-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path.travis.yml
48 lines (36 loc) · 1.5 KB
/
.travis.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
sudo: required
language: python
python: 3.6
services:
- docker
install:
# Instalar requerimientos de la aplicacion
- pip install -r djangoapp/requirements.txt
script:
# Correr test de la aplicacion (unit, integration, etc.)
- cd djangoapp && python manage.py test && cd ..
# Chequeo de dependencias
#- docker pull owasp/dependency-check
#- mkdir dependency-check-data
#- docker run -i --volume dependency-check-data:/usr/share/dependency-check/data --volume "$(pwd)/djangoapp":/src owasp/dependency-check --scan /src --project "Test"
# Build del contenedor
- cd djangoapp && docker build -t django_app_image . && cd ..
# Lanzo el contenedor
- docker run --name django_app -p 8000:8000 -d -t django_app_image
# Analisis dinamico de codigo
- docker pull owasp/zap2docker-stable
- docker run -i owasp/zap2docker-stable zap-baseline.py -t http://172.17.0.2:8000/
after_script:
# Analisis dinamigo de codigo
- docker run -i owasp/zap2docker-stable zap-cli quick-scan --self-contained --start-options '-config api.disablekey=true' http://172.17.0.2:8000/
# Instalar clair-scanner
- go get -u github.com/golang/dep/cmd/dep
- git clone https://github.com/arminc/clair-scanner.git src/clair-scanner/
- cd src/clair-scanner/ && make ensure && make build
# Chequeo de seguridad de contenedor
- make db && make clair
- ./clair-scanner --ip=172.17.0.1 django_app_image
# Paro el servicio y elimino la imagen
- docker stop django_app
- docker rmi django_app_image
# Deployment ..