KASM-8210 fix trivy auth: materialize ~/.docker/config.json from DOCKER_AUTH_CONFIG in scan jobs

This commit is contained in:
Ian Tangney 2026-05-15 14:27:04 +00:00
parent 9ec091beb9
commit 8ab7e29cfe

View file

@ -193,6 +193,7 @@ scan_{{ IMAGE.name1 }}_{{ IMAGE.name2 }}:
{% endfor %}{% endif %}
script:
- apk add bash curl
- mkdir -p ~/.docker && echo "$DOCKER_AUTH_CONFIG" > ~/.docker/config.json
- (cd ci-scripts && bash download-trivy)
- bash ci-scripts/scan image ${ORG_NAME}/image-cache-private:$(arch)-core-{{ IMAGE.name1 }}-{{ IMAGE.name2 }}-${SANITIZED_BRANCH}-${CI_PIPELINE_ID}
needs:
@ -232,6 +233,7 @@ scan_{{ IMAGE.name1 }}_{{ IMAGE.name2 }}:
{% endfor %}{% endif %}
script:
- apk add bash curl
- mkdir -p ~/.docker && echo "$DOCKER_AUTH_CONFIG" > ~/.docker/config.json
- (cd ci-scripts && bash download-trivy)
- bash ci-scripts/scan image ${ORG_NAME}/image-cache-private:x86_64-core-{{ IMAGE.name1 }}-{{ IMAGE.name2 }}-${SANITIZED_BRANCH}-${CI_PIPELINE_ID}
needs: