Open johnmlwright opened 4 years ago
See jenkins-artifactory-plugin #320 I commented about this:
I'm in the same context (kaniko pushing the layers to artifactory itself and not the jfrog cli with build info). In fact a build info must be published in order to run an XRay scan.
So I'm trying a workaround:
I confirm I was able to make an XRay scan of an already pushed image and its layers, this way. But thinking of the complexity of this sequence, there should be a feature to achieve this as this is a real use case.
Thank you all for raising this requirement. This definitely needs to be supported. This feature has been added into our plan and we'll soon start working on implementing this. We'll keep this GitHub issue up to date with our progress.
@johnmlwright and @tanguydelignieresaccenture, JFrog-CLI v1.43.0 is released which includes support for collecting build-info for Kaniko. Here is a project example of how to use it with docker-client.
https://github.com/jfrog/project-examples/tree/master/docker-oci-examples/kaniko-example is the new repo for example
Is your feature request related to a problem? Please describe. https://github.com/GoogleContainerTools/kaniko
While kaniko is able to push images to Artifactory, there is no CLI support for kaniko.
Describe the solution you'd like to see JFrog CLI supports kaniko image pushing with build info.
Describe alternatives you've considered Push the image with kaniko to Artifactory, then download the image outside of the kaniko container, where the daemon exists. From there, upload the image with buildInfo using CLI.