Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

frogbot config #764

Open
Saideep9966 opened this issue Oct 9, 2024 · 6 comments
Open

frogbot config #764

Saideep9966 opened this issue Oct 9, 2024 · 6 comments
Labels
question Further information is requested

Comments

@Saideep9966
Copy link

Saideep9966 commented Oct 9, 2024
edited
Loading

  • I want setup frogbot config in my local repo's and for that i have setup the frogbot-config.yml file and frogbot-scan-pull-request.yml file and frogbot-scan-repository.yml files has been created with required details but unable to config the local bitbucket repo. getting below errors.

PS C:\Users\xxxxxx/biui\biui> frogbot scan-pull-request
16:32:07 [Info] Frogbot version: 2.9.2
16:32:07 [Error] JF_GIT_PROVIDER should be one of: 'github', 'gitlab' or 'bitbucketServer'

after providing the all the export details also still we are unable to run the commands
and

  • i have created shell script file for all the cred's in local repo <xxxx.sh> this also getting the error for
  • sh
    % Total % Received % Xferd Average Speed Time Time Time Current
    Dload Upload Total Spent Left Speed
    100 2395 100 2395 0 0 1171 0 0:00:02 0:00:02 --:--:-- 1175
    Downloading the latest version of Frogbot...
    % Total % Received % Xferd Average Speed Time Time Time Current
    Dload Upload Total Spent Left Speed
    0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
    curl: (35) schannel: next InitializeSecurityContext failed: CRYPT_E_NO_REVOCATION_CHECK (0x80092012) - The revocation function was unable to check revocation for the certificate.

need assistance on it and need to run frogbot-config.yml
@Saideep9966 Saideep9966 added the question Further information is requested label Oct 9, 2024
@eranturgeman
Copy link
Contributor

Hello @Saideep9966 and thank you for using Frogbot.
Are you trying to run Frogbot locally? from Terminal? from IDE?
In general, even though Frogbot is an executable, it is not meant to be executed locally, but rather from within a CI.
frogbot-config.yml doesn't contain all required fields for Frogbot. There are fields that you must pass as env variables (in the CI file of using 'export' if using locally), such as JF_GIT_PROVIDER that was mentioned in the error log

@Saideep9966
Copy link
Author

Hi @eranturgeman this is our testing case to frogbot evaluation, i cloned bitbucket repo to vs-code and created frogbot-config.yml, pull-repository.yml, scan-repository.yml files provided with below details
JF_GF_PROVIDER=
JF_URL=
JF_GIT_TOKEN=
JF_ACCESS_TOKEN=
JF_GIT_OWNER=
JF_GIT_REPO=
JF_GIT_PULL_REQUEST_ID=
TRIGGER_KEY=

  • for env variables i have another file <.sh> with using export in locally for that error i have mentioned before comment.

  • requested to assist or provide steps to config frogbot and scan in bitbucket repo. with jfrog/frogbot documentation we are unable to setup it.

@eranturgeman
Copy link
Contributor

local frogbot-config.yml will do nothing unfortunately. Since Frogbot is intended to work in a CI and with integration to some git provider, and form security reasons - we take frogbot-config.yml ONLY from the target branch (the branch you intend to merge the PR to in case of scan-pr and the base branch in case of scan-repo)
As for the file with the env vars - I dont know if it can work this way. As I mentioned before, Frogbot is suppose to work from within a CI. You can export it locally for sure but im not sure about the specific method you are trying.

When I'm running frogbot locally, i'm still integrating it with an existing repo in my git provider in case I want it to use frogbot-config.yml.
By the way, frogbot-config.yml is not a mandatory file, so feel free to use Frogbot without it if you just need to evaluate it
frogbot-config.yml is a configuration file that enables you to provide more complex configuration for more complex repositories.

If you are trying to use frogbot for evaluation, I'd suggest to use it like we intended to avoid the extra complications of configuring it locally (this is not explained in the docs since this is not the way it is intended to be used)

If you have more quiestion please feel free to ask, hope my answer helped a bit

https://docs.jfrog-applications.jfrog.io/jfrog-applications/frogbot

@Saideep9966
Copy link
Author

i was testing frogbot in locally for that i have cloned my existing bitbucket repository in vs-code and created <bitbucket-pipeline.yml> file with required template for CI pipeline and created pipeline in jenkins and created image. even though i was unable to scan pull request.

if possible can we please connect on remote to check my process how i configured it.

@Saideep9966
Copy link
Author

i was unable to run the frogbot steps from documentation getting many errors is there any way to just taking any demo repo and biuld it and run that frogbot scan to do testing purposes. kindly do needful.

@Saideep9966
Copy link
Author

hi every what are the tools required to frogbot actions and setup?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question Further information is requested
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@eranturgeman @Saideep9966