gitea/devops
Template
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity

artifacts implemented in cicd
Some checks failed
Build and Deploy Demo App (Artifacts) / test (push) Successful in 11s
Details
Build and Deploy Demo App (Artifacts) / build (push) Failing after 29s
Details
Build and Deploy Demo App (Artifacts) / scan (push) Has been skipped
Details
Build and Deploy Demo App (Artifacts) / deploy (push) Has been skipped
Details

Browse Source
This commit is contained in:
gitea
2025-11-27 11:08:06 +00:00
parent a286600240
commit 9f58cec1e4
1 changed files with 30 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

45
.gitea/workflows/cicd.yaml
View File

@@ -1,4 +1,5 @@
name: Build and Deploy Demo App # .gitea/workflows/cicd.yaml
name: Build and Deploy Demo App (Artifacts)
on: on:
push: push:
@@ -21,7 +22,7 @@ jobs:
- name: Install deps - name: Install deps
run: pip install -r requirements.txt run: pip install -r requirements.txt
- name: Run tests - name: Run tests (SQLite fallback)
env: env:
DB_USER: "" # force SQLite fallback in app.py DB_USER: "" # force SQLite fallback in app.py
DB_PASS: "" DB_PASS: ""
@@ -39,6 +40,17 @@ jobs:
- name: Build Docker image - name: Build Docker image
run: docker build -t demo-app:latest . run: docker build -t demo-app:latest .
- name: Save Docker image to tar
run: docker save demo-app:latest > demo-app.tar
- name: Upload image artifact
uses: actions/upload-artifact@v4
with:
name: demo-image
path: demo-app.tar
if-no-files-found: error
# retention-days: 7 # optional; depends on your Gitea settings
# ---------- SCAN ---------- # ---------- SCAN ----------
scan: scan:
needs: build needs: build
@@ -47,11 +59,16 @@ jobs:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v4 uses: actions/checkout@v4
# Rebuild image in this job so it's available locally - name: Download image artifact
- name: Build Docker image for scan uses: actions/download-artifact@v4
run: docker build -t demo-app:latest . with:
name: demo-image
path: .
# Trivy via Docker (no GitHub/Gitea action) - name: Load Docker image from artifact
run: docker load -i demo-app.tar
# Trivy via Docker (no marketplace action needed)
- name: Scan image with Trivy - name: Scan image with Trivy
run: | run: |
docker run --rm \ docker run --rm \
@@ -67,12 +84,11 @@ jobs:
- name: Checkout code - name: Checkout code
uses: actions/checkout@v4 uses: actions/checkout@v4
# Rebuild image for deployment - name: Download image artifact
- name: Build Docker image for deploy uses: actions/download-artifact@v4
run: docker build -t demo-app:latest . with:
name: demo-image
- name: Save Docker image to tar path: .
run: docker save demo-app:latest > demo-app.tar
- name: Set up SSH - name: Set up SSH
run: | run: |
@@ -115,7 +131,7 @@ jobs:
echo "DB_NAME=${{ secrets.DB_NAME }}" >> .env echo "DB_NAME=${{ secrets.DB_NAME }}" >> .env
# Load the new image from the tarball # Load the new image from the tarball
docker load -i demo-app.tar docker load -I demo-app.tar || docker load -i demo-app.tar # compatibility
# Make sure we actually have a compose file here # Make sure we actually have a compose file here
if [ ! -f docker-compose.yml ]; then if [ ! -f docker-compose.yml ]; then
@@ -129,6 +145,5 @@ jobs:
docker compose -f docker-compose.yml --env-file .env up -d --remove-orphans docker compose -f docker-compose.yml --env-file .env up -d --remove-orphans
# Clean up # Clean up
rm demo-app.tar rm -f demo-app.tar
EOF EOF