{"id":78874,"date":"2024-10-03T03:19:01","date_gmt":"2024-10-02T23:49:01","guid":{"rendered":"https:\/\/nabfollower.com\/blog\/how-i-secured-my-containerized-application-using-anchore-day-29-project-474l\/"},"modified":"2024-10-03T03:19:01","modified_gmt":"2024-10-02T23:49:01","slug":"how-i-secured-my-containerized-application-using-anchore-day-29-project-474l","status":"publish","type":"post","link":"https:\/\/nabfollower.com\/blog\/how-i-secured-my-containerized-application-using-anchore-day-29-project-474l\/","title":{"rendered":"\u0686\u06af\u0648\u0646\u0647 \u0628\u0631\u0646\u0627\u0645\u0647 \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u062e\u0648\u062f \u0631\u0627 \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0627\u06cc\u0645\u0646 \u06a9\u0631\u062f\u0645 (\u067e\u0631\u0648\u0698\u0647 \u0631\u0648\u0632 29)"},"content":{"rendered":"

Summarize this content to 400 words in Persian Lang
\n \u0627\u06cc\u0646 \u0645\u0642\u0627\u0644\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u062c\u0627\u0645\u0639 \u0628\u0631\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0633\u0627\u0632\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0631\u0627 \u0634\u0631\u062d \u0645\u06cc \u062f\u0647\u062f.\u06cc\u06a9 \u067e\u0644\u062a \u0641\u0631\u0645 \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u06cc\u06a9 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0642\u0648\u06cc \u0645\u0646\u0627\u0633\u0628 \u0628\u0631\u0627\u06cc \u0645\u0628\u062a\u062f\u06cc\u0627\u0646\u060c \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u062a\u0648\u0633\u0637 \u200b\u200b\u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f.\u0648 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0628\u0627 \u062a\u062c\u0631\u0628\u0647 \u0645\u0627 \u0633\u0627\u062e\u062a\u060c \u0622\u0632\u0645\u0627\u06cc\u0634\u060c \u0627\u0633\u06a9\u0646\u060c \u0648 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0631\u0627 \u067e\u0648\u0634\u0634 \u062e\u0648\u0627\u0647\u06cc\u0645 \u062f\u0627\u062f \u0648 \u0628\u0631 \u0628\u0647\u062a\u0631\u06cc\u0646 \u0634\u06cc\u0648\u0647 \u0647\u0627 \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u0622\u0646 \u062a\u0627\u06a9\u06cc\u062f \u0645\u06cc \u06a9\u0646\u06cc\u0645. \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u062a\u0645\u0631\u06a9\u0632 Anchore \u0627\u0633\u062a\u060c \u0627\u06cc\u0646 \u0627\u0635\u0648\u0644 \u0628\u0631\u0627\u06cc \u0633\u0627\u06cc\u0631 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0645\u0627\u0646\u0646\u062f Aqua Security\u060c Snyk \u0648 Trivy \u0627\u0639\u0645\u0627\u0644 \u0645\u06cc \u0634\u0648\u062f.<\/p>\n

1. \u0646\u0645\u0627\u06cc \u06a9\u0644\u06cc \u067e\u0631\u0648\u0698\u0647:<\/p>\n

\u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u0627\u0633\u06a9\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u062f\u0631 \u06cc\u06a9 \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0627\u062f\u063a\u0627\u0645 \u0645\u06cc \u06a9\u0646\u062f \u062a\u0627 \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u0634\u0648\u062f \u06a9\u0647 \u0641\u0642\u0637 \u062a\u0635\u0627\u0648\u06cc\u0631 \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0627\u06cc\u0645\u0646 \u0645\u0633\u062a\u0642\u0631 \u0645\u06cc \u0634\u0648\u0646\u062f.\u0627\u06cc\u0646 \u0641\u0631\u0622\u06cc\u0646\u062f \u0634\u0627\u0645\u0644:<\/p>\n

\u062a\u0648\u0633\u0639\u0647 \u0648 \u0622\u0632\u0645\u0627\u06cc\u0634: \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u0628\u0646\u0648\u06cc\u0633\u06cc\u062f\u060c \u0622\u0632\u0645\u0627\u06cc\u0634 \u06a9\u0646\u06cc\u062f \u0648 \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u06cc\u062f.
\n \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u0633\u0627\u0632\u06cc: \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u062f\u0631 \u06cc\u06a9 \u0638\u0631\u0641 Docker \u0628\u0633\u062a\u0647 \u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f.
\n \u0627\u0633\u06a9\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc: \u0627\u0632 Anchore \u0628\u0631\u0627\u06cc \u0627\u0633\u06a9\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.
\n \u0633\u0627\u062e\u062a \u0648 \u0647\u0644 \u062f\u0627\u062f\u0646 \u062a\u0635\u0648\u06cc\u0631: \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0628\u0633\u0627\u0632\u06cc\u062f \u0648 \u0641\u0642\u0637 \u062f\u0631 \u0635\u0648\u0631\u062a \u0627\u0646\u062c\u0627\u0645 \u0627\u0633\u06a9\u0646 \u0628\u0647 \u06cc\u06a9 \u0631\u062c\u06cc\u0633\u062a\u0631\u06cc (\u0645\u062b\u0644\u0627\u064b Docker Hub) \u0641\u0634\u0627\u0631 \u062f\u0647\u06cc\u062f.
\n \u0627\u0633\u062a\u0642\u0631\u0627\u0631: \u062a\u0635\u0648\u06cc\u0631 \u0627\u0645\u0646 \u0631\u0627 \u062f\u0631 \u0645\u062d\u06cc\u0637 \u0647\u062f\u0641 \u062e\u0648\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u062e\u0648\u0634\u0647 Kubernetes\u060c minikube) \u0645\u0633\u062a\u0642\u0631 \u06a9\u0646\u06cc\u062f.<\/p>\n

