Support for building multiachitecture images using Tekton (#154)

* Updates for signed image setup script (#144)

* suppress newlines in echo

Signed-off-by: Tim Robinson <[email protected]>

* set rsa4096 algo for gpg

Signed-off-by: Tim Robinson <[email protected]>
Signed-off-by: Amine RACHYD <[email protected]>

* faciliate .trivyignore from git and add to nodejs pipeline (#148)

Signed-off-by: Brian Innes <[email protected]>
Signed-off-by: Amine RACHYD <[email protected]>

* Updated pipelines and tasks

Added "grpc" protocol option (choice between https and grpc) in the
general pipeline.
Updated setup task to take docker image with grpc health check tool
(grpc_health_probe on github).
Added grpc check command in the health check task.

Signed-off-by: Amine RACHYD <[email protected]>

* Updated health check task, support for gRPC APIs

Signed-off-by: Amine RACHYD <[email protected]>

* Updated pipelines and tasks

Added "grpc" protocol option (choice between https and grpc) in the
general pipeline.
Updated setup task to take docker image with grpc health check tool
(grpc_health_probe on github).
Added grpc check command in the health check task.

Signed-off-by: Amine RACHYD <[email protected]>

* Removed versions from tasks/pipeline

Signed-off-by: Amine RACHYD <[email protected]>

* Started multiarch pipeline

The multiarch pipeline connects to other clusters in order to build
locally on them and produce images dependent on each architecture.
The "remote" clusters work like agents, where we run a single-task
pipeline.

Added some tasks used by the multiarch pipeline.

Signed-off-by: Amine RACHYD <[email protected]>

* Changes for multiarch pipeline

Pipeline no longer expects x86, Z and Power cluster API servers URLs,
task will fetch them locally from secrets.

Signed-off-by: Amine RACHYD <[email protected]>

* Updated pipeline

Signed-off-by: Amine RACHYD <[email protected]>

* Changes

Added manifest task file.
Removed code-test task from general pipeline, code-test "should" be
language specific.

Signed-off-by: Amine RACHYD <[email protected]>

* Fixed bug on task

Signed-off-by: Amine RACHYD <[email protected]>

* Build namespace on remote cluster picked up auto

Remote pipeline picks up the namespace of the build namespace on the
remote cluster automatically from variable inside the running pod.
The build namespace (XXX-dev project) should be the same on the dev
cluster as on the workload cluster.

Signed-off-by: Amine RACHYD <[email protected]>

* Fixed bug

Signed-off-by: Amine RACHYD <[email protected]>

* Changed manifest task name

Signed-off-by: Amine RACHYD <[email protected]>

* Fixed deploy task env

Signed-off-by: Amine RACHYD <[email protected]>

* Fixed deploy task bug

Signed-off-by: Amine RACHYD <[email protected]>

* Fixed deploy task bug

Signed-off-by: Amine RACHYD <[email protected]>

* Changed tools image health check task

Signed-off-by: Amine RACHYD <[email protected]>

* Changed tools image setup task

Signed-off-by: Amine RACHYD <[email protected]>

* Changed tools image

Uses image under cloudnativetoolkit org

Signed-off-by: Amine RACHYD <[email protected]>

Signed-off-by: Tim Robinson <[email protected]>
Signed-off-by: Amine RACHYD <[email protected]>
Signed-off-by: Brian Innes <[email protected]>
Co-authored-by: Tim Robinson <[email protected]>
Co-authored-by: Brian Innes <[email protected]>

Adds check for yarn.lock and uses yarn install (#162)

Signed-off-by: Sean Sundberg <[email protected]>

Changes to fix the permission denied issue in deploy and helm-release…

… stage (#159)

Signed-off-by: Ramya Raghuveera <[email protected]>

Updates tasks to run without privileged security constraint (#158)

- Removes privileged security constraint from build-tag-push, build-tag-push-ace-bar, image-release, img-scan, and operator-bundle
- Updates docker authentication process in common setup-docker-auth to generate authfile
- Adds support for docker login config in `registry-auth` and `registry-auth-local` secrets
- Updates package-yaml.sh script with additional log messages

closes cloud-native-toolkit/planning#891

Updated pactbroker secret and url keys to match the ones created as p…

…art of cloudnative toolkit installation (#156)

Signed-off-by: Ramya Raghuveera <[email protected]>

faciliate .trivyignore from git and add to nodejs pipeline (#148)

Signed-off-by: Brian Innes <[email protected]>

Updates for signed image setup script (#144)

* suppress newlines in echo

Signed-off-by: Tim Robinson <[email protected]>

* set rsa4096 algo for gpg

Signed-off-by: Tim Robinson <[email protected]>

adjust trivy scan policy for available fixes (#143)

* adjust trivy scan policy for available fixes

Change the image scan with trivy that can block a pipeline to only consider fixes that are available. Resolves issues with UBI images failing on CVE-2019-1010022

Signed-off-by: Tim Robinson <[email protected]>

* set task flag for ignoreUnfixed

Signed-off-by: Tim Robinson <[email protected]>

Updates notify workflow to post to a list of repos (#142)

fix helm write try2 (#138)

* fix read only deploy

Signed-off-by: Carlos Santana <[email protected]>

* remove chmod

Signed-off-by: Carlos Santana <[email protected]>

* fixing helm-release with directory write

Signed-off-by: Carlos Santana <[email protected]>