO_URL"]
|
DEFECTDOJO_URL = os.environ["DEFECTDOJO_URL"]
|
||||||
|
logger.debug(f"{DEFECTDOJO_URL=}")
|
||||||
DEFECTDOJO_TOKEN = os.environ["DEFECTDOJO_TOKEN"]
|
DEFECTDOJO_TOKEN = os.environ["DEFECTDOJO_TOKEN"]
|
||||||
|
logger.debug(f"{DEFECTDOJO_TOKEN=}")
|
||||||
except KeyError as e:
|
except KeyError as e:
|
||||||
raise Exception(f"Env variable {e} is shall be set")
|
raise Exception(f"Env variable {e} is shall be set")
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user