2. \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc Anchore:<\/p>\n

\u0642\u0628\u0644 \u0627\u0632 \u0634\u0631\u0648\u0639\u060c \u0628\u0647 \u06cc\u06a9 \u0646\u0645\u0648\u0646\u0647 Anchore Enterprise (\u06cc\u0627 \u06cc\u06a9 \u0622\u0632\u0645\u0627\u06cc\u0634 \u0631\u0627\u06cc\u06af\u0627\u0646) \u0646\u06cc\u0627\u0632 \u062f\u0627\u0631\u06cc\u062f. Anchore CLI \u0631\u0627 \u0646\u0635\u0628 \u06a9\u0631\u062f\u0647 \u0648 \u0622\u0646 \u0631\u0627 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f:<\/p>\n

\u062f\u0627\u0646\u0644\u0648\u062f \u0648 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f: Anchore CLI \u0631\u0627 \u0627\u0632 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0631\u0633\u0645\u06cc Anchore \u062f\u0627\u0646\u0644\u0648\u062f \u06a9\u0646\u06cc\u062f. \u062f\u0633\u062a\u0648\u0631\u0627\u0644\u0639\u0645\u0644 \u0647\u0627\u06cc \u0646\u0635\u0628 \u0628\u0633\u062a\u0647 \u0628\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0639\u0627\u0645\u0644 \u0634\u0645\u0627 \u0645\u062a\u0641\u0627\u0648\u062a \u0627\u0633\u062a.
\n \u0627\u06cc\u062c\u0627\u062f \u062d\u0633\u0627\u0628 \u06a9\u0627\u0631\u0628\u0631\u06cc: \u0627\u06af\u0631 \u0642\u0628\u0644\u0627\u064b \u0646\u062f\u0627\u0631\u06cc\u062f \u06cc\u06a9 \u062d\u0633\u0627\u0628 Anchore \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u06cc\u062f.
\n \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a: CLI \u0631\u0627 \u0628\u0631\u0627\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0628\u0627 \u062d\u0633\u0627\u0628 Anchore \u062e\u0648\u062f \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f. \u0627\u06cc\u0646 \u0645\u0639\u0645\u0648\u0644\u0627\u064b \u0634\u0627\u0645\u0644 \u062a\u0646\u0638\u06cc\u0645 \u06cc\u06a9 \u06a9\u0644\u06cc\u062f API \u06cc\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0631\u0648\u0634\u200c\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u062f\u0631 \u0645\u0633\u062a\u0646\u062f\u0627\u062a Anchore \u062a\u0648\u0636\u06cc\u062d \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a.
\n (\u0627\u062e\u062a\u06cc\u0627\u0631\u06cc) \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u062e\u0637 \u0645\u0634\u06cc: \u062f\u0631 \u0631\u0627\u0628\u0637 \u06a9\u0627\u0631\u0628\u0631\u06cc Anchore\u060c \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u06cc\u062f \u062e\u0637\u200c\u0645\u0634\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u062a\u0639\u06cc\u06cc\u0646 \u0622\u0633\u062a\u0627\u0646\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f. \u0627\u06cc\u0646 \u0628\u0647 \u0634\u0645\u0627 \u0627\u0645\u06a9\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f \u0633\u0637\u062d \u0634\u062f\u062a\u06cc \u0631\u0627 \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0627\u0633\u06a9\u0646 \u0634\u06a9\u0633\u062a \u0645\u06cc \u062e\u0648\u0631\u062f\u060c \u0633\u0641\u0627\u0631\u0634\u06cc \u06a9\u0646\u06cc\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u0633\u06cc\u0627\u0633\u062a\u06cc \u0631\u0627 \u062a\u0646\u0638\u06cc\u0645 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u062f\u0631 \u0635\u0648\u0631\u062a \u06cc\u0627\u0641\u062a\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0628\u0627\u0644\u0627 \u06cc\u0627 \u062d\u06cc\u0627\u062a\u06cc\u060c \u0633\u0627\u062e\u062a \u0628\u0627 \u0634\u06a9\u0633\u062a \u0645\u0648\u0627\u062c\u0647 \u0634\u0648\u062f.<\/p>\n

3. \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc \u067e\u0631\u0648\u0698\u0647 \u0648 \u0633\u0627\u062e\u062a\u0627\u0631 \u067e\u0648\u0634\u0647:<\/p>\n

\u062f\u0627\u06cc\u0631\u06a9\u062a\u0648\u0631\u06cc \u0648 \u0641\u0627\u06cc\u0644 \u0647\u0627\u06cc \u067e\u0631\u0648\u0698\u0647 \u0631\u0627 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u06cc\u062f:<\/p>\n

project-root\/
\n\u251c\u2500\u2500 Dockerfile
\n\u251c\u2500\u2500 .github\/
\n\u2502 \u2514\u2500\u2500 workflows\/
\n\u2502 \u2514\u2500\u2500 ci.yml
\n\u251c\u2500\u2500 src\/
\n\u2502 \u2514\u2500\u2500 app.js
\n\u2514\u2500\u2500 tests\/
\n \u2514\u2500\u2500 app.test.js<\/p>\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

4. \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 (src\/app.js – Node.js):<\/p>\n

\u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0633\u0627\u062f\u0647 Node.js Express.js:<\/p>\n

const express = require(‘express’);
\nconst app = express();
\nconst port = 3000;<\/p>\n

app.get(‘\/’, (req, res) => {
\n res.send(‘Hello from Day 28!’);
\n});<\/p>\n

app.listen(port, () => {
\n console.log(`App listening on port ${port}`);
\n});<\/p>\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

5. \u0622\u0632\u0645\u0627\u06cc\u0634 (tests\/app.test.js – \u0647\u0633\u062a):<\/p>\n

