12. Now we are going to add the following file into our GitLab repository - mydockerfile.df (which is a test Dockerfile, that will be analysed) and a configuration file for the GitLab CI/CD process called .gitlab-cicd. - Note the period in its name.
YAML configuration file contains instructions on running our three tools - Hadolint, Dockle и Trivy, which will analyse the Dockerfile and an image, passed int the DOCKERFILE environment variable.
You can also scan saved images from .tar files but you will need to add specific parameters for the tools in the YAML file. Feel free to use your own Dockerfile and image.
13. After you have added the files on the CI/CD → Pipelines page you will see the process of execution.