GitLab can be used as a CI/CD tool along with many other features that it has. In order to integrate the GitLab with JFrog Artifactory, there is no such out of the box plugin available. However, we can integrate it using our very own CLI tool called JFrog CLI. We can build with multiple package types using JFrog CLI. More details on JFrog CLI are mentioned in this confluence page.
In this KB article, we will discuss a docker build. The docker build has four steps –
In this KB article, we will discuss a docker build. The docker build has four steps –
- Create a GitLab project and upload all the required files to the GitLab repository.
- Pull a base image from Docker Hub.
- Build a docker image using the image that we have pulled. The step # 2 and # 3 will be done as part of a Dockerfile.
- Do a scan of the image before even pushing to the Artifactory. You can find more details about on-demand scanning here in this page. Please note that it will refer to the watch and policy and the policy has a rule to fail the build if the image contains any vulnerability.
- Push the image to the Artifactory and publish the build information.
- Scan that build using the JFrog Xray.