-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path.gitlab-ci.yml
52 lines (47 loc) · 1.35 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
# SPDX-FileCopyrightText: 2024 hobyte
#
# SPDX-License-Identifier: EPL-2.0
# included templates
include:
# Node.js template
- project: "to-be-continuous/node"
ref: "3.12"
file: "templates/gitlab-ci-node.yml"
# Gitleaks template
- project: "to-be-continuous/gitleaks"
ref: "2.5"
file: "templates/gitlab-ci-gitleaks.yml"
# Renovate template
- project: "to-be-continuous/renovate"
ref: "1.2"
file: "templates/gitlab-ci-renovate.yml"
#GitLab Static Application Security Testing
- template: Jobs/SAST.gitlab-ci.yml
#Gitlab secret detection
- template: Jobs/Secret-Detection.gitlab-ci.yml
# secret variables
# (define the variables below in your GitLab group/project variables)
# RENOVATE_TOKEN: A GitLab access token to allow Renovate crawl your projects. [See doc](https://docs.renovatebot.com/modules/platform/gitlab/#authentication)
# GITHUB_COM_TOKEN: A GitHub access token to allow Renovate fetch changelogs. [See doc](https://docs.renovatebot.com/getting-started/running/#githubcom-token-for-changelogs)
# your pipeline stages
stages:
- build
- test
- package-build
- package-test
- infra
- deploy
- acceptance
- publish
- infra-prod
- production
# enable code lint
variables:
NODE_LINT_ENABLED: "true"
reuse:
stage: test
image:
name: fsfe/reuse:latest
entrypoint: [""]
script:
- reuse lint