TheBeachMaster/bitbucket-pieplines.yml

## bitbucket-pieplines.yml
options:
    max-time: 10 # The build should not exceed 10 minutes
    docker: true # We'll be using docker later.. Have it enabled
image: node:10.15.0-alpine
pipelines:
  default: # (Unfortunately does not work once you enable branches)
    - step:
        caches:
          - node
          - docker # https://bitbucket.org/site/master/issues/14144/cache-docker-layers-between-builds
        script:
          - docker login --username $DOCKER_USERNAME --password $DOCKER_PASSWORD
          # - Maybe install Coala - but requires a python build env maybe we could check
          - chmod +x haspython.sh && ./haspython.sh
          - npm install netlify-cli snyk -g # Ensure Snyk and Netlify CLI is installed
          - snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
          - netlify login # Authenticate Netlify
          # For all commit we want to ensure we have vulnerablities tested... And report low|medium|high vulnerabilities
          - yarn

  pull-requests:
    '**': # For any other branch on PR... PR from develop branch
    - parallel:
        - step:
            caches:
              - node
            name: Test Vulnerabilities
            script:
              - npm install snyk -g
              - snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
              - snyk protect
              #- yarn test
        - step:
            name: Lint Markdown
            caches:
              - node
            script:
              - export NODE_ENV=dev
              - yarn install --production=false
              - yarn run lint-md

  branches:
    develop:
      - parallel:
          - step:
              caches:
                - node
              name: Vulnerabilty Test
              script:
               - npm install snyk -g
               - snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
               - snyk protect
              # - yarn test
                #- snyk monitor
          - step:
              caches:
                - node
                - docker
              name: Markdown Lint and Copy Over
              script:
                - export NODE_ENV=dev
                - yarn install --production=false
                - yarn run lint-md
                - yarn run clean
                - yarn build
                - pipe: atlassian/scp-deploy:0.3.0
                  variables:
                    USER: "root"
                    SERVER: "1.2.3.4"
                    REMOTE_PATH: "/usr/src/blog/"
                    LOCAL_PATH: "public"
                    SSH_KEY: $SOME_KEY # Get this from ENV variables
                    DEBUG: "true"
                    EXTRA_ARGS: "-o ServerAliveInterval=10"
      - step:
          name: Create Image
          caches:
            - docker # https://bitbucket.org/site/master/issues/14144/cache-docker-layers-between-builds
          script: # Remove extra step and copy file to binary using artifacts
            - docker login --username $DOCKER_USERNAME --password $DOCKER_PASSWORD
            - docker build -t $DOCKER_USERNAME/$BITBUCKET_REPO_SLUG:$BITBUCKET_BUILD_NUMBER .
            - docker push $DOCKER_USERNAME/$BITBUCKET_REPO_SLUG:$BITBUCKET_BUILD_NUMBER
    master:
      - parallel:
          - step:
              name: Vulnerabilty Test
              caches:
                - node
              script:
               - npm install snyk -g
               - snyk auth $SNYK_TOKEN -d # Authenticate Snyk
               - snyk protect
               #- yarn test
                #- snyk monitor
          - step:
              name: Markdown Lint
              caches:
                - node
              script:
                - export NODE_ENV=dev
                - yarn install --production=false
                - yarn run lint-md
      - step:
          name: Clean and build
          caches:
            - node
          script:
            - export NODE_ENV=production
            - yarn install --production=true
            - yarn run clean
            - yarn build
          artifacts: # Share these with the next build stage
            - public/**
      - step:
          name: Deploy to Netlify
          trigger: manual
          caches:
            - node
          script:
            - npm install netlify-cli -g
            - netlify deploy --dir=public --prod