\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Jest \u0628\u0631\u0627\u06cc \u062a\u0633\u062a \/ \u0645\u0633\u06cc\u0631:<\/p>\n

const request = require(‘supertest’);
\nconst app = require(‘..\/src\/app’);<\/p>\n

describe(‘GET \/’, () => {
\n it(‘should respond with Hello from Day 28!’, async () => {
\n const response = await request(app).get(‘\/’);
\n expect(response.status).toBe(200);
\n expect(response.text).toBe(‘Hello from Day 28!’);
\n });
\n});<\/p>\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

6. Dockerfile:<\/p>\n

\u0627\u06cc\u0646 \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0645\u06cc \u0633\u0627\u0632\u062f:<\/p>\n

FROM node:14-alpine
\nWORKDIR \/app
\nCOPY package*.json .\/
\nRUN npm install
\nCOPY . .
\nUSER node
\nEXPOSE 3000
\nCMD [“node”, “app.js”]\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

7. \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0628\u0627 \u0627\u0642\u062f\u0627\u0645\u0627\u062a GitHub (.github\/workflows\/ci.yml):<\/p>\n

\u0627\u06cc\u0646 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0641\u0631\u0622\u06cc\u0646\u062f \u0633\u0627\u062e\u062a\u060c \u062a\u0633\u062a \u0648 \u0627\u0633\u06a9\u0646 \u0631\u0627 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0645\u06cc \u06a9\u0646\u062f:<\/p>\n

name: CI\/CD with Anchore Scan<\/p>\n

on:
\n push:
\n branches:
\n – main<\/p>\n

jobs:
\n build:
\n runs-on: ubuntu-latest
\n steps:
\n – uses: actions\/checkout@v3
\n – name: Build Docker image
\n run: docker build -t myapp:latest .
\n – name: Run tests
\n run: npm test
\n – name: Add image to Anchore #Anchore CLI must be configured (see Section 2)
\n run: anchore-cli image add myapp:latest
\n – name: Wait for Anchore scan
\n run: anchore-cli image wait myapp:latest
\n – name: Check Anchore vulnerabilities
\n run: anchore-cli image vuln myapp:latest all | grep -v ‘OK’
\n if: ${{ steps.CheckAnchoreVulnerabilities.outcome != ‘success’ }}
\n – name: Push to Docker Hub (if successful) #Replace with your Docker Hub details
\n run: docker push docker.io\/[YOUR_DOCKERHUB_USERNAME]\/myapp:latest
\n if: ${{ steps.CheckAnchoreVulnerabilities.outcome == ‘success’ }}<\/p>\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

\u0628\u0647 \u06cc\u0627\u062f \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f: \u062a\u0639\u0648\u06cc\u0636 \u06a9\u0646\u06cc\u062f [YOUR_DOCKERHUB_USERNAME] \u0628\u0627 \u0646\u0627\u0645 \u06a9\u0627\u0631\u0628\u0631\u06cc Docker Hub \u0634\u0645\u0627. \u0634\u0645\u0627 \u0628\u0627\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 Anchore CLI \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06cc\u06a9 \u0631\u0627\u0632 GitHub Actions \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f (\u062a\u062d\u062a \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0645\u062e\u0632\u0646 \u062e\u0648\u062f).<\/p>\n

8. \u0627\u0633\u062a\u0642\u0631\u0627\u0631 (\u0645\u062b\u0627\u0644 Minikube):<\/p>\n

\u067e\u0633 \u0627\u0632 \u0633\u0627\u062e\u062a \u0648 \u0627\u0633\u06a9\u0646 \u0645\u0648\u0641\u0642\u060c \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u06cc\u06a9 deployment.yaml \u0641\u0627\u06cc\u0644:<\/p>\n

apiVersion: apps\/v1
\nkind: Deployment
\nmetadata:
\n name: myapp-deployment
\nspec:
\n replicas: 3
\n selector:
\n matchLabels:
\n app: myapp
\n template:
\n metadata:
\n labels:
\n app: myapp
\n spec:
\n containers:
\n – name: myapp-container
\n image: docker.io\/[YOUR_DOCKERHUB_USERNAME]\/myapp:latest
\n ports:
\n – containerPort: 3000<\/p>\n

\u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/p>\n

\u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/p>\n

9. \u0639\u06cc\u0628 \u06cc\u0627\u0628\u06cc:<\/p>\n

\u0645\u0633\u0627\u0626\u0644 Anchore CLI: \u0645\u0637\u0645\u0626\u0646 \u0634\u0648\u06cc\u062f \u06a9\u0647 CLI \u0628\u0647 \u062f\u0631\u0633\u062a\u06cc \u0646\u0635\u0628 \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u0633\u0646\u0627\u062f Anchore \u0631\u0627 \u0628\u0631\u0627\u06cc \u0639\u06cc\u0628 \u06cc\u0627\u0628\u06cc \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u06cc\u062f.
\n \u062e\u0637\u0627\u0647\u0627\u06cc \u0633\u0627\u062e\u062a: Dockerfile \u0648 \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u0628\u0631\u0627\u06cc \u062e\u0637\u0627\u0647\u0627 \u0628\u0647 \u062f\u0642\u062a \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u06cc\u062f.
\n \u062e\u0637\u0627\u0647\u0627\u06cc \u0627\u0633\u062a\u0642\u0631\u0627\u0631: \u062a\u0627\u06cc\u06cc\u062f \u06a9\u0646\u06cc\u062f deployment.yaml \u0641\u0627\u06cc\u0644 \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Kubernetes.
\n \u06cc\u0627\u0641\u062a\u0647 \u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc: \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0647 \u062a\u0648\u0633\u0637 Anchore \u0631\u0627 \u0628\u0627 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0648\u0627\u0628\u0633\u062a\u06af\u06cc \u0647\u0627 \u06cc\u0627 \u0627\u0639\u0645\u0627\u0644 \u0648\u0635\u0644\u0647 \u0647\u0627 \u0628\u0631\u0637\u0631\u0641 \u06a9\u0646\u06cc\u062f.<\/p>\n

