Codefresh Steps: Reusable Code for Common Operations

This page provides code you can use to perform common operations in the Codefresh CI/CD platform.

Run an Anchore Security Scan anchore

Analyze Docker images and generate a detailed manifest using Anchore.

arguments

ANCHORE_CLI_IMAGE - Name of the image to scan with Anchore

ANCHORE_CLI_PASS - Anchore account password

ANCHORE_CLI_URL - The address of the Anchore server

ANCHORE_CLI_USER - Anchore account name

ANCHORE_FAIL_ON_POLICY - Fail build if policy evaluation fails

    ScanMyImage:
  title: Scanning Docker Image with the anchore Codefresh plugin
  type: anchore
  arguments:
    ANCHORE_CLI_URL: 'http://anchore-engine:8228/v1/'
    ANCHORE_CLI_USER: admin
    ANCHORE_CLI_PASS: foobar
    ANCHORE_CLI_IMAGE: alpine
    ANCHORE_CLI_FAIL_ON_POLICY: 'true'

github.com

Jeremy Valance

Jul 4, 2021

source