pipeline { agent any environment { REGISTRY = "myharbor.local:80" APP_NAME = "ecommerce-app" IMAGE_NAME = "ecommerce-backend" IMAGE_TAG = "${REGISTRY}/library/${IMAGE_NAME}:${env.BRANCH_NAME}-${env.BUILD_NUMBER}" NAMESPACE = "ecommerce" // Pointing to the internal nerdctl/buildkit socket BUILDKIT_HOST = "unix:///run/buildkit/buildkitd.sock" } stages { stage('Checkout') { steps { checkout scm } } stage('Build Image') { steps { script { // nerdctl needs to know which containerd socket to use sh "docker build -t ${IMAGE_TAG} ." } } } stage('Push to Harbor') { steps { script { withCredentials([usernamePassword(credentialsId: 'harbor-creds', passwordVariable: 'PASS', usernameVariable: 'USER')]) { sh "docker login ${REGISTRY} -u ${USER} -p ${PASS}" sh "docker push ${IMAGE_TAG}" } } } } stage('Inject to K8s Cache') { steps { script { // Since your agent is already using the containerd socket, // the image might already be in the cache, but this ensures it. sh "docker save ${IMAGE_TAG} | sudo ctr -n k8s.io images import -" } } } stage('Deploy to K8s') { steps { script { withCredentials([file(credentialsId: 'k8s-config', variable: 'KUBECONFIG')]) { sh "kubectl --kubeconfig=${KUBECONFIG} patch deployment ${APP_NAME} -n ${NAMESPACE} --patch '{\"spec\": {\"template\": {\"spec\": {\"containers\": [{\"name\": \"${APP_NAME}\", \"image\": \"${IMAGE_TAG}\", \"imagePullPolicy\": \"Never\"}]}}}}'" sh "kubectl --kubeconfig=${KUBECONFIG} rollout status deployment/${APP_NAME} -n ${NAMESPACE}" } } } } } }