Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⭐ Use cnspec container image #40

Merged
merged 44 commits into from
Nov 16, 2022
Merged

⭐ Use cnspec container image #40

merged 44 commits into from
Nov 16, 2022

Conversation

czunker
Copy link
Contributor

@czunker czunker commented Oct 27, 2022

Signed-off-by: Christian Zunker christian@mondoo.com

@czunker
WIP: ⭐ Use container image
6e32568 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@github-actions

This comment has been minimized.

Sign in to view
@czunker
Copy link
Contributor Author

czunker commented Oct 27, 2022

Depends on mondoohq/cnspec#153

When the image is present and the action for docker images works, I'll extend it to the other actions.

@czunker
Fix typos
6316d5e 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix prettier
5c5c8c6 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Copy link
Contributor Author

czunker commented Oct 27, 2022

@benr Could you please have a look at the failing CLA check? From what I understood it seems there is a secret missing for this repo.

@czunker
Switch to docker hub
71da374 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Re-work image scan
ec99af2 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Next try
988528f 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Copy link
Contributor Author

czunker commented Nov 2, 2022

The additional args currently do not work:
https://github.com/mondoohq/actions/actions/runs/3375902868/jobs/5603014936

@czunker
Try scanning ubuntu image
204e8fa 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Add debug output
45df414 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Copy link
Contributor Author

czunker commented Nov 2, 2022

Strangely the image scan action fails, but I cannot reproduce it locally.

@czunker
Try with mondoo client
bcd7b9b 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix mondoo image name
3f2c6c5 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker mentioned this pull request Nov 2, 2022
Closed
@czunker
Copy link
Contributor Author

czunker commented Nov 2, 2022

Opened an issue for the problem: mondoohq/cnspec#157

I managed to reproduce it locally by setting all the GITHUB_ env vars and running cnspec.

@czunker
Switch back to mondoo-test image
8629999 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Add back additional args
0595503 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Remove args
1f89cd8 
Fixes mondoohq/cnspec#171

Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker force-pushed the christian/switch_to_container_image branch from 200153f to 1f89cd8 Compare November 9, 2022 04:59
@czunker
Remove debug output
4c7ade7 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Switch all actions to cnspec image
7c66e5f 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix prettier
8610dbb 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker marked this pull request as ready for review November 9, 2022 09:54
@czunker czunker changed the title WIP: ⭐ Use container image ⭐ Use cnspec container image Nov 9, 2022
@czunker czunker requested a review from scottford-io November 9, 2022 09:54
@czunker
Copy link
Contributor Author

czunker commented Nov 9, 2022

This is a demo run of the new action in the operator repo: https://github.com/mondoohq/mondoo-operator/actions/runs/3427117500/jobs/5709741631

Just for comparison a previous run, with all the apt update steps in it: https://github.com/mondoohq/mondoo-operator/actions/runs/3414905633/jobs/5683488242

imilchev
imilchev reviewed Nov 9, 2022
View reviewed changes
@czunker czunker force-pushed the christian/switch_to_container_image branch from 843abde to 71434dc Compare November 11, 2022 06:38
@czunker
Try entrypoint
c673edd 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Try with operator repo
627368f 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker force-pushed the christian/switch_to_container_image branch 3 times, most recently from d4eea2e to eef2de5 Compare November 11, 2022 08:52
@czunker
Try composite with if and uses
658f2e8 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker force-pushed the christian/switch_to_container_image branch from eef2de5 to 658f2e8 Compare November 11, 2022 08:52
@czunker
Try composite w/o if
6b23423 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Try with operator repo
0f61817 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Use composite
32c7f58 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Copy link
Contributor Author

czunker commented Nov 11, 2022
edited
Loading

I had to revert the changes for the policy action, because cnspec does not know about policy.

@czunker czunker requested a review from tas50 November 11, 2022 09:22
@czunker
Switch to cnspec bundle
3057051 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix prettier
8a8fe12 
Signed-off-by: Christian Zunker <christian@mondoo.com>
scottford-io
scottford-io reviewed Nov 15, 2022
View reviewed changes
scottford-io
scottford-io reviewed Nov 15, 2022
View reviewed changes
@czunker
Remove args from specific actions
4c3098b 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix tests
f234694 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Bugfix
35f96fe 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker
Fix docs bug
f7d9a4d 
Signed-off-by: Christian Zunker <christian@mondoo.com>
scottford-io
scottford-io requested changes Nov 16, 2022
View reviewed changes
Copy link
Contributor

@scottford-io scottford-io left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@czunker Great work! I just noticed one more issue with the github-org and github-repo action and requested that we move from the --token arg to using the env config with GITHUB_TOKEN

Other than that, I am good to go!

@czunker
Switch to GITHUB_TOKEN
125230d 
Signed-off-by: Christian Zunker <christian@mondoo.com>
@czunker czunker merged commit 3b6da9c into main Nov 16, 2022
@czunker czunker deleted the christian/switch_to_container_image branch November 16, 2022 16:56
@github-actions github-actions bot locked and limited conversation to collaborators Nov 16, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@chris-rock chris-rock chris-rock left review comments

@scottford-io scottford-io scottford-io requested changes

@imilchev imilchev imilchev approved these changes

@tas50 tas50 Awaiting requested review from tas50

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@czunker @tas50 @chris-rock @imilchev @scottford-io