-
Notifications
You must be signed in to change notification settings - Fork 1.2k
/
Copy pathcontainer_scan.yml
120 lines (112 loc) · 3.73 KB
/
container_scan.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
---
# container_scan stage
# Contains jobs to deploy container images of the Agent to specific Dockerhub repos
# (datadog/agent-scan and datadog/dogstatsd-scan) to be scanned.
# push every night to docker hub agent-scan repo
scan_nightly-dogstatsd:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_deploy_nightly_repo_branch_a7]
needs:
- docker_build_dogstatsd_amd64
variables:
IMG_REGISTRIES: dev
IMG_SOURCES: ${SRC_DSD}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-amd64
IMG_DESTINATIONS: dogstatsd-scan:${BUCKET_BRANCH}
scan_nightly-a6:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_deploy_nightly_repo_branch_a6]
needs:
- docker_build_agent6
- docker_build_agent6_jmx
variables:
IMG_REGISTRIES: dev
parallel:
matrix:
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-6-amd64
IMG_DESTINATIONS: agent-scan:${BUCKET_BRANCH}-py2
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-6-jmx-amd64
IMG_DESTINATIONS: agent-scan:${BUCKET_BRANCH}-py2-jmx
scan_nightly-a7:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_deploy_nightly_repo_branch_a7]
needs:
- docker_build_agent7
- docker_build_agent7_jmx
variables:
IMG_REGISTRIES: dev
parallel:
matrix:
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-7-amd64
IMG_DESTINATIONS: agent-scan:${BUCKET_BRANCH}-py3
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-7-jmx-amd64
IMG_DESTINATIONS: agent-scan:${BUCKET_BRANCH}-py3-jmx
dca_scan_nightly:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_deploy_nightly_repo_branch_a7]
needs: ["docker_build_cluster_agent_amd64"]
variables:
IMG_REGISTRIES: dev
IMG_SOURCES: ${SRC_DCA}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-amd64
IMG_DESTINATIONS: cluster-agent-scan:${BUCKET_BRANCH}
# push on master to docker hub agent-scan repo
scan_master-dogstatsd:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_main_a7]
needs:
- docker_build_dogstatsd_amd64
variables:
IMG_REGISTRIES: dev
IMG_SOURCES: ${SRC_DSD}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-amd64
IMG_DESTINATIONS: dogstatsd-scan:master
scan_master-a6:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_main_a6]
needs:
- docker_build_agent6
- docker_build_agent6_jmx
variables:
IMG_REGISTRIES: dev
parallel:
matrix:
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-6-amd64
IMG_DESTINATIONS: agent-scan:master-py2
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-6-jmx-amd64
IMG_DESTINATIONS: agent-scan:master-py2-jmx
scan_master-a7:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_main_a7]
needs:
- docker_build_agent7
- docker_build_agent7_jmx
variables:
IMG_REGISTRIES: dev
parallel:
matrix:
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-7-amd64
IMG_DESTINATIONS: agent-scan:master-py3
- IMG_SOURCES: ${SRC_AGENT}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-7-jmx-amd64
IMG_DESTINATIONS: agent-scan:master-py3-jmx
dca_scan_master:
extends: .docker_publish_job_definition
stage: container_scan
rules:
!reference [.on_main_a7]
needs: ["docker_build_cluster_agent_amd64"]
variables:
IMG_REGISTRIES: dev
IMG_SOURCES: ${SRC_DCA}:v${CI_PIPELINE_ID}-${CI_COMMIT_SHORT_SHA}-amd64
IMG_DESTINATIONS: cluster-agent-scan:master