## haspython.sh
#!/bin/bash

if ! hash python; then
    echo "Python is required to run some of these tests"
    exit 1
fi

pyver=$(python -V 2>&1 | sed 's/.* \([0-9]\).\([0-9]\).*/\1\2/')
if [[ "$pyver" -lt "27" ||  "$pyver" -gt "30" ]]
then
    echo "This script requires Python 2.7.X installed. Found Python " "$pyver"
fi
	options:
	max-time: 10 # The build should not exceed 10 minutes
	docker: true # We'll be using docker later.. Have it enabled
	image: node:10.15.0-alpine
	pipelines:
	default: # (Unfortunately does not work once you enable branches)
	- step:
	caches:
	- node
	- docker # https://bitbucket.org/site/master/issues/14144/cache-docker-layers-between-builds
	script:
	- docker login --username $DOCKER_USERNAME --password $DOCKER_PASSWORD
	# - Maybe install Coala - but requires a python build env maybe we could check
	- chmod +x haspython.sh && ./haspython.sh
	- npm install netlify-cli snyk -g # Ensure Snyk and Netlify CLI is installed
	- snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
	- netlify login # Authenticate Netlify
	# For all commit we want to ensure we have vulnerablities tested... And report low\|medium\|high vulnerabilities
	- yarn

	pull-requests:
	'**': # For any other branch on PR... PR from develop branch
	- parallel:
	- step:
	caches:
	- node
	name: Test Vulnerabilities
	script:
	- npm install snyk -g
	- snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
	- snyk protect
	#- yarn test
	- step:
	name: Lint Markdown
	caches:
	- node
	script:
	- export NODE_ENV=dev
	- yarn install --production=false
	- yarn run lint-md

	branches:
	develop:
	- parallel:
	- step:
	caches:
	- node
	name: Vulnerabilty Test
	script:
	- npm install snyk -g
	- snyk auth ${SNYK_TOKEN} -d # Authenticate Snyk
	- snyk protect
	# - yarn test
	#- snyk monitor
	- step:
	caches:
	- node
	- docker
	name: Markdown Lint and Copy Over
	script:
	- export NODE_ENV=dev
	- yarn install --production=false
	- yarn run lint-md
	- yarn run clean
	- yarn build
	- pipe: atlassian/scp-deploy:0.3.0
	variables:
	USER: "root"
	SERVER: "1.2.3.4"
	REMOTE_PATH: "/usr/src/blog/"
	LOCAL_PATH: "public"
	SSH_KEY: $SOME_KEY # Get this from ENV variables
	DEBUG: "true"
	EXTRA_ARGS: "-o ServerAliveInterval=10"
	- step:
	name: Create Image
	caches:
	- docker # https://bitbucket.org/site/master/issues/14144/cache-docker-layers-between-builds
	script: # Remove extra step and copy file to binary using artifacts
	- docker login --username $DOCKER_USERNAME --password $DOCKER_PASSWORD
	- docker build -t $DOCKER_USERNAME/$BITBUCKET_REPO_SLUG:$BITBUCKET_BUILD_NUMBER .
	- docker push $DOCKER_USERNAME/$BITBUCKET_REPO_SLUG:$BITBUCKET_BUILD_NUMBER
	master:
	- parallel:
	- step:
	name: Vulnerabilty Test
	caches:
	- node
	script:
	- npm install snyk -g
	- snyk auth $SNYK_TOKEN -d # Authenticate Snyk
	- snyk protect
	#- yarn test
	#- snyk monitor
	- step:
	name: Markdown Lint
	caches:
	- node
	script:
	- export NODE_ENV=dev
	- yarn install --production=false
	- yarn run lint-md
	- step:
	name: Clean and build
	caches:
	- node
	script:
	- export NODE_ENV=production
	- yarn install --production=true
	- yarn run clean
	- yarn build
	artifacts: # Share these with the next build stage
	- public/**
	- step:
	name: Deploy to Netlify
	trigger: manual
	caches:
	- node
	script:
	- npm install netlify-cli -g
	- netlify deploy --dir=public --prod
	#!/bin/bash

	if ! hash python; then
	echo "Python is required to run some of these tests"
	exit 1
	fi

	pyver=$(python -V 2>&1 \| sed 's/.* \([0-9]\).\([0-9]\).*/\1\2/')
	if [[ "$pyver" -lt "27" \|\| "$pyver" -gt "30" ]]
	then
	echo "This script requires Python 2.7.X installed. Found Python " "$pyver"
	fi