diff --git a/.vib/minio-operator-sidecar/goss/goss.yaml b/.vib/minio-operator-sidecar/goss/goss.yaml new file mode 100644 index 000000000000..05571c4fb087 --- /dev/null +++ b/.vib/minio-operator-sidecar/goss/goss.yaml @@ -0,0 +1,9 @@ +# Copyright Broadcom, Inc. All Rights Reserved. +# SPDX-License-Identifier: APACHE-2.0 + +gossfile: + # Goss tests exclusive to the current container + ../../minio-operator-sidecar/goss/minio-operator-sidecar.yaml: {} + # Load scripts from .vib/common/goss/templates + ../../common/goss/templates/check-ca-certs.yaml: {} + ../../common/goss/templates/check-files.yaml: {} diff --git a/.vib/minio-operator-sidecar/goss/minio-operator-sidecar.yaml b/.vib/minio-operator-sidecar/goss/minio-operator-sidecar.yaml new file mode 100644 index 000000000000..09c741382fbc --- /dev/null +++ b/.vib/minio-operator-sidecar/goss/minio-operator-sidecar.yaml @@ -0,0 +1,17 @@ +command: + check-minio-operator-sidecar-version: + exec: + - /minio-operator-sidecar + - --version + exit-status: 0 + # Replace "-" with "+" in the version string + stdout: + - {{ .Env.APP_VERSION | replace "-" "+" }} + check-minio-operator-sidecar-help: + exec: + - /minio-operator-sidecar + - --help + exit-status: 0 + # Replace "-" with "+" in the version string + stdout: + - automates the orchestration diff --git a/.vib/minio-operator-sidecar/goss/vars.yaml b/.vib/minio-operator-sidecar/goss/vars.yaml new file mode 100644 index 000000000000..fbeccd598492 --- /dev/null +++ b/.vib/minio-operator-sidecar/goss/vars.yaml @@ -0,0 +1,7 @@ +files: + - mode: "0644" + paths: + - /opt/bitnami/minio-operator-sidecar/.spdx-minio-operator-sidecar.spdx + - mode: "0755" + paths: + - /minio-operator-sidecar diff --git a/.vib/minio-operator-sidecar/vib-verify.json b/.vib/minio-operator-sidecar/vib-verify.json new file mode 100644 index 000000000000..4087d68a163e --- /dev/null +++ b/.vib/minio-operator-sidecar/vib-verify.json @@ -0,0 +1,73 @@ +{ + "context": { + "resources": { + "url": "{SHA_ARCHIVE}", + "path": "{VIB_ENV_PATH}" + }, + "runtime_parameters": "Y29tbWFuZDogWyIvc2hhcmVkL2J1c3lib3giLCAic2xlZXAiLCAiMzYwMCJdCg==" + }, + "phases": { + "package": { + "actions": [ + { + "action_id": "container-image-package", + "params": { + "application": { + "details": { + "name": "{VIB_ENV_CONTAINER}", + "tag": "{VIB_ENV_TAG}" + } + }, + "architectures": [ + "linux/amd64", + "linux/arm64" + ] + } + }, + { + "action_id": "container-image-lint", + "params": { + "threshold": "error" + } + } + ] + }, + "verify": { + "actions": [ + { + "action_id": "goss", + "params": { + "resources": { + "path": "/.vib" + }, + "tests_file": "minio-operator-sidecar/goss/goss.yaml", + "vars_file": "minio-operator-sidecar/goss/vars.yaml", + "remote": { + "pod": { + "workload": "deploy-minio-operator-sidecar" + } + } + } + }, + { + "action_id": "trivy", + "params": { + "threshold": "LOW", + "vuln_type": [ + "OS" + ] + } + }, + { + "action_id": "grype", + "params": { + "threshold": "CRITICAL", + "package_type": [ + "OS" + ] + } + } + ] + } + } +} diff --git a/.vib/minio-operator/goss/goss.yaml b/.vib/minio-operator/goss/goss.yaml new file mode 100644 index 000000000000..baa45afe93a3 --- /dev/null +++ b/.vib/minio-operator/goss/goss.yaml @@ -0,0 +1,9 @@ +# Copyright Broadcom, Inc. All Rights Reserved. +# SPDX-License-Identifier: APACHE-2.0 + +gossfile: + # Goss tests exclusive to the current container + ../../minio-operator/goss/minio-operator.yaml: {} + # Load scripts from .vib/common/goss/templates + ../../common/goss/templates/check-ca-certs.yaml: {} + ../../common/goss/templates/check-files.yaml: {} diff --git a/.vib/minio-operator/goss/minio-operator.yaml b/.vib/minio-operator/goss/minio-operator.yaml new file mode 100644 index 000000000000..fe6d456e5c94 --- /dev/null +++ b/.vib/minio-operator/goss/minio-operator.yaml @@ -0,0 +1,17 @@ +command: + check-minio-operator-version: + exec: + - /minio-operator + - --version + exit-status: 0 + # Replace "-" with "+" in the version string + stdout: + - {{ .Env.APP_VERSION | replace "-" "+" }} + check-minio-operator-help: + exec: + - /minio-operator + - --help + exit-status: 0 + # Replace "-" with "+" in the version string + stdout: + - automates the orchestration diff --git a/.vib/minio-operator/goss/vars.yaml b/.vib/minio-operator/goss/vars.yaml new file mode 100644 index 000000000000..77cb508a9d19 --- /dev/null +++ b/.vib/minio-operator/goss/vars.yaml @@ -0,0 +1,7 @@ +files: + - mode: "0644" + paths: + - /opt/bitnami/minio-operator-sidecar/.spdx-minio-operator.spdx + - mode: "0755" + paths: + - /minio-operator diff --git a/.vib/minio-operator/vib-verify.json b/.vib/minio-operator/vib-verify.json new file mode 100644 index 000000000000..60c25b8c9aec --- /dev/null +++ b/.vib/minio-operator/vib-verify.json @@ -0,0 +1,73 @@ +{ + "context": { + "resources": { + "url": "{SHA_ARCHIVE}", + "path": "{VIB_ENV_PATH}" + }, + "runtime_parameters": "Y29tbWFuZDogWyIvc2hhcmVkL2J1c3lib3giLCAic2xlZXAiLCAiMzYwMCJdCg==" + }, + "phases": { + "package": { + "actions": [ + { + "action_id": "container-image-package", + "params": { + "application": { + "details": { + "name": "{VIB_ENV_CONTAINER}", + "tag": "{VIB_ENV_TAG}" + } + }, + "architectures": [ + "linux/amd64", + "linux/arm64" + ] + } + }, + { + "action_id": "container-image-lint", + "params": { + "threshold": "error" + } + } + ] + }, + "verify": { + "actions": [ + { + "action_id": "goss", + "params": { + "resources": { + "path": "/.vib" + }, + "tests_file": "minio-operator/goss/goss.yaml", + "vars_file": "minio-operator/goss/vars.yaml", + "remote": { + "pod": { + "workload": "deploy-minio-operator" + } + } + } + }, + { + "action_id": "trivy", + "params": { + "threshold": "LOW", + "vuln_type": [ + "OS" + ] + } + }, + { + "action_id": "grype", + "params": { + "threshold": "CRITICAL", + "package_type": [ + "OS" + ] + } + } + ] + } + } +}