10. \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062c\u0627\u06cc\u06af\u0632\u06cc\u0646 \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631:<\/p>\n

\u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 Anchore \u062f\u0631 \u0627\u06cc\u0646\u062c\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f\u060c \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631\u06cc \u0645\u0627\u0646\u0646\u062f Aqua Security\u060c Snyk \u0648 Trivy \u0642\u0627\u0628\u0644\u06cc\u062a \u0647\u0627\u06cc \u0645\u0634\u0627\u0628\u0647\u06cc \u0631\u0627 \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc \u062f\u0647\u0646\u062f. \u0627\u06cc\u0646 \u062c\u0627\u06cc\u06af\u0632\u06cc\u0646 \u0647\u0627 \u0631\u0627 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0646\u06cc\u0627\u0632\u0647\u0627 \u0648 \u062a\u0631\u062c\u06cc\u062d\u0627\u062a \u062e\u0648\u062f \u06a9\u0627\u0648\u0634 \u06a9\u0646\u06cc\u062f.<\/p>\n

11. \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc:<\/p>\n

\u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u0627\u06cc\u0645\u0646 \u0628\u0631\u0627\u06cc \u062a\u0648\u0633\u0639\u0647 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f. \u0627\u062f\u063a\u0627\u0645 Anchore \u062f\u0631 \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0634\u0645\u0627 \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u0627\u0645\u0646\u06cc\u062a \u0628\u0633\u06cc\u0627\u0631 \u0645\u0647\u0645 \u0627\u0633\u062a. \u0628\u0647 \u06cc\u0627\u062f \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f \u06a9\u0647 \u06a9\u062f \u0648 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0631\u0627 \u0628\u0627 \u0646\u06cc\u0627\u0632\u0647\u0627\u06cc \u062e\u0627\u0635 \u062e\u0648\u062f \u062a\u0637\u0628\u06cc\u0642 \u062f\u0647\u06cc\u062f \u0648 \u0647\u0645\u06cc\u0634\u0647 \u0628\u0647\u062a\u0631\u06cc\u0646 \u0634\u06cc\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u062f\u0631 \u0627\u0648\u0644\u0648\u06cc\u062a \u0642\u0631\u0627\u0631 \u062f\u0647\u06cc\u062f.<\/p>\n

\n

\u0627\u06cc\u0646 \u0645\u0642\u0627\u0644\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u062c\u0627\u0645\u0639 \u0628\u0631\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0633\u0627\u0632\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0631\u0627 \u0634\u0631\u062d \u0645\u06cc \u062f\u0647\u062f.
\u06cc\u06a9 \u067e\u0644\u062a \u0641\u0631\u0645 \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u06cc\u06a9 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0642\u0648\u06cc \u0645\u0646\u0627\u0633\u0628 \u0628\u0631\u0627\u06cc \u0645\u0628\u062a\u062f\u06cc\u0627\u0646\u060c \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u062a\u0648\u0633\u0637 \u200b\u200b\u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f.
\u0648 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0628\u0627 \u062a\u062c\u0631\u0628\u0647 \u0645\u0627 \u0633\u0627\u062e\u062a\u060c \u0622\u0632\u0645\u0627\u06cc\u0634\u060c \u0627\u0633\u06a9\u0646\u060c \u0648 \u0627\u0633\u062a\u0642\u0631\u0627\u0631 \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0631\u0627 \u067e\u0648\u0634\u0634 \u062e\u0648\u0627\u0647\u06cc\u0645 \u062f\u0627\u062f \u0648 \u0628\u0631 \u0628\u0647\u062a\u0631\u06cc\u0646 \u0634\u06cc\u0648\u0647 \u0647\u0627 \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u0622\u0646 \u062a\u0627\u06a9\u06cc\u062f \u0645\u06cc \u06a9\u0646\u06cc\u0645. \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 \u062a\u0645\u0631\u06a9\u0632 Anchore \u0627\u0633\u062a\u060c \u0627\u06cc\u0646 \u0627\u0635\u0648\u0644 \u0628\u0631\u0627\u06cc \u0633\u0627\u06cc\u0631 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0645\u0627\u0646\u0646\u062f Aqua Security\u060c Snyk \u0648 Trivy \u0627\u0639\u0645\u0627\u0644 \u0645\u06cc \u0634\u0648\u062f.<\/p>\n

1. \u0646\u0645\u0627\u06cc \u06a9\u0644\u06cc \u067e\u0631\u0648\u0698\u0647:<\/strong><\/p>\n

\u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u0627\u0633\u06a9\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u062f\u0631 \u06cc\u06a9 \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0627\u062f\u063a\u0627\u0645 \u0645\u06cc \u06a9\u0646\u062f \u062a\u0627 \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u062d\u0627\u0635\u0644 \u0634\u0648\u062f \u06a9\u0647 \u0641\u0642\u0637 \u062a\u0635\u0627\u0648\u06cc\u0631 \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0627\u06cc\u0645\u0646 \u0645\u0633\u062a\u0642\u0631 \u0645\u06cc \u0634\u0648\u0646\u062f.
\u0627\u06cc\u0646 \u0641\u0631\u0622\u06cc\u0646\u062f \u0634\u0627\u0645\u0644:<\/p>\n

