diff options
author | GitLab Bot <gitlab-bot@gitlab.com> | 2020-12-17 14:59:07 +0300 |
---|---|---|
committer | GitLab Bot <gitlab-bot@gitlab.com> | 2020-12-17 14:59:07 +0300 |
commit | 8b573c94895dc0ac0e1d9d59cf3e8745e8b539ca (patch) | |
tree | 544930fb309b30317ae9797a9683768705d664c4 /workhorse/.gitlab-ci.yml | |
parent | 4b1de649d0168371549608993deac953eb692019 (diff) |
Add latest changes from gitlab-org/gitlab@13-7-stable-eev13.7.0-rc42
Diffstat (limited to 'workhorse/.gitlab-ci.yml')
-rw-r--r-- | workhorse/.gitlab-ci.yml | 83 |
1 files changed, 83 insertions, 0 deletions
diff --git a/workhorse/.gitlab-ci.yml b/workhorse/.gitlab-ci.yml new file mode 100644 index 00000000000..b3377c894e0 --- /dev/null +++ b/workhorse/.gitlab-ci.yml @@ -0,0 +1,83 @@ +workflow: + rules: &workflow_rules + # For merge requests, create a pipeline. + - if: '$CI_MERGE_REQUEST_IID' + # For `master` branch, create a pipeline (this includes on schedules, pushes, merges, etc.). + - if: '$CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH' + # For tags, create a pipeline. + - if: '$CI_COMMIT_TAG' + # For stable branches, create a pipeline. + - if: '$CI_COMMIT_BRANCH =~ /^[\d-]+-stable$/' + +default: + image: golang:1.13 + tags: + - gitlab-org + +# Disable DIND for SAST because we need to execute a before_script in the gosec-sast job +variables: + SAST_DISABLE_DIND: "true" + +verify: + script: + - make verify + +changelog: + script: + - _support/check_changelog.sh + rules: + - if: '$CI_MERGE_REQUEST_IID' + +.test: + services: + - name: registry.gitlab.com/gitlab-org/build/cng/gitaly:latest + # Disable the hooks so we don't have to stub the GitLab API + command: ["/usr/bin/env", "GITALY_TESTING_NO_GIT_HOOKS=1", "/scripts/process-wrapper"] + alias: gitaly + variables: + GITALY_ADDRESS: "tcp://gitaly:8075" + script: + - go version + - apt-get update && apt-get -y install libimage-exiftool-perl + - make test + +test using go 1.13: + extends: .test + image: golang:1.13 + +test using go 1.14: + extends: .test + image: golang:1.14 + +test:release: + rules: + - if: '$CI_COMMIT_TAG' + script: + - git describe --exact-match + +include: + - template: Security/SAST.gitlab-ci.yml + - template: Security/Dependency-Scanning.gitlab-ci.yml + - template: Security/Secret-Detection.gitlab-ci.yml + +gosec-sast: + before_script: + - apk add make + - make install + rules: *workflow_rules + +gemnasium-dependency_scanning: + rules: *workflow_rules + +secret_detection: + rules: *workflow_rules + +code_navigation: + image: golang:latest + allow_failure: true + script: + - go get github.com/sourcegraph/lsif-go/cmd/lsif-go + - lsif-go + artifacts: + reports: + lsif: dump.lsif |