Skip to content

Commit

Permalink
Merge pull request #231 from cloud-gov/update-images
Browse files Browse the repository at this point in the history 
update to use hardened containers
  • Loading branch information
@dandersonsw
dandersonsw authored Jul 1, 2024
2 parents 3870d20 + 84296c6 commit 8664ef3
Show file tree
Hide file tree
Showing 6 changed files with 91 additions and 16 deletions.
43 changes: 37 additions & 6 deletions ci/pipeline.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -336,6 +336,15 @@ resources:


resource_types:
- name: registry-image
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: registry-image-resource
aws_region: us-gov-west-1
tag: latest

- name: slack-notification
type: registry-image
source:
Expand All @@ -348,16 +357,38 @@ resource_types:
- name: bosh-deployment
type: registry-image
source:
repository: cloudfoundry/bosh-deployment-resource
registry_mirror:
host: docker-registry-mirror.app.cloud.gov:443
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: bosh-deployment-resource
aws_region: us-gov-west-1
tag: latest

- name: s3-iam
type: registry-image
source:
repository: 18fgsa/s3-resource
registry_mirror:
host: docker-registry-mirror.app.cloud.gov:443
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: s3-resource
aws_region: us-gov-west-1
tag: latest

- name: git
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: git-resource
aws_region: us-gov-west-1
tag: latest

- name: bosh-io-stemcell
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: bosh-io-stemcell-resource
aws_region: us-gov-west-1
tag: latest

- name: terraform
type: docker-image
Expand Down
4 changes: 2 additions & 2 deletions ci/smoke-test.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,9 @@ image_resource:
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: harden-concourse-task
repository: general-task
aws_region: us-gov-west-1
tag: ((harden-concourse-task-tag))
tag: latest

inputs:
- name: concourse-config
Expand Down
4 changes: 2 additions & 2 deletions jumpbox-pages.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,9 @@ image_resource:
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: harden-concourse-task
repository: general-task
aws_region: us-gov-west-1
tag: ((harden-concourse-task-tag))
tag: latest

inputs:
- name: concourse-config
Expand Down
4 changes: 2 additions & 2 deletions jumpbox.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,9 @@ image_resource:
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: harden-concourse-task
repository: general-task
aws_region: us-gov-west-1
tag: ((harden-concourse-task-tag))
tag: latest

inputs:
- name: concourse-config
Expand Down
26 changes: 24 additions & 2 deletions shell-pipeline-pages.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -54,7 +54,29 @@ resources:
branch: main

resource_types:
- name: registry-image
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: registry-image-resource
aws_region: us-gov-west-1
tag: latest

- name: s3-iam
type: docker-image
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: s3-resource
aws_region: us-gov-west-1
tag: latest

- name: git
type: registry-image
source:
repository: 18fgsa/s3-resource
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: git-resource
aws_region: us-gov-west-1
tag: latest
26 changes: 24 additions & 2 deletions shell-pipeline.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -165,7 +165,29 @@ resources:
commit_verification_keys: ((cloud-gov-pgp-keys))

resource_types:
- name: registry-image
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: registry-image-resource
aws_region: us-gov-west-1
tag: latest

- name: s3-iam
type: docker-image
type: registry-image
source:
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: s3-resource
aws_region: us-gov-west-1
tag: latest

- name: git
type: registry-image
source:
repository: 18fgsa/s3-resource
aws_access_key_id: ((ecr_aws_key))
aws_secret_access_key: ((ecr_aws_secret))
repository: git-resource
aws_region: us-gov-west-1
tag: latest

0 comments on commit 8664ef3

Please sign in to comment.