    \n
  1. \u062a\u0648\u0633\u0639\u0647 \u0648 \u0622\u0632\u0645\u0627\u06cc\u0634:<\/strong> \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u0628\u0646\u0648\u06cc\u0633\u06cc\u062f\u060c \u0622\u0632\u0645\u0627\u06cc\u0634 \u06a9\u0646\u06cc\u062f \u0648 \u0627\u0635\u0644\u0627\u062d \u06a9\u0646\u06cc\u062f.<\/li>\n
  2. \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u0633\u0627\u0632\u06cc:<\/strong> \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u062f\u0631 \u06cc\u06a9 \u0638\u0631\u0641 Docker \u0628\u0633\u062a\u0647 \u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f.<\/li>\n
  3. \u0627\u0633\u06a9\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc:<\/strong> \u0627\u0632 Anchore \u0628\u0631\u0627\u06cc \u0627\u0633\u06a9\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/li>\n
  4. \u0633\u0627\u062e\u062a \u0648 \u0647\u0644 \u062f\u0627\u062f\u0646 \u062a\u0635\u0648\u06cc\u0631:<\/strong> \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0628\u0633\u0627\u0632\u06cc\u062f \u0648 \u0641\u0642\u0637 \u062f\u0631 \u0635\u0648\u0631\u062a \u0627\u0646\u062c\u0627\u0645 \u0627\u0633\u06a9\u0646 \u0628\u0647 \u06cc\u06a9 \u0631\u062c\u06cc\u0633\u062a\u0631\u06cc (\u0645\u062b\u0644\u0627\u064b Docker Hub) \u0641\u0634\u0627\u0631 \u062f\u0647\u06cc\u062f.<\/li>\n
  5. \u0627\u0633\u062a\u0642\u0631\u0627\u0631:<\/strong> \u062a\u0635\u0648\u06cc\u0631 \u0627\u0645\u0646 \u0631\u0627 \u062f\u0631 \u0645\u062d\u06cc\u0637 \u0647\u062f\u0641 \u062e\u0648\u062f (\u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u062e\u0648\u0634\u0647 Kubernetes\u060c minikube) \u0645\u0633\u062a\u0642\u0631 \u06a9\u0646\u06cc\u062f.<\/li>\n<\/ol>\n

    2. \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc Anchore:<\/strong><\/p>\n

    \u0642\u0628\u0644 \u0627\u0632 \u0634\u0631\u0648\u0639\u060c \u0628\u0647 \u06cc\u06a9 \u0646\u0645\u0648\u0646\u0647 Anchore Enterprise (\u06cc\u0627 \u06cc\u06a9 \u0622\u0632\u0645\u0627\u06cc\u0634 \u0631\u0627\u06cc\u06af\u0627\u0646) \u0646\u06cc\u0627\u0632 \u062f\u0627\u0631\u06cc\u062f. Anchore CLI \u0631\u0627 \u0646\u0635\u0628 \u06a9\u0631\u062f\u0647 \u0648 \u0622\u0646 \u0631\u0627 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f:<\/p>\n

      \n
    1. \u062f\u0627\u0646\u0644\u0648\u062f \u0648 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f:<\/strong> Anchore CLI \u0631\u0627 \u0627\u0632 \u0648\u0628 \u0633\u0627\u06cc\u062a \u0631\u0633\u0645\u06cc Anchore \u062f\u0627\u0646\u0644\u0648\u062f \u06a9\u0646\u06cc\u062f. \u062f\u0633\u062a\u0648\u0631\u0627\u0644\u0639\u0645\u0644 \u0647\u0627\u06cc \u0646\u0635\u0628 \u0628\u0633\u062a\u0647 \u0628\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0639\u0627\u0645\u0644 \u0634\u0645\u0627 \u0645\u062a\u0641\u0627\u0648\u062a \u0627\u0633\u062a.<\/li>\n
    2. \u0627\u06cc\u062c\u0627\u062f \u062d\u0633\u0627\u0628 \u06a9\u0627\u0631\u0628\u0631\u06cc:<\/strong> \u0627\u06af\u0631 \u0642\u0628\u0644\u0627\u064b \u0646\u062f\u0627\u0631\u06cc\u062f \u06cc\u06a9 \u062d\u0633\u0627\u0628 Anchore \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u06cc\u062f.<\/li>\n
    3. \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a:<\/strong> CLI \u0631\u0627 \u0628\u0631\u0627\u06cc \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0628\u0627 \u062d\u0633\u0627\u0628 Anchore \u062e\u0648\u062f \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f. \u0627\u06cc\u0646 \u0645\u0639\u0645\u0648\u0644\u0627\u064b \u0634\u0627\u0645\u0644 \u062a\u0646\u0638\u06cc\u0645 \u06cc\u06a9 \u06a9\u0644\u06cc\u062f API \u06cc\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0631\u0648\u0634\u200c\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u0633\u062a \u06a9\u0647 \u062f\u0631 \u0645\u0633\u062a\u0646\u062f\u0627\u062a Anchore \u062a\u0648\u0636\u06cc\u062d \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a.<\/li>\n
    4. (\u0627\u062e\u062a\u06cc\u0627\u0631\u06cc) \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u062e\u0637 \u0645\u0634\u06cc:<\/strong> \u062f\u0631 \u0631\u0627\u0628\u0637 \u06a9\u0627\u0631\u0628\u0631\u06cc Anchore\u060c \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u06cc\u062f \u062e\u0637\u200c\u0645\u0634\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u062a\u0639\u06cc\u06cc\u0646 \u0622\u0633\u062a\u0627\u0646\u0647\u200c\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062a\u0639\u0631\u06cc\u0641 \u06a9\u0646\u06cc\u062f. \u0627\u06cc\u0646 \u0628\u0647 \u0634\u0645\u0627 \u0627\u0645\u06a9\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f \u0633\u0637\u062d \u0634\u062f\u062a\u06cc \u0631\u0627 \u06a9\u0647 \u062f\u0631 \u0622\u0646 \u0627\u0633\u06a9\u0646 \u0634\u06a9\u0633\u062a \u0645\u06cc \u062e\u0648\u0631\u062f\u060c \u0633\u0641\u0627\u0631\u0634\u06cc \u06a9\u0646\u06cc\u062f. \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u0645\u0645\u06a9\u0646 \u0627\u0633\u062a \u0633\u06cc\u0627\u0633\u062a\u06cc \u0631\u0627 \u062a\u0646\u0638\u06cc\u0645 \u06a9\u0646\u06cc\u062f \u06a9\u0647 \u062f\u0631 \u0635\u0648\u0631\u062a \u06cc\u0627\u0641\u062a\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0628\u0627\u0644\u0627 \u06cc\u0627 \u062d\u06cc\u0627\u062a\u06cc\u060c \u0633\u0627\u062e\u062a \u0628\u0627 \u0634\u06a9\u0633\u062a \u0645\u0648\u0627\u062c\u0647 \u0634\u0648\u062f.<\/li>\n<\/ol>\n

