From be230d97c93c4b9f9194e2be7ab9fa03eda6a6f3 Mon Sep 17 00:00:00 2001 From: Timo Furrer <tfurrer@gitlab.com> Date: Fri, 26 Jan 2024 08:55:18 +0100 Subject: [PATCH] Remove container scanning rules for now --- .gitlab-ci.yml | 29 +++++++++++++++-------------- 1 file changed, 15 insertions(+), 14 deletions(-) diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml index 76f0072..b55c412 100644 --- a/.gitlab-ci.yml +++ b/.gitlab-ci.yml @@ -22,13 +22,14 @@ include: analyzer_image: "$CI_TEMPLATE_REGISTRY_HOST/security-products/container-scanning:6" # FIXME: why do I have to set this, this is weird ... force_run: true - rules: - - changes: - - Dockerfile - - .gitlab-ci.yml - - src/gitlab-tofu.sh - - if: $CI_COMMIT_TAG - - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH + # FIXME: doesn't work + # rules: + # - changes: + # - Dockerfile + # - .gitlab-ci.yml + # - src/gitlab-tofu.sh + # - if: $CI_COMMIT_TAG + # - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH stages: - build @@ -117,13 +118,13 @@ container_scanning: # Used for remediation GIT_STRATEGY: fetch # FIXME: because we are using rules with the include, but override here, we also have to have the same rules here - rules: - - changes: - - Dockerfile - - .gitlab-ci.yml - - src/gitlab-tofu.sh - - if: $CI_COMMIT_TAG - - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH + # rules: + # - changes: + # - Dockerfile + # - .gitlab-ci.yml + # - src/gitlab-tofu.sh + # - if: $CI_COMMIT_TAG + # - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH gitlab-opentofu-image:deploy:with-opentofu-version: extends: .opentofu-versions -- GitLab