29 lines
713 B
YAML
29 lines
713 B
YAML
.generate_sbom:
|
|
image: registry.internal.durp.info/anchore/syft:${SYFT_VERSION}
|
|
script:
|
|
# Begin of syft-mkdir.sh
|
|
- |
|
|
#mkdir for syft files
|
|
mkdir $CI_PROJECT_DIR/syft
|
|
# End of syft-mkdir.sh
|
|
artifacts:
|
|
expire_in: 1 hour
|
|
paths:
|
|
- $CI_PROJECT_DIR/syft
|
|
.generate_cve:
|
|
image: registry.internal.durp.info/anchore/grype:${GRYPE_VERSION}
|
|
script:
|
|
# Begin of grype.sh
|
|
- |
|
|
#grype scan sboms
|
|
for i in syft/*.sbom.json;
|
|
do filename=${i%*.sbom.json};
|
|
filename=${filename##/};
|
|
grype syft/$i -o json --file syft/$filename.cve.json;
|
|
done
|
|
# End of grype.sh
|
|
artifacts:
|
|
expire_in: 1 hour
|
|
paths:
|
|
- $CI_PROJECT_DIR/syft
|