      3. \u0631\u0627\u0647 \u0627\u0646\u062f\u0627\u0632\u06cc \u067e\u0631\u0648\u0698\u0647 \u0648 \u0633\u0627\u062e\u062a\u0627\u0631 \u067e\u0648\u0634\u0647:<\/strong><\/p>\n

      \u062f\u0627\u06cc\u0631\u06a9\u062a\u0648\u0631\u06cc \u0648 \u0641\u0627\u06cc\u0644 \u0647\u0627\u06cc \u067e\u0631\u0648\u0698\u0647 \u0631\u0627 \u0627\u06cc\u062c\u0627\u062f \u06a9\u0646\u06cc\u062f:<\/p>\n

      \n
      project-root\/\n\u251c\u2500\u2500 Dockerfile\n\u251c\u2500\u2500 .github\/\n\u2502   \u2514\u2500\u2500 workflows\/\n\u2502       \u2514\u2500\u2500 ci.yml\n\u251c\u2500\u2500 src\/\n\u2502   \u2514\u2500\u2500 app.js\n\u2514\u2500\u2500 tests\/\n    \u2514\u2500\u2500 app.test.js\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      4. \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 (src\/app.js<\/code> – Node.js):<\/strong><\/p>\n
      \u06cc\u06a9 \u0628\u0631\u0646\u0627\u0645\u0647 \u0633\u0627\u062f\u0647 Node.js Express.js:<\/p>\n
      \n
      const<\/span> express<\/span> =<\/span> require<\/span>(<\/span>'<\/span>express<\/span>'<\/span>);<\/span>\nconst<\/span> app<\/span> =<\/span> express<\/span>();<\/span>\nconst<\/span> port<\/span> =<\/span> 3000<\/span>;<\/span>\n\napp<\/span>.<\/span>get<\/span>(<\/span>'<\/span>\/<\/span>'<\/span>,<\/span> (<\/span>req<\/span>,<\/span> res<\/span>)<\/span> =><\/span> {<\/span>\n  res<\/span>.<\/span>send<\/span>(<\/span>'<\/span>Hello from Day 28!<\/span>'<\/span>);<\/span>\n});<\/span>\n\napp<\/span>.<\/span>listen<\/span>(<\/span>port<\/span>,<\/span> ()<\/span> =><\/span> {<\/span>\n  console<\/span>.<\/span>log<\/span>(<\/span>`App listening on port <\/span>${<\/span>port<\/span>}<\/span>`<\/span>);<\/span>\n});<\/span>\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      5. \u0622\u0632\u0645\u0627\u06cc\u0634 (tests\/app.test.js<\/code> – \u0647\u0633\u062a):<\/strong><\/p>\n
      \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Jest \u0628\u0631\u0627\u06cc \u062a\u0633\u062a \/<\/code> \u0645\u0633\u06cc\u0631:<\/p>\n
      \n
      const<\/span> request<\/span> =<\/span> require<\/span>(<\/span>'<\/span>supertest<\/span>'<\/span>);<\/span>\nconst<\/span> app<\/span> =<\/span> require<\/span>(<\/span>'<\/span>..\/src\/app<\/span>'<\/span>);<\/span>\n\ndescribe<\/span>(<\/span>'<\/span>GET \/<\/span>'<\/span>,<\/span> ()<\/span> =><\/span> {<\/span>\n  it<\/span>(<\/span>'<\/span>should respond with Hello from Day 28!<\/span>'<\/span>,<\/span> async <\/span>()<\/span> =><\/span> {<\/span>\n    const<\/span> response<\/span> =<\/span> await<\/span> request<\/span>(<\/span>app<\/span>).<\/span>get<\/span>(<\/span>'<\/span>\/<\/span>'<\/span>);<\/span>\n    expect<\/span>(<\/span>response<\/span>.<\/span>status<\/span>).<\/span>toBe<\/span>(<\/span>200<\/span>);<\/span>\n    expect<\/span>(<\/span>response<\/span>.<\/span>text<\/span>).<\/span>toBe<\/span>(<\/span>'<\/span>Hello from Day 28!<\/span>'<\/span>);<\/span>\n  });<\/span>\n});<\/span>\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      6. Dockerfile:<\/strong><\/p>\n
      \u0627\u06cc\u0646 \u062a\u0635\u0648\u06cc\u0631 Docker \u0631\u0627 \u0645\u06cc \u0633\u0627\u0632\u062f:<\/p>\n
      \n
      FROM<\/span> node:14-alpine<\/span>\nWORKDIR<\/span> \/app<\/span>\nCOPY<\/span> package*.json .\/<\/span>\nRUN <\/span>npm install<\/span>\nCOPY<\/span> . .<\/span>\nUSER<\/span> node<\/span>\nEXPOSE<\/span> 3000<\/span>\nCMD<\/span> [\"node\", \"app.js\"]<\/span>\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      7. \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0628\u0627 \u0627\u0642\u062f\u0627\u0645\u0627\u062a GitHub (.github\/workflows\/ci.yml):<\/strong><\/p>\n
      \u0627\u06cc\u0646 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0641\u0631\u0622\u06cc\u0646\u062f \u0633\u0627\u062e\u062a\u060c \u062a\u0633\u062a \u0648 \u0627\u0633\u06a9\u0646 \u0631\u0627 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0645\u06cc \u06a9\u0646\u062f:<\/p>\n
      \n
