- Set up Local Development Environment
- Set up Development Environment with Vagrant
- Build Binaries
- Test Scanner Adapter
- Run Tests
-
Install Go.
The project requires Go 1.17 or later. We also assume that you're familiar with Go's GOPATH workspace convention, and have the appropriate environment variables set.
-
Install Docker, Docker Compose, and Make.
-
Get the source code.
git clone https://github.com/aquasecurity/harbor-scanner-trivy.git cd harbor-scanner-trivy
-
Get the source code.
git clone https://github.com/aquasecurity/harbor-scanner-trivy.git cd harbor-scanner-trivy -
Create and configure a guest development machine, which is based on Ubuntu 20.4 LTS and has Go, Docker, Docker Compose, Make, and Harbor v2.5.1 preinstalled. Harbor is installed in the
/opt/harbordirectory.vagrant upIf everything goes well Harbor will be accessible at http://localhost:8181 (admin/Harbor12345).
To SSH into a running Vagrant machine.
vagrant sshThe
/vagrantdirectory in the development machine is shared between host and guest. This, for example, allows you to rebuild a container image for testing.vagrant@ubuntu-focal:/vagrant$ make docker-build
Run make to build the binary in ./scanner-trivy:
make
To build into a Docker container aquasec/harbor-scanner-trivy:dev:
make docker-build
Install Harbor with Harbor installer.
Make sure that you install Harbor with Trivy, i.e. sudo ./install.sh --with-trivy.
$ docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
776c0b424d23 goharbor/trivy-adapter-photon:v2.5.1 "/home/scanner/entry…" 22 seconds ago Up 22 seconds (health: starting) trivy-adapter
7d50e1196823 goharbor/harbor-jobservice:v2.5.1 "/harbor/entrypoint.…" 39 minutes ago Up 39 minutes (healthy) harbor-jobservice
70d08da89eed goharbor/nginx-photon:v2.5.1 "nginx -g 'daemon of…" 39 minutes ago Up 39 minutes (healthy) 0.0.0.0:80->8080/tcp, :::80->8080/tcp nginx
041d5fdae1fd goharbor/harbor-core:v2.5.1 "/harbor/entrypoint.…" 39 minutes ago Up 39 minutes (healthy) harbor-core
4601fbbee7ee goharbor/harbor-registryctl:v2.5.1 "/home/harbor/start.…" 39 minutes ago Up 39 minutes (healthy) registryctl
9c6dc4f126ca goharbor/harbor-portal:v2.5.1 "nginx -g 'daemon of…" 39 minutes ago Up 39 minutes (healthy) harbor-portal
b42391dd9b69 goharbor/registry-photon:v2.5.1 "/home/harbor/entryp…" 39 minutes ago Up 39 minutes (healthy) registry
3ddd1913c9cb goharbor/redis-photon:v2.5.1 "redis-server /etc/r…" 39 minutes ago Up 39 minutes (healthy) redis
33ddb8a8e9b3 goharbor/harbor-db:v2.5.1 "/docker-entrypoint.…" 39 minutes ago Up 39 minutes (healthy) harbor-db
dfaff72310c5 goharbor/harbor-log:v2.5.1 "/bin/sh -c /usr/loc…" 39 minutes ago Up 39 minutes (healthy) 127.0.0.1:1514->10514/tcp harbor-log- Navigate to Harbor installation directory.
- Stop Harbor services.
sudo docker-compose down - Build a new version of the adapter service into a Docker container
aquasec/harbor-scanner-trivy:dev.make docker-build - Edit the
docker-compose.ymlfile and replace the adapter's image with the one that you've just built.version: '2.3' services: trivy-adapter: container_name: trivy-adapter # image: goharbor/trivy-adapter-photon:v2.4.1 image: aquasec/harbor-scanner-trivy:dev restart: always
- Restart Harbor services.
sudo docker-compose up --detach
Unit testing alone doesn't provide guarantees about the behaviour of the adapter. To verify that each Go module correctly interacts with its collaborators, more coarse grained testing is required as described in Testing Strategies in a Microservice Architecture.
Run make test to run all unit tests:
make test
Run make test-integration to run integration tests.
make test-integration
Run make test-component to run component tests.
make test-component