Skip to content

Commit 83c3316

Browse files
dustinvanbuskirkdustinvanbuskirk
committed
adding content to plugin.yaml
1 parent 9bd5ed7 commit 83c3316

File tree

1 file changed

+65
-0
lines changed

1 file changed

+65
-0
lines changed

stable/twistlock-scan/plugin.yaml

Lines changed: 65 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,65 @@
1+
image: docker.io/sctechdev/docker-security-scanner
2+
tag: master-c81e6d4
3+
version: 2.2
4+
description: Execute Twistlock image scan as build step
5+
keywords:
6+
- Twistlock 2.2
7+
home: https://hub.docker.com/r/sctechdev/docker-security-scanner/
8+
sources:
9+
- https://github.com/SC-TechDev/docker-security-scanner
10+
maintainers:
11+
- name: Dustin Van Buskirk
12+
email: dev@vanbuskirk.me
13+
- name: Varun Tagore
14+
email: rondevops@gmail.com
15+
icon: A URL to an SVG or PNG image to be used as an icon (optional)
16+
envs:
17+
- name: CF_METADATA
18+
type: required
19+
description: Boolean; combination with TL_UPLOAD stores Twistlock Report URL in TL_REPORT_URL var for Codefresh metadata annotation
20+
- name: TL_CONSOLE_HOSTNAME
21+
type: required
22+
description: Hostname or IP of Twistlock Console
23+
- name: TL_CONSOLE_PORT
24+
type: required
25+
description: Port of Twistlock Console
26+
- name: TL_CONSOLE_USERNAME
27+
type: required
28+
description: Username of Twistlock Console
29+
- name: TL_CONSOLE_PASSWORD
30+
type: required
31+
description: Password of Twistlock Console User
32+
- name: TL_ONLY
33+
type: required
34+
description: Twistlock Console Scan Only (No Nexus)
35+
- name: TL_TLS_ENABLED
36+
type: optional
37+
description: Boolean; Enable TLS connection to Twistlock Console
38+
- name: TL_HASH
39+
type: optional
40+
description: Hashing Algorithm to use
41+
- name: TL_UPLOAD
42+
type: optional
43+
description: Upload report to Twistlock Console and return URL (Overrides all other options only returns URL)
44+
- name: TL_DETAILS
45+
type: optional
46+
description: Prints an itemized list of each vulnerability found by the scanner
47+
- name: TL_ONLY_FIXED
48+
type: optional
49+
description: reports just the vulnerabilites that have fixes available
50+
- name: TL_COMPLIANCE_THRESHOLD
51+
type: optional
52+
description: [ low, medium, high ] sets the the minimal severity compliance issue that returns a fail exit code
53+
- name: TL_VULNERABILITY_THRESHOLD
54+
type: optional
55+
description: [ low, medium, high, critical ] sets the minimal severity vulnerability that returns a fail exit code
56+
volumes:
57+
- name: /var/run/docker.sock:/var/run/docker.sock
58+
required: true
59+
description: Docker socket for DIND
60+
- name: /var/lib/docker:/var/lib/docker
61+
required: true
62+
description: Docker lib access for DIND
63+
- name: '${{CF_VOLUME_NAME}}:/codefresh/volume'
64+
required: false
65+
description: Volume required if setting Docker image metadata using Codefresh

0 commit comments

Comments
 (0)