From 3752da6ebed66a7b5ae07062e50daa22e5845fe0 Mon Sep 17 00:00:00 2001
From: khwezi <khwezi@litecharms.co.za>
Date: Sat, 4 Apr 2026 15:58:12 +0200
Subject: [PATCH 1/2] fixed dotnet step image

---
 .drone.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.drone.yml b/.drone.yml
index 8e55f2d..5a19041 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -8,7 +8,7 @@ clone:
 
 steps:
   - name: build-test-publish
-    image: nexus.khongisa.co.za/mcr.microsoft.com/dotnet/sdk:10.0
+    image: nexus.khongisa.co.za/sdk:10.0
     commands:
       - dotnet restore --source https://nexus.khongisa.co.za/repository/nuget-group/index.json --no-cache
       - dotnet build --configuration Release --no-restore

From e140319a0507036d4ffbb7d93730b599bcfbe714 Mon Sep 17 00:00:00 2001
From: khwezi <khwezi@litecharms.co.za>
Date: Sat, 4 Apr 2026 15:58:58 +0200
Subject: [PATCH 2/2] Removed comments

---
 .drone.yml | 9 ---------
 1 file changed, 9 deletions(-)

diff --git a/.drone.yml b/.drone.yml
index 5a19041..ee55fb2 100644
--- a/.drone.yml
+++ b/.drone.yml
@@ -2,7 +2,6 @@ kind: pipeline
 type: docker
 name: cicd-pipeline
 
-# Let Drone handle the clone automatically; it's faster and cleaner.
 clone:
   depth: 1
 
@@ -15,8 +14,6 @@ steps:
       - dotnet test --configuration Release --no-build
       - dotnet publish --configuration Release --no-build
 
-  # --- PACKAGE STAGE ---
-  # We build the image locally first so we can scan it BEFORE pushing
   - name: docker-build
     image: plugins/docker
     settings:
@@ -27,9 +24,7 @@ steps:
         from_secret: docker_username
       password:
         from_secret: docker_password
-      # This builds the image and loads it into the local cache for scanning
       dry_run: true 
-      # Set to false once you verify the scan passes, or see the step below
 
   - name: docker-push
     image: plugins/docker
@@ -45,7 +40,6 @@ steps:
   - name: vulnerability-scan
     image: aquasec/trivy:0.50.1
     environment:
-      # Trivy needs these to pull the image from your Nexus to scan it
       TRIVY_USERNAME:
         from_secret: docker_username
       TRIVY_PASSWORD:
@@ -53,7 +47,6 @@ steps:
     commands:
       - trivy image --exit-code 1 --severity CRITICAL nexus.khongisa.co.za/webapitest:${DRONE_BUILD_NUMBER}
 
-  # --- DEPLOY STAGE ---
   - name: deploy-uat
     image: appleboy/drone-ssh
     settings:
@@ -64,10 +57,8 @@ steps:
       password: 
         from_secret: ssh_password
       script:
-        # Login to Nexus on the remote server
         - echo $DOCKER_PASSWORD | docker login nexus.khongisa.co.za -u $DOCKER_USERNAME --password-stdin
         - docker pull nexus.khongisa.co.za/webapitest:latest
-        # Standard Linux cleanup
         - docker stop webapi 2>/dev/null || true
         - docker rm webapi 2>/dev/null || true
         - docker run -d --name webapi --restart unless-stopped -e ASPNETCORE_ENVIRONMENT=Development -p 4000:8081 nexus.khongisa.co.za/webapitest:latest