perso/cipherscan
4
0
Fork 0
Code Issues 1 Pull Requests Actions Releases Wiki Activity

Compare commits

base: perso/cipherscan:v0.0.4
Branches Tags
perso/cipherscan:master perso/cipherscan:chore/renovate perso/cipherscan:feat/gitea-actions
perso/cipherscan:v0.0.5 perso/cipherscan:v0.0.4 perso/cipherscan:v0.0.3 perso/cipherscan:v0.0.2 perso/cipherscan:v0.0.1
..
compare: perso/cipherscan:chore/renovate
Branches Tags
perso/cipherscan:master perso/cipherscan:chore/renovate perso/cipherscan:feat/gitea-actions
perso/cipherscan:v0.0.5 perso/cipherscan:v0.0.4 perso/cipherscan:v0.0.3 perso/cipherscan:v0.0.2 perso/cipherscan:v0.0.1

1 Commits
v0.0.4 .. chore/renovate

Author SHA1 Message Date
Sagent b8df3625f0 chore: add renovate config with SHA-pinned action regex manager, fix gitlabci image quotes
Docker Build and Push / lint (pull_request) Successful in 8s
Details
Docker Build and Push / build (pull_request) Successful in 1m37s
Details
Docker Build and Push / test (pull_request) Successful in 33s
Details
Docker Build and Push / push (pull_request) Has been skipped
Details
Docker Build and Push / lint (push) Successful in 6s
Details
Docker Build and Push / build (push) Successful in 51s
Details
Docker Build and Push / test (push) Successful in 17s
Details
Docker Build and Push / push (push) Successful in 52s
Details
2026-06-09 02:12:45 +00:00
9 changed files with 162 additions and 160 deletions
Expand all files Collapse all files
.gitea/workflows/cron.yaml
-49
View File
@@ -1,49 +0,0 @@
name: Nightly Rebuild
on:
schedule:
- cron: '0 0 * * *'
jobs:
hadolint:
runs-on: ubuntu-latest
continue-on-error: true
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
with:
dockerfile: Dockerfile
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- run: docker build -t ci-image:${{ github.sha }} .
- run: bash tests/test.sh ci-image:${{ github.sha }}
build-push:
needs: [test]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
with:
fetch-depth: 0
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- id: get-latest-tag
run: |
TAG=$(git describe --tags --abbrev=0 2>/dev/null || echo "")
echo "tag=$TAG" >> $GITHUB_OUTPUT
- id: meta
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6
with:
images: jcabillot/cipherscan
tags: |
type=raw,value=${{ steps.get-latest-tag.outputs.tag }}-latest,enable=${{ steps.get-latest-tag.outputs.tag != '' }}
- uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
with:
context: .
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
pull: true
.gitea/workflows/docker-build.yaml
+70
View File
@@ -0,0 +1,70 @@
name: Docker Build and Push
on:
pull_request:
push:
schedule:
- cron: '30 3 * * 3'
jobs:
lint:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10
- name: Hadolint
uses: hadolint/hadolint-action@54c9adbab1582c2ef04b2016b760714a4bfde3cf
build:
runs-on: ubuntu-latest
needs: lint
steps:
- name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10
- name: Build image
run: docker build -t ci-image:${{ github.sha }} .
