-
Notifications
You must be signed in to change notification settings - Fork 38
/
docker-compose.yaml
39 lines (37 loc) · 1.15 KB
/
docker-compose.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
x-common:
image: &maven-jdk-image maven:3.9-eclipse-temurin-17
services:
local:
build:
context: .
dockerfile: Dockerfile
environment:
VERSION: ${CIRCLE_TAG:-0.0.1}
TEST_RESULTS_PATH: /tmp/test-results/
DIST_PATH: /tmp/dist/
MAVEN_OPTS: -Xmx6400m
GRAALVM_HOME: /build/.graalvm
PYENV_ROOT: /root/.pyenv
volumes:
- ./:/src/
- ./test-results:/tmp/test-results/
- ~/.m2:/root/.m2
semgrep:
image: *maven-jdk-image
command: bash -c "mvn dependency:tree -DoutputFile=maven_dep_tree.txt &&
apt-get update &&
apt-get -y install python3 &&
apt-get -y install python3-pip &&
python3 -m pip install semgrep --break-system-packages &&
git config --global --add safe.directory $$(pwd) &&
semgrep ci --no-suppress-errors"
working_dir: /app
environment:
SEMGREP_REPO_NAME: $CIRCLE_PROJECT_USERNAME/$CIRCLE_PROJECT_REPONAME
SEMGREP_REPO_URL: ${SEMGREP_REPO_URL}
SEMGREP_BRANCH: ${SEMGREP_BRANCH}
SEMGREP_PR_ID: $CIRCLE_PR_NUMBER
SEMGREP_APP_TOKEN: ${SEMGREP_APP_TOKEN}
volumes:
- .:/app/
- ~/.m2/:/root/.m2/