feat: add docker scan by deepak-devtron · Pull Request #381 · devtron-labs/devtron-services

deepak-devtron · 2026-04-01T09:30:48Z

Fixes: https://github.com/devtron-labs/sprint-tasks/issues/2829

github-actions · 2026-04-01T09:31:07Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

ci-runner/helper/DockerfileScanHelper.go

ci-runner/helper/EventHelper.go

ci-runner/helper/DockerfileScanHelper.go

ci-runner/executor/stage/ciStages.go

- Move DockerfileScanRequest and ScanConfig to dedicated bean file - Remove polling logic from InitiateDockerfileScan (fail-fast) - Handle filepath.Abs error and improve error logging - Add panic recovery to asynchronous scan goroutine - Remove unused IgnoredRules field and cleanup code

github-actions · 2026-04-01T11:16:07Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

- CI-Runner now blindly trusts Orchestrator's decision - Removed: DockerfileScanEnabled OR ForceDockerfileScan check - Now uses: DockerfileScanEnabled only (Orchestrator computes OR logic) - Orchestrator passes pre-computed shouldScan in DockerfileScanEnabled field - This ensures single source of truth for scan decision Architecture: - Orchestrator: Decides (userEnabled OR orgForced) - CI-Runner: Executes blindly (no decision logic) - Image-Scanner: Executes blindly (no decision logic) Part of Phase 1: Simplified Dockerfile scan architecture Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>

github-actions · 2026-04-02T08:00:54Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

…tManager build error - Added tests for Success, MissingFile, and ServerError scenarios in DockerfileScanHelper - Fixed pre-existing compilation error in GitManager_test.go (CloneAndCheckout signature mismatch) - Tests verify scan request payload, error handling, and graceful degradation Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>

github-actions · 2026-04-08T06:21:00Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

ci-runner/helper/bean/dockerfileScanBean.go

ci-runner/helper/DockerfileScanHelper.go

ci-runner/helper/GitManager_test.go

ci-runner/helper/DockerfileScanHelper.go

- Remove duplicate endpoint definition by reusing PubSubConfig - Remove unnecessary flags (DockerfileScanEnabled/ForceDockerfileScan) from request payload - Reduce log noise by removing redundant error handling in non-critical path Co-authored-by: Qwen-Coder <qwen-coder@alibabacloud.com>

github-actions · 2026-04-08T08:52:10Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-08T08:57:23Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-08T09:09:11Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-09T06:45:26Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-09T06:51:48Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-09T06:54:51Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-09T06:55:42Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

github-actions · 2026-04-09T08:13:00Z

Some linked issues are invalid. Please update the issue links:\nIssue # in is not found or invalid (HTTP }404).\n

add docker scan

fcae229

deepak-devtron requested review from prakarsh-dt, vikramdevtron and vivek-devtron as code owners April 1, 2026 09:30

github-actions bot added the PR:Issue-verification-failed label Apr 1, 2026

prakash100198 previously approved these changes Apr 1, 2026

View reviewed changes

Shivam-nagar23 requested changes Apr 1, 2026

View reviewed changes

Ash-exp requested changes Apr 1, 2026

View reviewed changes

ci-runner/helper/DockerfileScanHelper.go Outdated Show resolved Hide resolved

ci-runner/executor/stage/ciStages.go Show resolved Hide resolved

deepak-devtron dismissed prakash100198’s stale review via ade40af April 1, 2026 11:13

Shivam-nagar23 requested changes Apr 8, 2026

View reviewed changes

resolving the remaining reviewer's comment

2503642

Shivam-nagar23 previously approved these changes Apr 8, 2026

View reviewed changes

removing unused param from the struct

d76daec

deepak-devtron dismissed Shivam-nagar23’s stale review via d76daec April 8, 2026 09:08

Ash-exp previously approved these changes Apr 8, 2026

View reviewed changes

Shivam-nagar23 previously approved these changes Apr 8, 2026

View reviewed changes

vikramdevtron previously approved these changes Apr 8, 2026

View reviewed changes

refactor: remove unused opcodes and simplify FdSet clearing logic

fc3bcad

Shivam-nagar23 dismissed vikramdevtron’s stale review via fc3bcad April 9, 2026 06:45

Shivam-nagar23 dismissed stale reviews from Ash-exp and themself via fc3bcad April 9, 2026 06:45

Shivam-nagar23 added 2 commits April 9, 2026 12:20

refactor: update common-lib dependency and clean up unused imports

89a069c

refactor: update common-lib dependency and clean up unused imports

86880eb

refactor: update common-lib dependency and clean up unused imports

6c392a3

deepak-devtron changed the title ~~add docker scan~~ feat: add docker scan Apr 9, 2026

refactor: update common-lib dependency and clean up unused imports

703e1f5

Shivam-nagar23 approved these changes Apr 9, 2026

View reviewed changes

vikramdevtron approved these changes Apr 9, 2026

View reviewed changes

github-actions bot added PR:Ready-to-Review and removed PR:Issue-verification-failed labels Apr 9, 2026

deepak-devtron merged commit 2006319 into develop Apr 9, 2026
3 of 5 checks passed

Conversation

deepak-devtron commented Apr 1, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

github-actions bot commented Apr 1, 2026

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

github-actions bot commented Apr 1, 2026

Uh oh!

github-actions bot commented Apr 2, 2026

Uh oh!

github-actions bot commented Apr 8, 2026

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

github-actions bot commented Apr 8, 2026

Uh oh!

github-actions bot commented Apr 8, 2026

Uh oh!

github-actions bot commented Apr 8, 2026

Uh oh!

github-actions bot commented Apr 9, 2026

Uh oh!

github-actions bot commented Apr 9, 2026

Uh oh!

github-actions bot commented Apr 9, 2026

Uh oh!

github-actions bot commented Apr 9, 2026

Uh oh!

github-actions bot commented Apr 9, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

deepak-devtron commented Apr 1, 2026 •

edited

Loading