Containers #604
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Containers | |
| on: | |
| workflow_dispatch: | |
| schedule: | |
| - cron: '0 0 * * *' | |
| pull_request: | |
| paths: | |
| - 'docker/**' | |
| - 'docker-compose.yml' | |
| jobs: | |
| docker-compose: | |
| name: Docker Compose | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| with: | |
| fetch-depth: 0 | |
| - name: Build Docker images | |
| run: docker compose build | |
| - name: Scan Nginx image with Trivy | |
| continue-on-error: true | |
| uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 | |
| with: | |
| image-ref: rekono-nginx | |
| format: table | |
| exit-code: 1 | |
| - name: Scan Kali image with Trivy | |
| continue-on-error: true | |
| uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 | |
| with: | |
| image-ref: rekono-kali | |
| format: table | |
| exit-code: 1 | |
| - name: Scan Backend image with Trivy | |
| continue-on-error: true | |
| uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 | |
| with: | |
| image-ref: rekono-backend | |
| format: table | |
| exit-code: 1 | |
| - name: Scan Frontend image with Trivy | |
| continue-on-error: true | |
| uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 | |
| with: | |
| image-ref: rekono-frontend | |
| format: table | |
| exit-code: 1 | |
| debian-image: | |
| name: Debian Image | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| with: | |
| fetch-depth: 0 | |
| - uses: actions/setup-node@v3 | |
| with: | |
| node-version: 16 | |
| - name: Install dependencies | |
| working-directory: rekono/frontend | |
| run: npm install . | |
| - name: Generate Desktop app | |
| working-directory: rekono/frontend | |
| run: npm run electron:build | |
| - name: Build Docker image | |
| run: docker build --build-arg REKONO_VERSION=dev --file docker/debian/Dockerfile --tag rekono-debian . | |
| - name: Scan Debian image with Trivy | |
| continue-on-error: true | |
| uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 | |
| with: | |
| image-ref: rekono-debian | |
| format: table | |
| exit-code: 1 | |