      name<\/span>:<\/span> CI\/CD with Anchore Scan<\/span>\n\non<\/span>:<\/span>\n  push<\/span>:<\/span>\n    branches<\/span>:<\/span>\n      -<\/span> main<\/span>\n\njobs<\/span>:<\/span>\n  build<\/span>:<\/span>\n    runs-on<\/span>:<\/span> ubuntu-latest<\/span>\n    steps<\/span>:<\/span>\n      -<\/span> uses<\/span>:<\/span> actions\/checkout@v3<\/span>\n      -<\/span> name<\/span>:<\/span> Build Docker image<\/span>\n        run<\/span>:<\/span> docker build -t myapp:latest .<\/span>\n      -<\/span> name<\/span>:<\/span> Run tests<\/span>\n        run<\/span>:<\/span> npm test<\/span>\n      -<\/span> name<\/span>:<\/span> Add image to Anchore<\/span> #Anchore CLI must be configured (see Section 2)<\/span>\n        run<\/span>:<\/span> anchore-cli image add myapp:latest<\/span>\n      -<\/span> name<\/span>:<\/span> Wait for Anchore scan<\/span>\n        run<\/span>:<\/span> anchore-cli image wait myapp:latest<\/span>\n      -<\/span> name<\/span>:<\/span> Check Anchore vulnerabilities<\/span>\n        run<\/span>:<\/span> anchore-cli image vuln myapp:latest all | grep -v 'OK'<\/span>\n        if<\/span>:<\/span> ${{ steps.CheckAnchoreVulnerabilities.outcome != 'success' }}<\/span>\n      -<\/span> name<\/span>:<\/span> Push to Docker Hub (if successful)<\/span> #Replace with your Docker Hub details<\/span>\n        run<\/span>:<\/span> docker push docker.io\/[YOUR_DOCKERHUB_USERNAME]\/myapp:latest<\/span>\n        if<\/span>:<\/span> ${{ steps.CheckAnchoreVulnerabilities.outcome == 'success' }}<\/span>\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      \u0628\u0647 \u06cc\u0627\u062f \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f<\/strong>: \u062a\u0639\u0648\u06cc\u0636 \u06a9\u0646\u06cc\u062f [YOUR_DOCKERHUB_USERNAME]<\/code> \u0628\u0627 \u0646\u0627\u0645 \u06a9\u0627\u0631\u0628\u0631\u06cc Docker Hub \u0634\u0645\u0627. \u0634\u0645\u0627 \u0628\u0627\u06cc\u062f \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647 Anchore CLI \u062e\u0648\u062f \u0631\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06cc\u06a9 \u0631\u0627\u0632 GitHub Actions \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u06a9\u0646\u06cc\u062f (\u062a\u062d\u062a \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0645\u062e\u0632\u0646 \u062e\u0648\u062f).<\/p>\n
      8. \u0627\u0633\u062a\u0642\u0631\u0627\u0631 (\u0645\u062b\u0627\u0644 Minikube):<\/strong><\/p>\n
      \u067e\u0633 \u0627\u0632 \u0633\u0627\u062e\u062a \u0648 \u0627\u0633\u06a9\u0646 \u0645\u0648\u0641\u0642\u060c \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u06cc\u06a9 deployment.yaml<\/code> \u0641\u0627\u06cc\u0644:<\/p>\n
      \n
      apiVersion<\/span>:<\/span> apps\/v1<\/span>\nkind<\/span>:<\/span> Deployment<\/span>\nmetadata<\/span>:<\/span>\n  name<\/span>:<\/span> myapp-deployment<\/span>\nspec<\/span>:<\/span>\n  replicas<\/span>:<\/span> 3<\/span>\n  selector<\/span>:<\/span>\n    matchLabels<\/span>:<\/span>\n      app<\/span>:<\/span> myapp<\/span>\n  template<\/span>:<\/span>\n    metadata<\/span>:<\/span>\n      labels<\/span>:<\/span>\n        app<\/span>:<\/span> myapp<\/span>\n    spec<\/span>:<\/span>\n      containers<\/span>:<\/span>\n      -<\/span> name<\/span>:<\/span> myapp-container<\/span>\n        image<\/span>:<\/span> docker.io\/[YOUR_DOCKERHUB_USERNAME]\/myapp:latest<\/span>\n        ports<\/span>:<\/span>\n        -<\/span> containerPort<\/span>:<\/span> 3000<\/span>\n<\/code><\/pre>\n
      \n
      \n    \u0648\u0627\u0631\u062f \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n
          \u0627\u0632 \u062d\u0627\u0644\u062a \u062a\u0645\u0627\u0645 \u0635\u0641\u062d\u0647 \u062e\u0627\u0631\u062c \u0634\u0648\u06cc\u062f<\/title>\n    \n<\/svg><\/p>\n<\/div>\n<\/div>\n<\/div>\n
      9. \u0639\u06cc\u0628 \u06cc\u0627\u0628\u06cc:<\/strong><\/p>\n
        \n
      •   \u0645\u0633\u0627\u0626\u0644 Anchore CLI:<\/strong> \u0645\u0637\u0645\u0626\u0646 \u0634\u0648\u06cc\u062f \u06a9\u0647 CLI \u0628\u0647 \u062f\u0631\u0633\u062a\u06cc \u0646\u0635\u0628 \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc \u0634\u062f\u0647 \u0627\u0633\u062a. \u0627\u0633\u0646\u0627\u062f Anchore \u0631\u0627 \u0628\u0631\u0627\u06cc \u0639\u06cc\u0628 \u06cc\u0627\u0628\u06cc \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u06cc\u062f.<\/li>\n
      •   \u062e\u0637\u0627\u0647\u0627\u06cc \u0633\u0627\u062e\u062a:<\/strong> Dockerfile \u0648 \u06a9\u062f \u0628\u0631\u0646\u0627\u0645\u0647 \u0631\u0627 \u0628\u0631\u0627\u06cc \u062e\u0637\u0627\u0647\u0627 \u0628\u0647 \u062f\u0642\u062a \u0628\u0631\u0631\u0633\u06cc \u06a9\u0646\u06cc\u062f.<\/li>\n
      •   \u062e\u0637\u0627\u0647\u0627\u06cc \u0627\u0633\u062a\u0642\u0631\u0627\u0631:<\/strong> \u062a\u0627\u06cc\u06cc\u062f \u06a9\u0646\u06cc\u062f deployment.yaml<\/code> \u0641\u0627\u06cc\u0644 \u0648 \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc Kubernetes.<\/li>\n
