[bitnami/trivy] Add VIB tests (#30023)

* [bitnami/trivy] Add VIB tests

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

* Remove trivy --help test

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

* Remove wire --help test

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

* Add trigger

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

* Remove trigger

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

---------

Signed-off-by: Miguel Ruiz <miruiz@vmware.com>

.vib/trivy/goss/goss.yaml

@@ -0,0 +1,11 @@
+gossfile:
+  # Goss tests exclusive to the current container
+  ../../trivy/goss/trivy.yaml: {}
+  # Load scripts from .vib/common/goss/templates
+  ../../common/goss/templates/check-app-version.yaml: {}
+  ../../common/goss/templates/check-binaries.yaml: {}
+  ../../common/goss/templates/check-broken-symlinks.yaml: {}
+  ../../common/goss/templates/check-ca-certs.yaml: {}
+  ../../common/goss/templates/check-linked-libraries.yaml: {}
+  ../../common/goss/templates/check-sed-in-place.yaml: {}
+  ../../common/goss/templates/check-spdx.yaml: {}

.vib/trivy/goss/trivy.yaml

@@ -0,0 +1,7 @@
+command:
+  trivy-scanner:
+    exec: trivy image docker.io/bitnami/minideb:buster-snapshot-20201101T210343Z
+    timeout: 60000
+    exit-status: 0
+    stdout:
+      - CVE-2020-1751

.vib/trivy/goss/vars.yaml

@@ -0,0 +1,7 @@
+binaries:
+  - trivy
+  - wire
+root_dir: /opt/bitnami
+version:
+  bin_name: trivy
+  flag: -v

.vib/trivy/vib-publish.json

@@ -3,7 +3,8 @@
     "resources": {
       "url": "{VIB_ENV_CONTAINER_URL}",
       "path": "{VIB_ENV_PATH}"
-    }
+    },
+    "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd"
   },
   "phases": {
     "package": {
@@ -33,6 +34,21 @@
     },
     "verify": {
       "actions": [
+        {
+          "action_id": "goss",
+          "params": {
+            "resources": {
+              "path": "/.vib"
+            },
+            "tests_file": "trivy/goss/goss.yaml",
+            "vars_file": "trivy/goss/vars.yaml",
+            "remote": {
+              "pod": {
+                "workload": "deploy-trivy"
+              }
+            }
+          }
+        },
         {
           "action_id": "trivy",
           "params": {

.vib/trivy/vib-verify.json

@@ -3,7 +3,8 @@
     "resources": {
       "url": "{SHA_ARCHIVE}",
       "path": "{VIB_ENV_PATH}"
-    }
+    },
+    "runtime_parameters": "Y29tbWFuZDogWyJ0YWlsIiwgIi1mIiwgIi9kZXYvbnVsbCJd"
   },
   "phases": {
     "package": {
@@ -29,6 +30,21 @@
     },
     "verify": {
       "actions": [
+        {
+          "action_id": "goss",
+          "params": {
+            "resources": {
+              "path": "/.vib"
+            },
+            "tests_file": "trivy/goss/goss.yaml",
+            "vars_file": "trivy/goss/vars.yaml",
+            "remote": {
+              "pod": {
+                "workload": "deploy-trivy"
+              }
+            }
+          }
+        },
         {
           "action_id": "trivy",
           "params": {