- name: Save image
run: docker save ci-image:${{ github.sha }} > image.tar
- name: Upload artifact
uses: ChristopherHX/gitea-upload-artifact@62ac910c5d3dfa85c7cb2df15afe2e342b2407c2
with:
name: docker-image
path: image.tar
test:
runs-on: ubuntu-latest
needs: build
steps:
- name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10
- name: Download artifact
uses: ChristopherHX/gitea-download-artifact@75635f32b4c1c41c4b3d64e8f85210112ed4c9c7
with:
name: docker-image
- name: Load image
run: docker load < image.tar
- name: Run tests
run: bash tests/test.sh ci-image:${{ github.sha }}
push:
runs-on: ubuntu-latest
if: github.event_name != 'pull_request'
needs: test
steps:
- name: Checkout
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10
- name: Download artifact
uses: ChristopherHX/gitea-download-artifact@75635f32b4c1c41c4b3d64e8f85210112ed4c9c7
with:
name: docker-image
- name: Load image
run: docker load < image.tar
- name: Login to Docker Hub
uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Tag and push
run: |
docker tag ci-image:${{ github.sha }} jcabillot/cipherscan:latest
docker push jcabillot/cipherscan:latest
.gitea/workflows/main.yaml
-44
View File
@@ -1,44 +0,0 @@
name: Main Release
on:
push:
branches: [master]
jobs:
hadolint:
runs-on: ubuntu-latest
continue-on-error: true
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
with:
dockerfile: Dockerfile
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- run: docker build -t ci-image:${{ github.sha }} .
- run: bash tests/test.sh ci-image:${{ github.sha }}
build:
needs: [test]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- run: docker build -t jcabillot/cipherscan:${{ github.sha }} .
tag:
needs: [build]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
with:
fetch-depth: 0
- name: Configure git auth
run: |
git remote set-url origin "https://x-access-token:${{ secrets.SA_TOKEN_ACTION_PUSH_TAGS }}@scm.cabillot.eu/perso/cipherscan.git"
- uses: anothrNick/github-tag-action@4ed44965e0db8dab2b466a16da04aec3cc312fd8 # v1.75.0
env:
GITHUB_TOKEN: ${{ secrets.SA_TOKEN_ACTION_PUSH_TAGS }}
DEFAULT_BUMP: patch
RELEASE_BRANCHES: master
WITH_V: true
GIT_API_TAGGING: false
.gitea/workflows/pr.yaml
-20
View File
@@ -1,20 +0,0 @@
name: PR Checks
on:
pull_request:
branches: [master]
jobs:
hadolint:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
continue-on-error: true
with:
dockerfile: Dockerfile
build-test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- run: docker build -t ci-image:${{ github.sha }} .
- run: bash tests/test.sh ci-image:${{ github.sha }}
.gitea/workflows/tag.yaml
-44
View File
@@ -1,44 +0,0 @@
name: Tag Release
on:
push:
tags: ['*']
jobs:
hadolint:
runs-on: ubuntu-latest
continue-on-error: true
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: hadolint/hadolint-action@2332a7b74a6de0dda2e2221d575162eba76ba5e5 # v3.3.0
with:
dockerfile: Dockerfile
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- run: docker build -t ci-image:${{ github.sha }} .
- run: bash tests/test.sh ci-image:${{ github.sha }}
build-push:
needs: [test]
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
- uses: docker/setup-buildx-action@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5 # v4
- uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- id: meta
uses: docker/metadata-action@80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9 # v6
with:
images: jcabillot/cipherscan
tags: |
type=ref,event=tag
type=ref,event=tag,suffix=-latest
- uses: docker/build-push-action@f9f3042f7e2789586610d6e8b85c8f03e5195baf # v7.2.0
with:
context: .
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
pull: true
.gitlab-ci.yml
+35
View File
@@ -0,0 +1,35 @@
image: docker:latest
services:
- "docker:dind"
before_script:
- "docker login -u \"$CI_REGISTRY_USER\" -p \"$CI_REGISTRY_PASSWORD\" $CI_REGISTRY"
build-master:
stage: "build"
script:
- "docker build --pull -t \"$CI_REGISTRY_IMAGE\" ."
- "docker push \"$CI_REGISTRY_IMAGE\""
only:
- "master"
build:
stage: "build"
script:
- "docker build --pull -t \"$CI_REGISTRY_IMAGE:$CI_COMMIT_REF_SLUG\" ."
