azure-devopsazure-pipelinestrivy
how to download trivy output within a pipeline
I have got a step within an Azure DevOps pipeline which scans a container using trivy.
The Azure powershell task as as follows.
trivy -v
$folder = Get-Location
$filename = "report-$(Build.BuildId)-$(Build.DefinitionName).json"
trivy image -f json -o $filename python:3.4-alpine
$fullfile = Join-Path $folder $filename
write-host $fullfile
echo "Structure of work folder of this pipeline:"
tree $(Agent.WorkFolder) /f
echo "Build.ArtifactStagingDirectory:"
echo "$(Build.ArtifactStagingDirectory)"
echo "Build.BinariesDirectory:"
echo "$(Build.BinariesDirectory)"
echo "Build.SourcesDirectory:"
echo "$(Build.SourcesDirectory)"
The file generated is as follows.
/home/vsts/work/1/s/report-6949-my-test-pipeline.json
I would like to be able to download the file from the pipeline as an artifact or perhaps upload it onto a storage account.
Solution
Just add a publish artifacts step that publish the .json file:
- task: PublishPipelineArtifact@1
inputs:
targetPath: '$(Build.SourcesDirectory)/report-$(Build.BuildId)-$(Build.DefinitionName).json'
artifact: 'trivy-output'
publishLocation: 'pipeline'
Result:
- Whats the difference between a build pipeline and a release pipeline in Azure DevOps?
- The term 'script:' is not recognized as the name of a cmdlet, function, script file, or operable program
- Unable to complete a partial restore of our Azure DevOps database
- Azure Devops Jekyll site build fails, worked previously
- Why I am receiving the error: Error: Template file pattern matches a directory instead of a file: /home/vsts/work/1/s in my yaml file pipeline file?
- Conditional dependent job in Azure Devops YAML pipelines
- Azure DevOps REST API: Match Manual Test Case steps to Test Run results?
- How to configure Azure pipeline approval check to deploy to Azure function apps?
- Is there a way to get more than 1000 Packages and versions from Azure DEVOPs Feed RESTAPI for GET Packages?
- Pipeline Shows as Failed When Successful
- Yaml manual approval step in jobs.template
- Environment variables as parameter of type object in Azure DevOps pipelines
- Skip Azure Pipeline jobs (or the whole pipeline) if change is from a merge from a specific branch
- Visual Studio 2022 can't connect to a project due to bad filters
- Azure Data Factory CI npm validate step suddenly crashing
- Error using Azure DevOps REST API and classificationnodes
- Remove TFS Connection From Visual Studio 2019
- Restricting branch creation based on Azure DevOps group permissions
- ADO - Granular Permission for Users on Team
- Dev env is skipping
- Must delete massive inadvertent checkin from remote git repo
- Job Conditions in Azure Pipelines
- Access Denied using Azure App Configuration Task in DevOps Pipeline
- Passing output variable to a template in the same job in Azure devops
- Secrets inject securely Dockerfile during build .NET
- Azure Pipeline: how to delete a variable inside Azure build pipeline
- How do I specify playwright chromium version in azure pipeline
- Azure Devops - YAML - not reading .net version from props file
- Azure yaml trigger pipeline every 14 days on a Saturday
- How can I give a containerRegistry to a DevcontainersCi task in an Azure DevOps YAML Pipeline?