53 lines
1.4 KiB
YAML
53 lines
1.4 KiB
YAML
variables:
|
|
# placeholders for your actual variables
|
|
EXTRA_REPO_URL: git@xxx.com
|
|
EXTRA2_REPO_URL: git@xxx.com
|
|
NEXUS_IP: "x.x.x.x:8088"
|
|
NEXUS2_IP: "x.x.x.x:8088"
|
|
LATEST_BRANCH: "branch_xxx"
|
|
|
|
stages:
|
|
- Nexus_Cleanup
|
|
- Nexus_Vulnerability
|
|
|
|
before_script:
|
|
- python3 -m venv venv
|
|
- source venv/bin/activate
|
|
- pip install -r cicd_requirements.txt
|
|
- export EXTRA_REPO_DIR=$(mktemp -d)
|
|
- export EXTRA2_REPO_DIR=$(mktemp -d)
|
|
|
|
after_script:
|
|
- rm -r $EXTRA_REPO_DIR
|
|
- rm -r $EXTRA2_REPO_DIR
|
|
|
|
Nexus_Vulnerability:
|
|
stage: Nexus_Vulnerability
|
|
needs: [Nexus_Cleanup]
|
|
tags:
|
|
- RUNNER-NAME #placeholder for your runner tag
|
|
script:
|
|
- echo -e "\e[32mChecking Nexus Pypi for known vulnerabilities.\e[0m"
|
|
- python3 cicd_parser.py nexus_vulnerability
|
|
rules:
|
|
- if: $CI_PIPELINE_SOURCE == "schedule"
|
|
when: always
|
|
|
|
|
|
Nexus_Cleanup:
|
|
stage: Nexus_Cleanup
|
|
needs: []
|
|
tags:
|
|
- IPC-PLZ
|
|
script:
|
|
- echo -e "\e[32mFetching other repos.\e[0m"
|
|
- echo "Cloning EXTRA repo..."
|
|
- git clone -q --branch $LATEST_BRANCH "$EXTRA_REPO_URL" "$EXTRA_REPO_DIR"
|
|
- echo "Cloning EXTRA2 repo..."
|
|
- git clone -q --branch $LATEST_BRANCH "$EXTRA2_REPO_URL" "$EXTRA2_REPO_DIR"
|
|
- echo -e "\e[32mNexus Cleanup Started.\e[0m"
|
|
- python3 cicd_parser.py nexus_cleanup
|
|
rules:
|
|
- if: $CI_PIPELINE_SOURCE == "schedule"
|
|
when: always
|