From 9d1f3b60b8a93ee034ff48f51f2016b7f536355d Mon Sep 17 00:00:00 2001 From: sg Date: Thu, 19 Sep 2024 19:09:03 +0100 Subject: [PATCH] example checkov workflow --- .../checkov-project/kustomization.yaml | 12 ++++++++++ .../checkov-project/pipelinerun.yaml | 24 +++++++++++++++++++ 2 files changed, 36 insertions(+) create mode 100644 examples/pipelines/checkov-project/kustomization.yaml create mode 100644 examples/pipelines/checkov-project/pipelinerun.yaml diff --git a/examples/pipelines/checkov-project/kustomization.yaml b/examples/pipelines/checkov-project/kustomization.yaml new file mode 100644 index 000000000..69db787a7 --- /dev/null +++ b/examples/pipelines/checkov-project/kustomization.yaml @@ -0,0 +1,12 @@ +--- +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization +nameSuffix: -checkov-project +components: + - pkg:helm/dracon-oss-components/base + - pkg:helm/dracon-oss-components/git-clone + - components/producers/checkov + - pkg:helm/dracon-oss-components/producer-aggregator + - pkg:helm/dracon-oss-components/enricher-codeowners + - pkg:helm/dracon-oss-components/enricher-aggregator + - pkg:helm/dracon-oss-components/consumer-stdout-json diff --git a/examples/pipelines/checkov-project/pipelinerun.yaml b/examples/pipelines/checkov-project/pipelinerun.yaml new file mode 100644 index 000000000..2cc72b751 --- /dev/null +++ b/examples/pipelines/checkov-project/pipelinerun.yaml @@ -0,0 +1,24 @@ +--- +apiVersion: tekton.dev/v1beta1 +kind: PipelineRun +metadata: + generateName: dracon-checkov-project- + namespace: dracon +spec: + pipelineRef: + name: dracon-checkov-project + params: + - name: git-clone-url + value: https://github.com/bridgecrewio/cfngoat + - name: producer-checkov-cyclonedx-target-override + value: "pkg:terraform/bridgecrewio/cfngoat" + workspaces: + - name: output + subPath: source-code + volumeClaimTemplate: + spec: + accessModes: + - ReadWriteOnce + resources: + requests: + storage: 1Gi