forked from 100HnoMeuNome/HeadPage-Demo-App-Protect-RASP
-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathbuildspec-snyk-scan.yml
65 lines (64 loc) · 1.6 KB
/
buildspec-snyk-scan.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
version: 0.2
env:
#variables:
# key: "value"
# key: "value"
parameter-store:
SNYK_AUTH_TOKEN: "snykAuthToken"
# key: "value"
#secrets-manager:
# key: secret-id:json-key:version-stage:version-id
# key: secret-id:json-key:version-stage:version-id
#exported-variables:
# - variable
# - variable
#git-credential-helper: yes
#batch:
#fast-fail: true
#build-list:
#build-matrix:
#build-graph:
phases:
install:
#Se você usar a imagem padrão do Ubuntu 2.0 ou posterior, você deve especificar as versões de tempo de execução.
#Se você especificar versões de tempo de execução e usar uma imagem que não seja a imagem padrão do Ubuntu 2.0, a compilação falhará.
runtime-versions:
python: 3.8
# name: version
commands:
- pip install -r requirements.txt
#- command
#pre_build:
#commands:
# - command
# - command
build:
commands:
- curl -Lo ./snyk "https://github.com/snyk/snyk/releases/download/v1.210.0/snyk-linux"
- chmod -R +x ./snyk
#Auth set through environment variable
- ./snyk auth ${SNYK_AUTH_TOKEN}
- ./snyk monitor
# - ./snyk test #--severity-threshold=medium
#post_build:
#commands:
# - command
# - command
#reports:
#report-name-or-arn:
#files:
# - location
# - location
#base-directory: location
#discard-paths: yes
#file-format: JunitXml | CucumberJson
#artifacts:
#files:
# - location
# - location
#name: $(date +%Y-%m-%d)
#discard-paths: yes
#base-directory: location
#cache:
#paths:
# - paths