scout-demo-voting-app/Jenkinsfile at main · ajeetraina/scout-demo-voting-app · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
pipeline {
agent any

environment {
    IMAGE_TAG_VOTE = 'ajeetraina/scout-demo-voting-app-vote'
    IMAGE_TAG_RESULT = 'ajeetraina/scout-demo-voting-app-result'
    IMAGE_TAG_WORKER = 'ajeetraina/scout-demo-voting-app-worker'
    DOCKER_HUB_PAT = credentials('docker-hub-pat')
    DOCKER_HUB_USER = 'ajeetraina'
}

stages {
    stage('Build and Scout Vote Service') {
        steps {
            script {
                checkout scm

                // Install Docker Scout
                sh 'curl -sSfL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh | sh -s -- -b ~/bin'

                // Log into Docker Hub
               sh 'echo $DOCKER_HUB_PAT | docker login -u $DOCKER_HUB_USER --password-stdin'

                // Analyze image for CVEs
                sh "docker-scout cves ${IMAGE_TAG_VOTE} --exit-code --only-severity critical,high"

                // Get recommendations for remediation steps
                sh "docker-scout recommendations ${IMAGE_TAG_VOTE}"

            }
        }
    }

    stage('Build and Scout Result Service') {
        steps {
            script {
                checkout scm

                // Install Docker Scout
                sh 'curl -sSfL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh | sh -s -- -b ~/bin'

                // Log into Docker Hub
               sh 'echo $DOCKER_HUB_PAT | docker login -u $DOCKER_HUB_USER --password-stdin'

                // Analyze image for CVEs
                sh "docker-scout cves ${IMAGE_TAG_RESULT} --exit-code --only-severity critical,high"

                // Get recommendations for remediation steps
                sh "docker-scout recommendations ${IMAGE_TAG_RESULT}"
            }
        }
    }

    stage('Build and Scout Worker Service') {
        steps {
            script {
                checkout scm

                // Install Docker Scout
                sh 'curl -sSfL https://raw.githubusercontent.com/docker/scout-cli/main/install.sh | sh -s -- -b ~/bin'

                // Log into Docker Hub
               sh 'echo $DOCKER_HUB_PAT | docker login -u $DOCKER_HUB_USER --password-stdin'

                // Analyze image for CVEs
                sh "docker-scout cves ${IMAGE_TAG_WORKER} --exit-code --only-severity critical,high"

                // Get recommendations for remediation steps
                sh "docker-scout recommendations ${IMAGE_TAG_WORKER}"
            }
        }
    }
}
}