third/plugin-drone-ksm
1
0
Fork 0
mirror of https://github.com/Keeper-Security/harness-integration.git synced 2026-06-16 14:49:05 +08:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: third/plugin-drone-ksm:dev
Branches Tags
third/plugin-drone-ksm:main third/plugin-drone-ksm:fix/dockerignore-sensitive-files third/plugin-drone-ksm:release/v1.0.0 third/plugin-drone-ksm:dev third/plugin-drone-ksm:dependabot/npm_and_yarn/npm_and_yarn-bb3626eb1a
third/plugin-drone-ksm:v1.0.0
...
compare: third/plugin-drone-ksm:fix/dockerignore-sensitive-files
Branches Tags
third/plugin-drone-ksm:fix/dockerignore-sensitive-files third/plugin-drone-ksm:main third/plugin-drone-ksm:release/v1.0.0 third/plugin-drone-ksm:dev third/plugin-drone-ksm:dependabot/npm_and_yarn/npm_and_yarn-bb3626eb1a
third/plugin-drone-ksm:v1.0.0

9 Commits
dev ... fix/dockerignore-sensitive-files

Author SHA1 Message Date
Stas Schaller 5dd14e97cd fix: exclude internal dev files from Docker image and git tracking 
- Add .claude/, CLAUDE.md, and non-README *.md to .dockerignore to
  prevent internal tooling files from being included in published image
- Add .claude/ to .gitignore to prevent accidental commits of local config
- Add dockerhub-overview.md for Docker Hub repository description
 2026-04-24 14:12:29 -04:00
stas-schaller b4383cf712 Merge pull request #6 from Keeper-Security/release/v1.0.0 
Release/v1.0.0
 2026-03-03 12:17:12 -05:00
hborase-ks 8aaeab2923 Merge pull request #8 from Keeper-Security/dev 
add QEMU for arm64 builds and rename image to harness-plugin
 2026-03-03 12:48:39 +05:30
hborase-ks efce32f987 Merge pull request #5 from Keeper-Security/dev 
harness CI drone plugin PLUGIN_KSM_CONFIG convention added, multi-pla…
 2026-03-02 11:30:40 +05:30
stas-schaller 721adbcbc3 Fix workflow and prepare for Docker Hub publishing (#4) 
* fix: commit package-lock.json for reproducible Docker builds

- Remove package-lock.json from .gitignore (was incorrectly ignored)
- Add package-lock.json with pinned dependency versions
- Use npm ci for faster, deterministic installs in CI
- Re-enable npm cache for build performance
- Ensures exact dependency versions in Docker images

* fix: remove unused catch parameter

* docs: update Docker image name to official keeper/harness-plugin

- Replace placeholder dhborse/keeper-harness-plugin with keeper/harness-plugin:latest
- Use official Keeper organization image name
 2026-02-16 14:14:49 -05:00
Stas Schaller 65515eb4d9 fix: remove npm cache from workflow (package-lock.json is gitignored) 2026-02-16 11:52:36 -05:00
pkamble-ks 74636825f9 Merge pull request #2 from Keeper-Security/release/v1.0.0 
Release/v1.0.0
 2026-02-13 22:39:31 +05:30
hborase-ks 2dd1ce1851 Merge pull request #3 from Keeper-Security/dev 
added fix to resolve all PR review comments
 2026-02-13 16:39:49 +05:30
hborase-ks d0c62ef8e7 Merge pull request #1 from Keeper-Security/dev 
Implemented Harness CI Keeper Plugin
 2026-02-06 17:46:38 +05:30
6 changed files with 4539 additions and 3 deletions
Expand all files Collapse all files
.dockerignore
+9
View File
@@ -30,3 +30,12 @@ build/
tmp/ tmp/
temp/ temp/
*.tmp *.tmp
# Claude Code files - internal dev tooling, never ship in image
.claude/
CLAUDE.md
plans/
# Documentation files not needed at runtime
*.md
!README.md
.github/workflows/publish.harness.yml
-1
View File
@@ -239,7 +239,6 @@ jobs:
uses: actions/setup-node@v4 uses: actions/setup-node@v4
with: with:
node-version: '20.x' node-version: '20.x'
cache: 'npm'
- name: Get version - name: Get version
id: get_version id: get_version
.gitignore
+1 -1
View File
@@ -1,2 +1,2 @@
node_modules/ node_modules/
package-lock.json .claude/
dockerhub-overview.md
+21
View File
@@ -0,0 +1,21 @@
# Keeper Secrets Manager Harness Plugin
Retrieve secrets from Keeper Vault directly into your Harness CI pipeline steps at runtime —
no secrets stored in Harness, no plaintext in pipeline configs.
## Documentation
For setup and usage, visit the [GitHub repository](https://github.com/Keeper-Security/harness-integration).
## How to Use This Image
```yaml
step:
type: Plugin
spec:
image: keeper/harness-plugin:latest
settings:
ksm_config: <+secrets.getValue("Keeper_Config_Secret")>
secrets: |
RECORD_UID/field/password > DB_PASSWORD
```
## Support and Feedback
For support or bug reports, file an issue on our [GitHub page](https://github.com/Keeper-Security/harness-integration/issues).
package-lock.json
Generated
+4507
View File
File diff suppressed because it is too large Load Diff
src/index.js
+1 -1
View File
@@ -44,7 +44,7 @@ const processToken = (rawToken) => {
if (!token.startsWith('US:') && !token.startsWith('{')) { if (!token.startsWith('US:') && !token.startsWith('{')) {
try { try {
token = Buffer.from(token, 'base64').toString('utf-8').trim(); token = Buffer.from(token, 'base64').toString('utf-8').trim();
} catch (e) { } catch {
// Not base64, use as-is // Not base64, use as-is
core.warning('Base64 decode failed, using raw value'); core.warning('Base64 decode failed, using raw value');
} }