github.com/Axway/agent-sdk@v1.1.101/.gitlab-ci.yml

github.com/Axway/agent-sdk@v1.1.101/.gitlab-ci.yml (about)

     1  ###
     2  image: docker:dind
     3  
     4  variables:
     5    GIT_REPO_PATH: src/github.com/Axway # overridden from variables.yml
     6    GIT_REPO_NAME: agent-sdk
     7  
     8    # for agent trigger jobs
     9    AWS_DISCOVERY_PROJECT_ID: 7397
    10    V7_DISCOVERY_PROJECT_ID: 7540
    11    AZURE_DISCOVERY_PROJECT_ID: 8585
    12  
    13    # Fortify
    14    FORTIFY_PROJECT: "10566"
    15    FORTIFY_BUILD_ID: "apic_agents_sdk"
    16    FORTIFY_INCLUDE: "**/*.go"
    17    FORTIFY_EXCLUDE: "**/*_test.go"
    18  
    19    # Blackduck
    20    BLACKDUCK_PROJECT_NAME: "Amplify - APIC Agent SDK"
    21  
    22    # just to be sure we don't do vendoring
    23    GOFLAGS: "-mod=mod"
    24  
    25  ############################################################
    26  # Section for external includes
    27  ############################################################
    28  include:
    29    - project: "apigov/gitlabci"
    30      ref: master
    31      file: "/.gitlab-ci-sonar.yml"
    32    - project: "apigov/beano_cicd"
    33      ref: $BEANO_CICD_LATEST
    34      # the order of these include files is important
    35      file:
    36        - "/gitlabci/variables.yml"
    37        - "/gitlabci/restrictions.yml"
    38        - "/gitlabci/jobs.yml"
    39    - project: "scurity/gitlabci"
    40      ref: $SCURITY_LATEST
    41      file:
    42        - "/.gitlab-ci-fortify.yml"
    43        - "/.gitlab-ci-twistlock.yml"
    44        - "/.gitlab-ci-iriusrisk.yml"
    45        - "/.gitlab-ci-blackduck.yml"
    46        - "/.gitlab-ci-csr.yml"
    47    - project: "apigov/beano_cicd"
    48      ref: $BEANO_CICD_LATEST
    49      # this one MUST be after the scurity jobs in order for overrides to work correctly!
    50      file:
    51        - "/gitlabci/csrjobs.yml"
    52        - "/gitlabci/csrjobsformirror.yml"
    53  
    54  stages:
    55    - test
    56    - qa-test
    57    - sonar-preview
    58    - sonar-publish
    59    - security-scans
    60    - security-review
    61    - update-dep
    62  
    63  ############################################################
    64  # Section for triggering agent updates
    65  ############################################################
    66  .trigger-downstream-agent:
    67    stage: update-dep
    68    when: manual
    69    script:
    70      - apk update && apk add curl ca-certificates
    71      - echo "triggering downstream agent with SDK_SHA = ${CI_COMMIT_SHA}"
    72      - curl --request POST --form "token=${CI_JOB_TOKEN}" --form "variables[SDK_SHA]=${CI_COMMIT_SHA}" --form ref=master ${CURL_URL_FOR_TRIGGER}/${PROJECT_ID}/trigger/pipeline
    73    extends: .only-default-branch
    74    except:
    75      refs:
    76        - schedules
    77  
    78  trigger-aws-apigw-discovery-agent:
    79    before_script:
    80      - export PROJECT_ID=${AWS_DISCOVERY_PROJECT_ID}
    81    extends: .trigger-downstream-agent
    82  
    83  trigger-v7-discovery-agent:
    84    before_script:
    85      - export PROJECT_ID=${V7_DISCOVERY_PROJECT_ID}
    86    extends: .trigger-downstream-agent
    87  
    88  trigger-azure-discovery-agent:
    89    before_script:
    90      - export PROJECT_ID=${AZURE_DISCOVERY_PROJECT_ID}
    91    extends: .trigger-downstream-agent