---
kind: pipeline
type: kubernetes
name: build

platform:
  os: linux
  arch: amd64

steps:
- name: build_docker_image
  image: plugins/docker:20.14
  settings:
    username:
      from_secret: registry_username
    password:
      from_secret: registry_token
    registry: git.lab.adho.app
    repo: git.lab.adho.app/fabien.debaisieux/exempleci
    dockerfile: Dockerfile
    mtu: 1440

- name: Aqua Security Trivy
  description: Scans container images for vulnerabilities with Trivy
  image: aquasec/trivy-pipe:latest
  category: Security

  variables:
  - name: scanType
    description: 'Scan type to use for scanning vulnerability'
    required: false
    default: 'image'
  - name: imageRef
    description: 'image reference(for backward compatibility)'
    required: true 

trigger:
  event:
  - push
  - pull_request