Skip to content

Latest commit

 

History

History
224 lines (174 loc) · 10.2 KB

README.md

File metadata and controls

224 lines (174 loc) · 10.2 KB

ploigos-containers

GitHub Workflow Status (branch)
license

Container image definitions for the Ploigos project.

ploigos-base

ploigos-base

Defines the base Ploigos container image, from which all other Ploigos images derive.

ploigos-ci-agent-jenkins

ploigos-ci-agent-jenkins

Defines a jenkins agent as a sidecar for the ploigos-tool-* containers. Built from ploigos-tool-java.

ploigos-jenkins

To be deprecated.

Custom Jenkins Controller that allows for CA root trust to be updated.

ploigos-jenkins-init

To be deprecated.

Custom Jenkins init image which installs a preset set of Jenkins plugins.

ploigos-tool-argocd

ploigos-tool-argocd

Defines an ArgoCD container image. Built from ploigos-base.

ploigos-tool-config-lint

ploigos-tool-config-lint

Defines a config-lint container image. Built from ploigos-base.

ploigos-tool-containers

ploigos-tool-containers

Defines a tools container that has tools for working with containers.

  • buildah
  • podman
  • skopeo
  • s2i

Required Capabilities for rootless container building:

  • SETUID
  • SETGID

ploigos-tool-helm

ploigos-tool-helm

Defines a tools container that has helm and helpful helm plugins.

Helm Plugins

ploigos-tool-java

ploigos-tool-java

Defines a Java base container image, built on top of ploigos-base, from which many Ploigos tool images derive.

ploigos-tool-maven

ploigos-tool-maven

Defines a maven container image. Built from ploigos-tool-java.

ploigos-tool-jkube

ploigos-tool-jkube

Defines a Maven JKube container image. Built from ploigos-tool-maven.

ploigos-tool-javascript

ploigos-tool-javascript

Defines a javascript container image. Built from ploigos-base.

ploigos-tool-openscap

ploigos-tool-openscap

Defines an OpenSCAP based image scanning container image. Built from ploigos-base.

ploigos-tool-autogov

ploigos-tool-autogov

Defines a tools container that has the tools for doing auto governance. Built from ploigos-base.

Tools

ploigos-tool-sonar

ploigos-tool-sonar

Defines a sonar-scanner container image. Built from ploigos-base.

argocd-repo-server-sops

Layers sops and the helm-secrets plugin ontop of the base argocd-repo-server image.

Automatic Build, Test, and Publish

The following github events to this repository will cause the publish GitHub workflow to kick off which will build, test, publish the images (that can) to quay.io/ploigos.

Events

  • schedule
    • everyday at 10:00am
  • push
    • branches
      • main
    • tags
      • v*.*.*
    • pull_request

Images

  • ploigos-base
    • ubi8
    • ubi9
  • ploigos-tool-java
    • .java8.ubi8
    • .java11.ubi8 (default)
    • .java8.ubi9
    • .java11.ubi9
  • ploigos-ci-agent-jenkins
    • .java8.ubi8
    • .java11.ubi8 (default)
    • .java8.ubi9
    • .java11.ubi9
  • ploigos-jenkins
    • ubi8 - not actually ubi
  • ploigos-jenkins-init
    • ubi8
    • ubi9
  • ploigos-tool-argocd
    • ubi8
  • ploigos-tool-config-lint
    • ubi8
    • ubi9
  • ploigos-tool-containers
    • ubi8
    • ubi9
  • ploigos-tool-helm
    • ubi8
    • ubi9
  • ploigos-tool-maven
    • .java8.ubi8
    • .java11.ubi8 (default)
    • .java8.ubi9
    • .java11.ubi9
  • ploigos-tool-jkube
    • .java8.ubi8
    • .java11.ubi8 (default)
    • .java8.ubi9
    • .java11.ubi9
  • ploigos-tool-javascript
    • ubi8
    • ubi9
  • ploigos-tool-openscap
    • ubi8
    • ubi9
  • ploigos-tool-autogov
    • ubi8
    • ubi9
  • ploigos-tool-sonar
    • ubi8
    • ubi9

Local Build, Test, and Publish

Build

The following commands can be used for building these images locally for default.

podman build --tag ploigos-base                                                            ploigos-base
podman build --tag ploigos-tool-java        --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-java
podman build --tag ploigos-ci-agent-jenkins --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-ci-agent-jenkins
podman build --tag ploigos-jenkins                                                         ploigos-jenkins
podman build --tag ploigos-jenkins-init                                                    ploigos-jenkins-init
podman build --tag ploigos-tool-argocd      --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-argocd
podman build --tag ploigos-tool-config-lint --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-config-lint
podman build --tag ploigos-tool-containers  --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-containers
podman build --tag ploigos-tool-helm        --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-helm
podman build --tag ploigos-tool-maven       --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-tool-maven
podman build --tag ploigos-tool-javascript  --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-tool-javascript
podman build --tag ploigos-tool-jkube       --build-arg BASE_IMAGE=ploigos-tool-maven      ploigos-tool-jkube
podman build --tag ploigos-tool-openscap    --build-arg BASE_IMAGE=ploigos-tool-containers ploigos-tool-openscap
podman build --tag ploigos-tool-autogov     --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-autogov
podman build --tag ploigos-tool-sonar       --build-arg BASE_IMAGE=ploigos-tool-javascript ploigos-tool-sonar
podman build --tag argocd-repo-server-sops  argocd-repo-server-sops -f ./Containerfile.ubi8

The following commands can be used for building these images locally for ubi9.

podman build --tag ploigos-base                                                            ploigos-base -f ./Containerfile.ubi9
podman build --tag ploigos-tool-java        --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-java -f ./Containerfile.ubi9
podman build --tag ploigos-ci-agent-jenkins --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-ci-agent-jenkins -f ./Containerfile.ubi9
podman build --tag ploigos-jenkins                                                         ploigos-jenkins
podman build --tag ploigos-jenkins-init                                                    ploigos-jenkins-init -f ./Containerfile.ubi9
podman build --tag ploigos-tool-argocd      --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-argocd -f ./Containerfile.ubi9
podman build --tag ploigos-tool-config-lint --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-config-lint -f ./Containerfile.ubi9
podman build --tag ploigos-tool-containers  --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-containers -f ./Containerfile.ubi9
podman build --tag ploigos-tool-helm        --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-helm -f ./Containerfile.ubi9
podman build --tag ploigos-tool-maven       --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-tool-maven -f ./Containerfile.ubi9
podman build --tag ploigos-tool-javascript  --build-arg BASE_IMAGE=ploigos-tool-java       ploigos-tool-javascript -f ./Containerfile.ubi9
podman build --tag ploigos-tool-jkube       --build-arg BASE_IMAGE=ploigos-tool-maven      ploigos-tool-jkube -f ./Containerfile.ubi9
podman build --tag ploigos-tool-openscap    --build-arg BASE_IMAGE=ploigos-tool-containers ploigos-tool-openscap -f ./Containerfile.ubi9
podman build --tag ploigos-tool-autogov     --build-arg BASE_IMAGE=ploigos-base            ploigos-tool-autogov -f ./Containerfile.ubi9
podman build --tag ploigos-tool-sonar       --build-arg BASE_IMAGE=ploigos-tool-javascript ploigos-tool-sonar -f ./Containerfile.ubi9

Test

TODO

How to Release?

  1. tag this repository with the release version
    • ex: v1.42.0
    • NOTE: must start with v