mirrors/meta-arm
1
0
Fork 0
mirror of https://git.yoctoproject.org/meta-arm synced 2026-05-07 04:58:57 +00:00
Code Issues Projects Releases Wiki Activity

CI: allow the runner to set a NVD API key

Browse Source 
Setting an API key means we get higher rate limits. Because keys are
private, the key must be set in the environment of the runner.

Signed-off-by: Ross Burton <ross.burton@arm.com>
Signed-off-by: Jon Mason <jon.mason@arm.com>
This commit is contained in:
Ross Burton
2024-01-29 18:14:01 +00:00
committed by Jon Mason
parent 8b94fee205
commit 60202ad84d
2 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.gitlab-ci.yml
+2
View File
@@ -19,6 +19,8 @@ variables:
ACS_TEST: 0 ACS_TEST: 0
# The list of extra Kas fragments to be used when building # The list of extra Kas fragments to be used when building
EXTRA_KAS_FILES: "" EXTRA_KAS_FILES: ""
# The NVD API key to use when fetching CVEs
NVDCVE_API_KEY: ""
stages: stages:
- prep - prep
ci/cve.yml
+3
View File
@@ -5,6 +5,9 @@ local_conf_header:
cve: | cve: |
INHERIT += "cve-check" INHERIT += "cve-check"
# Allow the runner environment to provide an API key
NVDCVE_API_KEY = "${@d.getVar('BB_ORIGENV').getVar('NVDCVE_API_KEY') or ''}"
# Just show the warnings for our layers # Just show the warnings for our layers
CVE_CHECK_SHOW_WARNINGS = "0" CVE_CHECK_SHOW_WARNINGS = "0"
CVE_CHECK_SHOW_WARNINGS:layer-arm-toolchain = "1" CVE_CHECK_SHOW_WARNINGS:layer-arm-toolchain = "1"