Update wp pipeline (#7)

* ci: update pipeline build args

* fix: remove whitesapce trailing checker

* patch: remove branching naming hook

* ci: add josa registry to pipelines

Author: thamudi

.woodpecker/build-latest-image.yaml

@@ -5,25 +5,11 @@ when:
   - event: [pull_request]
     # Only run when PR targets development or other branches (not main)
     evaluate: 'CI_COMMIT_TARGET_BRANCH != "main"'
-    # Build the source branch
-    branch:
-      exclude: [main]
-  - event: [pull_request]
-    # Also build latest image when development branch creates PR to main
-    evaluate: 'CI_COMMIT_TARGET_BRANCH == "main" && CI_COMMIT_BRANCH == "development"'
-    branch: [development]
 
 variables:
-  - &docker_repo "josaorg/kutt"
+  - &registry_url "https://registry.cloud.josa.ngo"
+  - &docker_repo "registry.cloud.josa.ngo/library/kutt"
   - &slack_channel "builds"
-  # Docker build arguments template
-  - &build_args_template
-    - CI_COMMIT_SHA=${CI_COMMIT_SHA}
-    - CI_BUILD_NUMBER=${CI_BUILD_NUMBER}
-    - CI_BUILD_LINK=${CI_BUILD_LINK}
-    - CI_COMMIT_LINK=${CI_COMMIT_LINK}
-    - CI_REPO_LINK=${CI_REPO_LINK}
-    - CI_BUILD_FINISHED=${CI_BUILD_FINISHED}
   # Success message template
   - &success_message >
     ✅ *SUCCESS* - Latest Build #{{ build.number }}
@@ -49,27 +35,39 @@ variables:
 
 steps:
   # Security check - scan for secrets/credentials
-  - name: check-for-leaks
-    image: zricethezav/gitleaks:v8.18.4
-    commands:
-      - gitleaks detect --source . --verbose
+  - name: run-pre-commit-hooks
+    image: josaorg/pre-commit-runner
+    settings:
+      args: "--all-files"
+      skip: "end-of-file-fixer, yamllint, trailing-whitespace"
 
   # Build latest image (development and other branches)
   - name: build-latest-image
     image: woodpeckerci/plugin-docker-buildx
     settings:
       repo: *docker_repo
+      registry: *registry_url
       dockerfile: ./Dockerfile
       tags:
         - ${CI_COMMIT_SHA:-latest}
         - latest
       username:
-        from_secret: DOCKER_HUB_USERNAME
+        from_secret: REGISTRY_USERNAME
       password:
-        from_secret: DOCKER_HUB_PASSWORD
-      build_args: *build_args_template
+        from_secret: REGISTRY_SECRET
+      build_args:
+        CI_REPO: "${CI_REPO}"
+        CI_REPO_NAME: "${CI_REPO_NAME}"
+        CI_REPO_URL: "${CI_REPO_URL}"
+        CI_COMMIT_SHA: "${CI_COMMIT_SHA}"
+        CI_COMMIT_REF: "${CI_COMMIT_REF}"
+        CI_PIPELINE_URL: "${CI_PIPELINE_URL}"
+        CI_PIPELINE_CREATED: "${CI_PIPELINE_CREATED}"
+        CI_PREV_PIPELINE_URL: "${CI_PREV_PIPELINE_URL}"
+        CI_PIPELINE_NUMBER: "${CI_PIPELINE_NUMBER}"
+
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
 
   # Slack notification for latest build success
   - name: notify-slack-latest-success
@@ -82,7 +80,7 @@ steps:
     when:
       - status: success
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
       - build-latest-image
 
   # Slack notification for latest build failure
@@ -96,5 +94,5 @@ steps:
     when:
       - status: failure
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
       - build-latest-image

.woodpecker/build-stable-image.yaml

@@ -9,16 +9,9 @@ when:
       exclude: [main]
 
 variables:
-  - &docker_repo "josaorg/kutt"
+  - &registry_url "https://registry.cloud.josa.ngo"
+  - &docker_repo "registry.cloud.josa.ngo/library/kutt"
   - &slack_channel "builds"
-  # Docker build arguments template
-  - &build_args_template
-    - CI_COMMIT_SHA=${CI_COMMIT_SHA}
-    - CI_BUILD_NUMBER=${CI_BUILD_NUMBER}
-    - CI_BUILD_LINK=${CI_BUILD_LINK}
-    - CI_COMMIT_LINK=${CI_COMMIT_LINK}
-    - CI_REPO_LINK=${CI_REPO_LINK}
-    - CI_BUILD_FINISHED=${CI_BUILD_FINISHED}
   # Success message template
   - &success_message >
     ✅ *SUCCESS* - Stable Build #{{ build.number }}
@@ -43,28 +36,39 @@ variables:
     • <{{ build.link }}|View Build>
 
 steps:
-  # Security check - scan for secrets/credentials
-  - name: check-for-leaks
-    image: zricethezav/gitleaks:v8.18.4
-    commands:
-      - gitleaks detect --source . --verbose
+  - name: run-pre-commit-hooks
+    image: josaorg/pre-commit-runner
+    settings:
+      args: "--all-files"
+      skip: "end-of-file-fixer, yamllint, trailing-whitespace"
 
   # Build stable image (main branch only)
   - name: build-stable-image
     image: woodpeckerci/plugin-docker-buildx
     settings:
       repo: *docker_repo
+      registry: *registry_url
       dockerfile: ./Dockerfile
       tags:
         - ${CI_COMMIT_SHA:-latest}
         - stable
       username:
-        from_secret: DOCKER_HUB_USERNAME
+        from_secret: REGISTRY_USERNAME
       password:
-        from_secret: DOCKER_HUB_PASSWORD
-      build_args: *build_args_template
+        from_secret: REGISTRY_SECRET
+      build_args:
+        CI_REPO: "${CI_REPO}"
+        CI_REPO_NAME: "${CI_REPO_NAME}"
+        CI_REPO_URL: "${CI_REPO_URL}"
+        CI_COMMIT_SHA: "${CI_COMMIT_SHA}"
+        CI_COMMIT_REF: "${CI_COMMIT_REF}"
+        CI_PIPELINE_URL: "${CI_PIPELINE_URL}"
+        CI_PIPELINE_CREATED: "${CI_PIPELINE_CREATED}"
+        CI_PREV_PIPELINE_URL: "${CI_PREV_PIPELINE_URL}"
+        CI_PIPELINE_NUMBER: "${CI_PIPELINE_NUMBER}"
+
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
 
   # Slack notification for stable build success
   - name: notify-slack-stable-success
@@ -77,7 +81,7 @@ steps:
     when:
       - status: success
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
       - build-stable-image
 
   # Slack notification for stable build failure
@@ -91,5 +95,5 @@ steps:
     when:
       - status: failure
     depends_on:
-      - check-for-leaks
+      - run-pre-commit-hooks
       - build-stable-image