apiVersion: tekton.dev/v1beta1 kind: PipelineRun metadata: name: clippy spec: pipelineSpec: params: - name: image-name description: The name for the built image type: string - name: path-to-image-context description: The path to the build context type: string - name: path-to-dockerfile description: The path to the Dockerfile type: string - name: GIT_USER_NAME description: The username for git type: string default: "fluxcdbot" - name: GIT_USER_EMAIL description: The email for git type: string default: "fluxcdbot@users.noreply.github.com" tasks: - name: do-stuff taskSpec: metadata: {} stepTemplate: image: alpine:3.18 name: "" resources: requests: cpu: 10m memory: 600Mi workingDir: /workspace/source steps: - image: alpine:3.18 name: do-stuff-step script: | #!/usr/bin/env sh echo "hello world" - name: report-pending taskRef: name: gitea-set-status runAfter: - fetch-repository params: - name: CONTEXT value: "$(params.JOB_NAME)" - name: REPO_FULL_NAME value: "$(params.REPO_OWNER)/$(params.REPO_NAME)" - name: GITEA_HOST_URL value: code.fizz.buzz - name: SHA value: "$(tasks.fetch-repository.results.commit)" - name: DESCRIPTION value: "Build $(params.JOB_NAME) has started" - name: STATE value: pending - name: TARGET_URL value: "https://tekton.fizz.buzz/#/namespaces/$(context.pipelineRun.namespace)/pipelineruns/$(context.pipelineRun.name)" - name: fetch-repository taskRef: name: git-clone workspaces: - name: output workspace: git-source params: - name: url value: $(params.REPO_URL) - name: revision value: $(params.PULL_BASE_SHA) - name: deleteExisting value: "true" - name: build-image taskRef: name: kaniko params: - name: IMAGE value: "$(params.image-name):$(tasks.fetch-repository.results.commit)" - name: CONTEXT value: $(params.path-to-image-context) - name: DOCKERFILE value: $(params.path-to-dockerfile) - name: BUILDER_IMAGE value: "gcr.io/kaniko-project/executor:v1.12.1" - name: EXTRA_ARGS value: - --cache=true - --cache-copy-layers - --cache-repo=harbor.fizz.buzz/kanikocache/cache - --use-new-run # Should result in a speed-up - --reproducible # To remove timestamps so layer caching works. - --snapshot-mode=redo - --skip-unused-stages=true - --registry-mirror=dockerhub.dockerhub.svc.cluster.local workspaces: - name: source workspace: git-source - name: dockerconfig workspace: docker-credentials runAfter: - fetch-repository - name: clippy taskRef: name: run-docker-image workspaces: - name: source workspace: git-source - name: cargo-cache workspace: cargo-cache runAfter: - build-image params: - name: docker-image value: "$(params.image-name):$(tasks.fetch-repository.results.commit)" finally: - name: report-success when: - input: "$(tasks.status)" operator: in values: ["Succeeded", "Completed"] taskRef: name: gitea-set-status params: - name: CONTEXT value: "$(params.JOB_NAME)" - name: REPO_FULL_NAME value: "$(params.REPO_OWNER)/$(params.REPO_NAME)" - name: GITEA_HOST_URL value: code.fizz.buzz - name: SHA value: "$(tasks.fetch-repository.results.commit)" - name: DESCRIPTION value: "Build $(params.JOB_NAME) has succeeded" - name: STATE value: success - name: TARGET_URL value: "https://tekton.fizz.buzz/#/namespaces/$(context.pipelineRun.namespace)/pipelineruns/$(context.pipelineRun.name)" - name: report-failure when: - input: "$(tasks.status)" operator: in values: ["Failed"] taskRef: name: gitea-set-status params: - name: CONTEXT value: "$(params.JOB_NAME)" - name: REPO_FULL_NAME value: "$(params.REPO_OWNER)/$(params.REPO_NAME)" - name: GITEA_HOST_URL value: code.fizz.buzz - name: SHA value: "$(tasks.fetch-repository.results.commit)" - name: DESCRIPTION value: "Build $(params.JOB_NAME) has failed" - name: STATE value: failure - name: TARGET_URL value: "https://tekton.fizz.buzz/#/namespaces/$(context.pipelineRun.namespace)/pipelineruns/$(context.pipelineRun.name)" workspaces: - name: git-source - name: docker-credentials workspaces: - name: git-source volumeClaimTemplate: spec: storageClassName: "nfs-client" accessModes: - ReadWriteOnce resources: requests: storage: 10Gi subPath: rust-source - name: cargo-cache persistentVolumeClaim: claimName: organic-cargo-cache-clippy - name: docker-credentials secret: secretName: harbor-plain serviceAccountName: build-bot timeout: 240h0m0s params: - name: image-name value: "harbor.fizz.buzz/private/organic-clippy" - name: path-to-image-context value: docker/organic_clippy/ - name: path-to-dockerfile value: docker/organic_clippy/Dockerfile