-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathMakefile
84 lines (60 loc) · 2.7 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
export DOCKER_SCAN_SUGGEST := false
export DOCKER_BUILDKIT := 1
MAMBA_RUN := ${MAMBA_EXE} run -n aica-make
init-core-env:
@${MAMBA_EXE} create -f environment-core.yml -y
@${MAMBA_RUN} python3 compute_dev.py
init-dev-envs:
@${MAMBA_EXE} create -f manager/environment.yml -y
security-precheck-init:
@${MAMBA_EXE} create -f environment-security.yml -y
@${MAMBA_EXE} run -n aica-secprecheck python3 compute_security.py
security-precheck-bandit:
@${MAMBA_EXE} run -n aica-secprecheck bandit -q -ll -ii -r manager/
security-precheck-safety-core:
@${MAMBA_EXE} run -n aica-secprecheck safety check -r reqs.txt --policy-file .safety-check-policy.yml
@${MAMBA_EXE} run -n aica-secprecheck safety check -r reqsDev.txt --policy-file .safety-check-policy.yml
security-precheck-safety-manager:
@${MAMBA_EXE} run -n aica-secprecheck safety check -r manager/reqs.txt --policy-file .safety-check-policy.yml
@${MAMBA_EXE} run -n aica-secprecheck safety check -r manager/reqsDev.txt --policy-file .safety-check-policy.yml
security-precheck: security-precheck-init security-precheck-bandit security-precheck-safety-core security-precheck-safety-manager
security-post-launch-check:
@(docker exec manager /usr/src/app/bin/micromamba list -n base --json) | (${MAMBA_RUN} jake ddt -t CONDA_JSON)
init: init-core-env init-dev-envs
black:
@${MAMBA_RUN} black -q manager/
lint:
@${MAMBA_RUN} yamllint .
@${MAMBA_RUN} bashlint .
@${MAMBA_RUN} black --check --diff -q manager/
@${MAMBA_RUN} mypy --install-types --warn-unreachable --strict --non-interactive --exclude test manager/
build:
@sh create_certs.sh
@docker compose build
start:
@docker compose up --wait -d
@echo Waiting 30 seconds for OpenSearch to start...
@sleep 30
@docker compose exec opensearch bash -c "/usr/share/opensearch/plugins/opensearch-security/tools/securityadmin.sh -icl -nhnv \
-cacert /usr/share/opensearch/config/rootCA.crt \
-cert /usr/share/opensearch/config/aica-admin.crt \
-key /usr/share/opensearch/config/aica-admin.key \
--configdir /usr/share/opensearch/plugins/opensearch-security/securityconfig"
tests: start
@docker exec -e SKIP_TASKS=true \
manager /bin/bash -c " \
/usr/src/app/bin/micromamba run -n base coverage run --omit='*test*' manage.py test --noinput && \
/usr/src/app/bin/micromamba run -n base coverage report --fail-under=30"
test: tests security-post-launch-check
stop:
@docker compose down --remove-orphans
stop_purge:
@docker compose down --remove-orphans -v
rebuild: build stop start
rebuild_purge: build stop_purge start
restart: stop start
logs:
@docker compose logs -f
clean: stop_purge
@docker compose down -v --rmi all --remove-orphans
@rm -f */*.crt */*.key */*.csr */*.srl