From 2d2e251f0b8f3d4296c521f39070d6197f70263f Mon Sep 17 00:00:00 2001
From: Wolfgang Hottgenroth <wolfgang.hottgenroth@icloud.com>
Date: Mon, 10 Feb 2025 13:38:19 +0100
Subject: [PATCH] adjust for dtrack

---
 .woodpecker.yml | 59 ++++++++++++++++++++++++++++++++++++++++++++-----
 Dockerfile      | 10 +--------
 2 files changed, 55 insertions(+), 14 deletions(-)

diff --git a/.woodpecker.yml b/.woodpecker.yml
index 60dbd1e..08083e7 100644
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@@ -1,8 +1,56 @@
 steps:
   build:
+    image: golang:1.22.5-alpine3.20
+    commands:
+      - GOPATH=/woodpecker/go
+      - ls -l
+      - cd src/tsm
+      - go mod tidy
+      - go build -a -installsuffix nocgo -o tsm tsm.go
+      - cp tsm ../..
+    when:
+      - event: [push, tag]
+
+  scan:
+    image: quay.io/wollud1969/woodpecker-helper:0.5.1
+    environment:
+      TRIVY_TOKEN:
+        from_secret: trivy_token
+      TRIVY_URL:
+        from_secret: trivy_url
+      DTRACK_API_KEY:
+        from_secret: dtrack_api_key
+      DTRACK_API_URL:
+        from_secret: dtrack_api_url
+    commands:
+      - export GOPATH=/woodpecker/go   # the export is required, otherwise trivy will not consider the variable
+      - HOME=/home/`id -nu`
+      - TAG="${CI_COMMIT_TAG:-$CI_COMMIT_SHA}"
+      - |
+        trivy fs \
+              --server $TRIVY_URL \
+              --token $TRIVY_TOKEN \
+              --format cyclonedx \
+              --scanners license \
+              --output /tmp/sbom.xml \
+              .        
+      - cat /tmp/sbom.xml
+      - |
+        curl -X "POST" \
+             -H "Content-Type: multipart/form-data" \
+             -H "X-Api-Key: $DTRACK_API_KEY" \
+             -F "autoCreate=true" \
+             -F "projectName=$CI_REPO" \
+             -F "projectVersion=$TAG" \
+             -F "bom=@/tmp/sbom.xml"\
+             "$DTRACK_API_URL/api/v1/bom"        
+    when:
+      - event: [push, tag]
+
+  dockerize:
     image: plugins/kaniko
     settings:
-      repo: gitea.hottis.de/wn/snmp-mqtt
+      repo: ${FORGE_NAME}/${CI_REPO}
       registry: 
         from_secret: container_registry
       tags: latest,${CI_COMMIT_SHA},${CI_COMMIT_TAG}
@@ -15,10 +63,10 @@ steps:
       - event: [push, tag]
 
   deploy:
-    image: portainer/kubectl-shell:latest
-    secrets:
-      - source: kube_config
-        target: KUBE_CONFIG_CONTENT
+    image: quay.io/wollud1969/woodpecker-helper:0.5.1
+    environment:
+      KUBE_CONFIG_CONTENT:
+        from_secret: kube_config
     commands:
       - export IMAGE_TAG=$CI_COMMIT_TAG
       - printf "$KUBE_CONFIG_CONTENT" > /tmp/kubeconfig
@@ -26,3 +74,4 @@ steps:
       - ./deployment/deploy.sh
     when:
       - event: tag
+
diff --git a/Dockerfile b/Dockerfile
index bb40a05..1b34b11 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,16 +1,8 @@
-FROM golang:1.21-alpine as builder
-
-RUN mkdir -p /go/src
-COPY ./src /go/src
-WORKDIR /go/src/smq
-RUN go build -a -installsuffix nocgo -o smq snmp-mqtt.go
-
-
 FROM scratch
 
 ENV SNMP_MQTT_CONF ""
 
-COPY --from=builder /go/src/smq ./
+COPY smq ./
 ENTRYPOINT ["./smq"]