- "docker push \"$CI_REGISTRY_IMAGE:$CI_COMMIT_REF_SLUG\""
except:
- "master"
deploy-dockerhub:
stage: "deploy"
before_script:
- "docker login -u \"$DOCKERHUB_USER\" -p \"$DOCKERHUB_PASSWORD\""
- "docker login -u \"$CI_REGISTRY_USER\" -p \"$CI_REGISTRY_PASSWORD\" $CI_REGISTRY"
script:
- "docker pull \"$CI_REGISTRY_IMAGE\""
- "docker tag \"$CI_REGISTRY_IMAGE\" \"$DOCKERHUB_USER/$DOCKERHUB_PROJECT\""
- "docker push \"$DOCKERHUB_USER/$DOCKERHUB_PROJECT\""
only:
- "master"
Dockerfile
+2 -3
View File
@@ -1,13 +1,12 @@
FROM ubuntu:26.04 FROM ubuntu:18.04
LABEL maintainer="Julien Cabillot <dockerimages@cabillot.eu>" LABEL maintainer="Julien Cabillot <dockerimages@cabillot.eu>"
# hadolint ignore=DL3008,SC3009,SC2086 # hadolint ignore=DL3008,SC3009,SC2086
RUN export DEBIAN_FRONTEND=noninteractive && \ RUN export DEBIAN_FRONTEND=noninteractive && \
export BUILD_PACKAGES=git-core && \ export BUILD_PACKAGES=git-core && \
export RUNTIME_PACKAGES="python3 bsdmainutils curl python3-six ca-certificates" && \ export RUNTIME_PACKAGES="python python3 bsdmainutils curl python3-six ca-certificates" && \
apt-get -qq update && \ apt-get -qq update && \
apt-get -qq --no-install-recommends --yes install ${BUILD_PACKAGES} ${RUNTIME_PACKAGES} && \ apt-get -qq --no-install-recommends --yes install ${BUILD_PACKAGES} ${RUNTIME_PACKAGES} && \
ln -sf /usr/bin/python3 /usr/bin/python && \
git clone https://github.com/jvehent/cipherscan.git && \ git clone https://github.com/jvehent/cipherscan.git && \
/cipherscan/cscan.sh -l && \ /cipherscan/cscan.sh -l && \
apt-get -qq --yes remove --purge ${BUILD_PACKAGES} && \ apt-get -qq --yes remove --purge ${BUILD_PACKAGES} && \
Jenkinsfile
Vendored
+38
View File
@@ -0,0 +1,38 @@
pipeline {
environment {
registry = 'https://registry.hub.docker.com'
registryCredential = 'dockerhub_jcabillot'
dockerImage = 'jcabillot/cipherscan'
}
agent any
triggers {
cron('@midnight')
}
stages {
stage('Clone repository') {
steps{
checkout scm
}
}
stage('Build image') {
steps{
sh 'docker build --force-rm=true --no-cache=true --pull -t ${dockerImage} .'
}
}
stage('Deploy Image') {
steps{
script {
withCredentials([usernamePassword(credentialsId: 'dockerhub_jcabillot', usernameVariable: 'DOCKER_USER', passwordVariable: 'DOCKER_PASS')]) {
sh 'docker login --username ${DOCKER_USER} --password ${DOCKER_PASS}'
sh 'docker push ${dockerImage}'
}
}
}
}
}
}
renovate.json
+17
View File
@@ -0,0 +1,17 @@
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"gitlabci": {
"enabled": true
},
"regexManagers": [
{
"description": "Track SHA-pinned Gitea Actions (github-actions manager on Gitea platform cannot resolve SHA refs natively)",
"fileMatch": ["^\\.gitea/workflows/.*\\.ya?ml$"],
"matchStrings": [
"uses:\\s+(?<depName>[\\w.-]+\\/[\\w.-]+(?:\\/[\\w.-]+)?)@(?<currentDigest>[a-f0-9]{40})"
],
"datasourceTemplate": "github-releases",
"versioningTemplate": "semver"
}
]
}