CodePipeline action to integrate Anchore Engine into your pipeline
Project description
@cloudcomponents/cdk-codepipeline-anchore-inline-scan-action
CodePipeline action to integrate Anchore Engine into your pipeline
Install
TypeScript/JavaScript:
npm i @cloudcomponents/cdk-codepipeline-anchore-inline-scan-action
Python:
pip install cloudcomponents.cdk-codepipeline-anchore-inline-scan-action
How to use
# Example automatically generated from non-compiling source. May contain errors.
import { Construct, Stack, StackProps } from '@aws-cdk/core';
import { Repository } from '@aws-cdk/aws-codecommit';
import { Pipeline, Artifact } from '@aws-cdk/aws-codepipeline';
import { CodeCommitSourceAction } from '@aws-cdk/aws-codepipeline-actions';
import { CodePipelineDockerfileLinterAction } from '@cloudcomponents/cdk-codepipeline-dockerfile-linter-action';
import { CodePipelineAnchoreInlineScanAction } from '@cloudcomponents/cdk-codepipeline-anchore-inline-scan-action';
export class ContainerAuditStack extends Stack {
constructor(scope: Construct, id: string, props?: StackProps) {
super(scope, id, props);
const repository = new Repository(this, 'Repository', {
repositoryName: 'container-audit-repository',
});
const sourceArtifact = new Artifact();
const sourceAction = new CodeCommitSourceAction({
actionName: 'CodeCommit',
repository,
output: sourceArtifact,
branch: 'master',
});
const linterAction = new CodePipelineDockerfileLinterAction({
actionName: 'Linter',
input: sourceArtifact,
});
const vulnScanAction = new CodePipelineAnchoreInlineScanAction({
actionName: 'VulnScan',
input: sourceArtifact,
});
new Pipeline(this, 'Pipeline', {
pipelineName: 'container-audit-pipeline',
stages: [
{
stageName: 'Source',
actions: [sourceAction],
},
{
stageName: 'Audit',
actions: [linterAction, vulnScanAction],
},
],
});
}
}
API Reference
See API.md.
Example
See more complete examples.
License
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for cloudcomponents.cdk-codepipeline-anchore-inline-scan-action-1.48.0.tar.gz
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5dd15a5ea865ecee4bb4556e3a773a5264db18abb2eed3b1f403c81b1f5c8a9e |
|
MD5 | 8f0cd70d7d771333b88f3e8a4d3de8e2 |
|
BLAKE2b-256 | a08094a756a54816e944583f4a90f8691a47d35a70431ba75e644802cbf6d883 |
Close
Hashes for cloudcomponents.cdk_codepipeline_anchore_inline_scan_action-1.48.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 86c8d33a0e7f3087897cb855d407b399f9e716affdc6d4e32af72dd0012ea1a5 |
|
MD5 | 82812ec923225793ea264bf388dd8faa |
|
BLAKE2b-256 | 8d185566486849940a01235633431bc5516814c8ee9249b84a1671343b5b83ec |