Skip to content

Commit cf29681

Browse files
RetGalRetGal
committed
integrate vulnerabilty scan
1 parent e4c5270 commit cf29681

File tree

1 file changed

+15
-12
lines changed

1 file changed

+15
-12
lines changed

ci/main.go

Lines changed: 15 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ func (m *Ci) Build(_ context.Context, dir *dagger.Directory) *dagger.Container {
4040
}
4141

4242
// Returns the result of haml-lint run against the sources in the provided Directory
43-
func (m *Ci) Lint(ctx context.Context, dir *dagger.Directory) *dagger.File {
43+
func (m *Ci) Lint(dir *dagger.Directory) *dagger.File {
4444
return dag.Container().
4545
From("ruby:latest").
4646
WithMountedDirectory("/mnt", dir).
@@ -51,7 +51,7 @@ func (m *Ci) Lint(ctx context.Context, dir *dagger.Directory) *dagger.File {
5151
}
5252

5353
// Returns the Sast report as a file
54-
func (m *Ci) Sast(ctx context.Context, dir *dagger.Directory) *dagger.File {
54+
func (m *Ci) Sast(dir *dagger.Directory) *dagger.File {
5555
return dag.Container().
5656
From("presidentbeef/brakeman:latest").
5757
WithMountedDirectory("/app", dir).
@@ -155,8 +155,8 @@ func (m *Ci) Vulnscan(sbom *dagger.File) *dagger.File {
155155

156156
// Executes all the steps and returns a Results object
157157
func (m *Ci) Ci(ctx context.Context, dir *dagger.Directory) *Results {
158-
lintOutput := m.Lint(ctx, dir)
159-
securityScan := m.Sast(ctx, dir)
158+
lintOutput := m.Lint(dir)
159+
securityScan := m.Sast(dir)
160160
image := m.Build(ctx, dir)
161161
sbom := m.Sbom(image)
162162
vulnerabilityScan := m.Vulnscan(sbom)
@@ -172,19 +172,22 @@ func (m *Ci) Ci(ctx context.Context, dir *dagger.Directory) *Results {
172172
// Executes all the steps and returns a Results object
173173
func (m *Ci) CiIntegration(ctx context.Context, dir *dagger.Directory) *Results {
174174
var wg sync.WaitGroup
175-
wg.Add(3)
175+
wg.Add(4)
176176

177177
var lintOutput = func() *dagger.File {
178178
defer wg.Done()
179-
return m.Lint(ctx, dir)
179+
return m.Lint(dir)
180180
}()
181181

182182
var securityScan = func() *dagger.File {
183183
defer wg.Done()
184-
return m.Sast(ctx, dir)
184+
return m.Sast(dir)
185185
}()
186186

187-
//vulnerabilityScan := m.Vulnscan(ctx, m.SbomBuild(ctx, dir))
187+
var vulnerabilityScan = func() *dagger.File {
188+
defer wg.Done()
189+
return m.Vulnscan(m.Sbom(m.Build(ctx, dir)))
190+
}()
188191

189192
var image = func() *dagger.Container {
190193
defer wg.Done()
@@ -195,9 +198,9 @@ func (m *Ci) CiIntegration(ctx context.Context, dir *dagger.Directory) *Results
195198
wg.Wait()
196199

197200
return &Results{
198-
LintOutput: lintOutput,
199-
SecurityScan: securityScan,
200-
// VulnerabilityScan: vulnerabilityScan,
201-
Image: image,
201+
LintOutput: lintOutput,
202+
SecurityScan: securityScan,
203+
VulnerabilityScan: vulnerabilityScan,
204+
Image: image,
202205
}
203206
}

0 commit comments

Comments
 (0)