kind: pipeline name: "drone-template" type: docker steps: - name: load_secret image: debian:buster-slim volumes: - name: ssh path: /root/.ssh/ environment: SSH_KEY: from_secret: gitea_id_ed25519 commands: - mkdir -p $HOME/.ssh/ - echo "$SSH_KEY" | base64 -d > $HOME/.ssh/id_ed25519 - name: build image: kasperhermansen/cuddle:b58597e25d volumes: - name: ssh path: /root/.ssh/ - name: dockersock path: /var/run commands: - git remote set-url origin $DRONE_GIT_SSH_URL - eval `ssh-agent` - chmod -R 600 ~/.ssh - ssh-add - cuddle x ci environment: DOCKER_BUILDKIT: 1 CUDDLE_SECRETS_PROVIDER: 1password CUDDLE_ONE_PASSWORD_DOT_ENV: ".env.ci" CUDDLE_SSH_AGENT: "true" CUDDLE_ONE_PASSWORD_INJECT: "{{`DOCKER_USERNAME={{ op://application/docker_hub_credentials/username }},DOCKER_PASSWORD={{ op://application/docker_hub_credentials/password }}`}}" SSH_KEY: from_secret: gitea_id_ed25519 OP_SERVICE_ACCOUNT_TOKEN: from_secret: op_service_account_token depends_on: - "load_secret" services: - name: docker image: docker:dind privileged: true volumes: - name: dockersock path: /var/run volumes: - name: ssh temp: {} - name: dockersock temp: {}