Multi stage building strategy & Docker Image scanning

 multi-stage building strategy 
=====================
1.build the code-------------->stage:1
2.check the code quality
3.store the build artifact into NEXUS
4.create a docker image------->stage:2
5.scan the docker image
6.store the docker image into NEXUS
7.pull the docker image
8.scan docker image 
9.deploy into DEV,QA,STAGING,PROD with step by step approval gates

SCAN THE DOCKER IMAGES  
======================
docker images will be scanned in two stages
1.stage:1--->after build artifact 
             we create an image 
             we scan the image
             if everything is good
             Image will be stored into NEXUS REPO
             WE SCAN THE IMAGE before uploading into NEXUS
2.stage:2--->we pull the image from the NEXUS REPO
             we scan the image
             if everything is good or PASS
             image will be deployed into DEV Environment
             WE SCAN THE IMAGE before deploy into DEV Environment
in my project we used Trivy software tool for image scanning..
in my project generally , we follow multi stage build approach 
what is multi stage build approach pls explain 
==============================================
1st stage:
----------
we build the code in 1st stage
and we get the build file or build artifact
this is stage 1 build process
2nd stage:
----------
after that we take this build file or build artificat 
then we create a lightweight image 
this is stage 2 build process
this is also called as final build process 

 1.Trivy
 2.Aqua Security
 3.Synk
 4.Grype
 5.cloud editions

1.without scan can you upload this image into NEXUS ?
  Ans:No , we must scan 
2.without scan can you deploy this image into DEV ?
  Ans:No , we must scan

Comments

Post a Comment

Popular posts from this blog

Top 10 Git Commands

1.git config  which is used to configure user details  2.git init  which is used to initialize new git repository  3.git add  to send files from working area to staging area 4.git commit  to commit your code changes 5.git status  displays the state of the working directory and the staging area. 6.git log --oneline  display the number of commits  7.git show  display a specific or a particular commit code changes by using 4 characters commit id 8.git push  to push the code from git to GitHub repository  9.git remote  to establish the connection between git to GitHub repository  10.git branch  to displays all branch details 11.git branch branch name to create a new branch  12.git checkout  switch from one branch to another branch 13.git clone  to download the entire repository from GitHub to local repository . that means we create a local copy of a remote repository 14.git pull  to download the l...
Read more

Kubernetes cluster setup NOTES step by step using minikube

 Server Requirement ... 2CPU & 4GB RAM -instance type t3.medium 30 GB disk space  step1: Login AWS Cloud step2: create Linux server  step3: Login Linux Server step4: switch to root user        (sudo -i) step5: create user (useradd paparao(        create password step:6 provide login access        nano /etc/ssh/sshd_config         step7: restart sshd service        service sshd restart             step8: provide sudo access         visudo and press enter         write below statement                paparao ALL=(ALL) NOPASSWD: ALL    Step9: Install docker software        yum install docker -y     step10: check the docker         docker --version step11: add user into docker group     ...
Read more

SonarQube Installation & Configuration Step by step

SonarQube Installation & Configuration Steps ================================== Pre-requisites ========= 1.CPU 2core or more -->min 2core CPU is mandatory  2.RAM 4GB or more ---->4GB is mandatory    (select t3.medium---->You Get 2CPU & 2GB RAM) 3.Harddisk --30GB ---->30GB is mandatory  4.Java Software  ----->java11 or 17 is mandatory                                       go with java 17  5.Operating System---->Amazon Linux I. Create Security Group ================== Step1: Login AWS  Step2: Go EC2 Dashboard step3: Select Security Group Step4: Add port number 22             Add port number 9000             Security GroupName:sonarqube II. Launch Instance & Login Instance ==================================== Step1: Go Ec2 Dashboard  Step2: Create Server...
Read more