      •   \u06cc\u0627\u0641\u062a\u0647 \u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc:<\/strong>  \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0647 \u062a\u0648\u0633\u0637 Anchore \u0631\u0627 \u0628\u0627 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0648\u0627\u0628\u0633\u062a\u06af\u06cc \u0647\u0627 \u06cc\u0627 \u0627\u0639\u0645\u0627\u0644 \u0648\u0635\u0644\u0647 \u0647\u0627 \u0628\u0631\u0637\u0631\u0641 \u06a9\u0646\u06cc\u062f.<\/li>\n<\/ul>\n
        10. \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062c\u0627\u06cc\u06af\u0632\u06cc\u0646 \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631:<\/strong><\/p>\n
        \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 Anchore \u062f\u0631 \u0627\u06cc\u0646\u062c\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc \u0634\u0648\u062f\u060c \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631\u06cc \u0645\u0627\u0646\u0646\u062f Aqua Security\u060c Snyk \u0648 Trivy \u0642\u0627\u0628\u0644\u06cc\u062a \u0647\u0627\u06cc \u0645\u0634\u0627\u0628\u0647\u06cc \u0631\u0627 \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc \u062f\u0647\u0646\u062f. \u0627\u06cc\u0646 \u062c\u0627\u06cc\u06af\u0632\u06cc\u0646 \u0647\u0627 \u0631\u0627 \u0628\u0631 \u0627\u0633\u0627\u0633 \u0646\u06cc\u0627\u0632\u0647\u0627 \u0648 \u062a\u0631\u062c\u06cc\u062d\u0627\u062a \u062e\u0648\u062f \u06a9\u0627\u0648\u0634 \u06a9\u0646\u06cc\u062f.<\/p>\n
        11. \u0646\u062a\u06cc\u062c\u0647 \u06af\u06cc\u0631\u06cc:<\/strong><\/p>\n
        \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u0627\u06cc\u0645\u0646 \u0628\u0631\u0627\u06cc \u062a\u0648\u0633\u0639\u0647 \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f. \u0627\u062f\u063a\u0627\u0645 Anchore \u062f\u0631 \u062e\u0637 \u0644\u0648\u0644\u0647 CI\/CD \u0634\u0645\u0627 \u0628\u0631\u0627\u06cc \u062d\u0641\u0638 \u0627\u0645\u0646\u06cc\u062a \u0628\u0633\u06cc\u0627\u0631 \u0645\u0647\u0645 \u0627\u0633\u062a. \u0628\u0647 \u06cc\u0627\u062f \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f \u06a9\u0647 \u06a9\u062f \u0648 \u062a\u0646\u0638\u06cc\u0645\u0627\u062a \u0631\u0627 \u0628\u0627 \u0646\u06cc\u0627\u0632\u0647\u0627\u06cc \u062e\u0627\u0635 \u062e\u0648\u062f \u062a\u0637\u0628\u06cc\u0642 \u062f\u0647\u06cc\u062f \u0648 \u0647\u0645\u06cc\u0634\u0647 \u0628\u0647\u062a\u0631\u06cc\u0646 \u0634\u06cc\u0648\u0647 \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0631\u0627 \u062f\u0631 \u0627\u0648\u0644\u0648\u06cc\u062a \u0642\u0631\u0627\u0631 \u062f\u0647\u06cc\u062f.<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"
        Summarize this content to 400 words in Persian Lang \u0627\u06cc\u0646 \u0645\u0642\u0627\u0644\u0647 \u06cc\u06a9 \u0631\u0648\u06cc\u06a9\u0631\u062f \u062c\u0627\u0645\u0639 \u0628\u0631\u0627\u06cc \u0627\u06cc\u0645\u0646 \u0633\u0627\u0632\u06cc \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631\u06cc \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 Anchore \u0631\u0627 \u0634\u0631\u062d \u0645\u06cc \u062f\u0647\u062f.\u06cc\u06a9 \u067e\u0644\u062a \u0641\u0631\u0645 \u0627\u0645\u0646\u06cc\u062a\u06cc \u06a9\u0627\u0646\u062a\u06cc\u0646\u0631 \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u06cc\u06a9 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0642\u0648\u06cc \u0645\u0646\u0627\u0633\u0628 \u0628\u0631\u0627\u06cc \u0645\u0628\u062a\u062f\u06cc\u0627\u0646\u060c \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u062a\u0648\u0633\u0637 \u200b\u200b\u0631\u0627 \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f.\u0648 \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u06af\u0627\u0646 \u0628\u0627 \u062a\u062c\u0631\u0628\u0647 \u0645\u0627 \u0633\u0627\u062e\u062a\u060c \u0622\u0632\u0645\u0627\u06cc\u0634\u060c …<\/p>\n","protected":false},"author":2,"featured_media":78875,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[339],"tags":[],"class_list":["post-78874","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-dev"],"_links":{"self":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/78874","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/comments?post=78874"}],"version-history":[{"count":0,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/posts\/78874\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media\/78875"}],"wp:attachment":[{"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/media?parent=78874"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/categories?post=78874"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nabfollower.com\/blog\/wp-json\/wp\/v2\/tags?post=78874"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}