Sign

The sign component is used to sign your code and artifacts. This ensures that the code you are deploying is the same code that was built and tested, providing an additional layer of security and trust in your deployment process.

The sign accepts the following inputs:

NameDescriptionRequiredDefault Value
api_urlThe DevGuard API URLNohttps://api.main.devguard.org
asset_nameName of the asset to scanYes
tokenAPI token for authenticating with DevGuardYes
sign_stageThe stage where the scan is runNodeploy
runner_tagsThe runner tags used to select appropriate CI runners.No""

Usage Example: Here’s an example of how to call this component:

include:
- remote: "https://gitlab.com/l3montree/devguard/-/raw/main/templates/sign.yml"
  inputs:
    asset_name: "myOrgnaization/projects/myProject/assets/myAsset"
    token: "$DEVGUARD_TOKEN"