-
Notifications
You must be signed in to change notification settings - Fork 290
/
Copy pathkyverno-policy-reporter-kyverno-plugin.yaml
52 lines (45 loc) · 1.27 KB
/
kyverno-policy-reporter-kyverno-plugin.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
package:
name: kyverno-policy-reporter-kyverno-plugin
version: 1.6.3
epoch: 0
description: Policy Reporter Kyverno Plugin
copyright:
- license: Apache-2.0
environment:
contents:
packages:
- build-base
- busybox
- ca-certificates-bundle
- go
pipeline:
- uses: git-checkout
with:
repository: https://github.com/kyverno/policy-reporter-kyverno-plugin
tag: v${{package.version}}
expected-commit: a63cfa76261aa09e0ef3aef47de754a95b288de5
- uses: go/build
with:
modroot: .
packages: .
# Mitigate CVE-2023-39325, CVE-2023-3978, CVE-2023-44487
output: kyverno-plugin
ldflags: -w
- runs: |
mkdir -p ${{targets.destdir}}/app/templates
cp -R ./templates ${{targets.destdir}}/app/templates
- uses: strip
subpackages:
- name: kyverno-policy-reporter-kyverno-plugin-compat
description: compatibility symlinks package for kyverno-plugin Dockerfile
pipeline:
- runs: |
# Symlink the binary from usr/bin to /app/
mkdir -p ${{targets.subpkgdir}}/app
ln -sf /usr/bin/kyverno-plugin ${{targets.subpkgdir}}/app/kyverno-plugin
update:
enabled: true
github:
identifier: kyverno/policy-reporter-kyverno-plugin
use-tag: true
strip-prefix: v