added exec test with docker build

eloy.moreno · eloy.moreno · commit 34bf813eec53 · 2023-03-08T16:06:31.000+01:00
diff --git a/resources/Dockerfile_2 b/resources/Dockerfile_2
@@ -0,0 +1,9 @@
+# Copyright 2021 Adevinta
+
+FROM docker:20.10-git
+
+WORKDIR /app
+
+COPY vulcan-local .
+
+ENTRYPOINT [ "/app/vulcan-local" ]
diff --git a/script/test.sh b/script/test.sh
@@ -24,6 +24,12 @@ echo "Test local docker image"
 ./vulcan-local -t path/vulcan-local:xxx -a DockerImage -i trivy
 echo "exit=$?"
 
+# Add a path and a tag to bypass check target validations.
+docker tag vulcan-local path/vulcan-local:xxx
+echo "Test local docker image"
+./vulcan-local -t Dockerfile -a DockerImage -i trivy
+echo "exit=$?"
+
 echo "Docker test based on yaml config"
 docker run --rm -v /var/run/docker.sock:/var/run/docker.sock  \
     -v "$PWD":/target -e TRAVIS_BUILD_DIR=/target \
diff --git a/vulcan_bis.yaml b/vulcan_bis.yaml
@@ -0,0 +1,31 @@
+conf:
+  # Variables needed by some checks.
+  vars:
+    # Credentials for cloning private repositories
+    GITHUB_ENTERPRISE_ENDPOINT: ${GITHUB_ENTERPRISE_ENDPOINT}
+    GITHUB_ENTERPRISE_TOKEN: ${GITHUB_ENTERPRISE_TOKEN}
+
+    # Credentials to pass to the checks to pull private images
+    REGISTRY_DOMAIN: ${REGISTRY_SERVER}
+    REGISTRY_USERNAME: ${REGISTRY_USERNAME}
+    REGISTRY_PASSWORD: ${REGISTRY_PASSWORD}
+
+  # Registry credentials to pull checks from private registries
+  registries:
+    - server: ${REGISTRY_SERVER}
+      username: ${REGISTRY_USERNAME}
+      password: ${REGISTRY_PASSWORD}
+
+  # *Always*, Never, IfNotPresent
+  pullPolicy: IfNotPresent
+
+  # Number of checks to run concurrently
+  concurrency: 5
+
+targets:
+
+  - target: ${DOCKER_IMAGE:-Dockerfile}
+    assetType: DockerImage
+
+  - target: ${DOCKER_IMAGE:-resources/Dockerfile_2}
+    assetType: DockerImage
