DevSecOps with Shipwright and Tekton
-
Ensure you have access to an OpenShift cluster, such as CodeReady Containers.
-
Install the Shipwright Operator from OperatorHub. This will also install OpenShift Pipelines.
-
Create the
devsecops-demo
project in your cluster$ oc new-project cdcon-demo-ci
-
Install the
shp
command line. -
Clone this repository, which contains a sample go application.
$ mkdir -p ~/go/src/github.com/adambkaplan $ cd ~/go/src/github.com/adambkaplan $ git clone https://github.com/adambkaplan/devsecops-shipwright-tekton.git $ cd devsecops-shipwright-tekton
Run the script at hack/demo-inner-loop.sh
to see how Shipwright can build from local source,
producing an SBOM for your container image.
If you are not using CodeReadyContainers, use the environment variable OPENSHIFT_REGISTRY_HOST
to
provide the public route to the OpenShift container registry.