The sample focusses on the docker build, helm and ACR integration.
2 pipelines exist, but share the same principles.
- build docker
- push to acr
- push helm chart
- lock docker image for immutability
the ci_acrtask pipeline replaces the docker build for an acr build, enabling automatic base image update triggers.
- add superlinter
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker build
- [] inspect digest
- include job services (local registry)
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker build and push
- inspect image and digest
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker login
- github registry
- docker build and push
- inspect image and digest
- include registry matrix (ghcr, acr)
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker login (multiple registries)
- docker build and push
- inspect image and digest
- include registry matrix (ghcr, acr)
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker login (multiple registries)
- docker bake
- multi-arch (arm64, amd64, armv6, armv7)
- inspect image and digest
- include registry matrix (ghcr, acr)
- generate docker meta data
- setup QEMU
- setup dokcer buildx
- docker login (multiple registries)
- docker bake
- [] multi-arch (arm64, amd64, armv6, armv7)
- inspect image and digest
- scan image (aqua / anchor)
- security center integration?