2020-05-10 22:08:36 +02:00
|
|
|
name: build
|
|
|
|
|
|
|
|
|
|
on:
|
|
|
|
|
push:
|
|
|
|
|
branches:
|
2021-11-12 22:23:32 +02:00
|
|
|
- 'main'
|
2020-05-10 22:08:36 +02:00
|
|
|
pull_request:
|
2022-09-20 04:48:20 +02:00
|
|
|
paths:
|
|
|
|
|
- 'go.*'
|
|
|
|
|
- '**/*.go'
|
|
|
|
|
- 'Taskfile.yml'
|
|
|
|
|
- 'Dockerfile'
|
|
|
|
|
- '.github/workflows/build.yml'
|
2020-05-10 22:08:36 +02:00
|
|
|
|
2021-12-16 18:43:11 +02:00
|
|
|
permissions:
|
2022-09-19 02:31:33 +02:00
|
|
|
contents: read
|
2021-12-16 18:43:11 +02:00
|
|
|
|
2020-05-10 22:08:36 +02:00
|
|
|
jobs:
|
2022-09-09 16:36:15 +02:00
|
|
|
govulncheck:
|
2022-09-11 20:32:23 +02:00
|
|
|
uses: caarlos0/meta/.github/workflows/govulncheck.yml@main
|
2022-09-22 21:00:05 +02:00
|
|
|
with:
|
|
|
|
|
cache: true
|
|
|
|
|
go-version: '>=1.19.1'
|
2022-09-11 20:32:23 +02:00
|
|
|
semgrep:
|
|
|
|
|
uses: caarlos0/meta/.github/workflows/semgrep.yml@main
|
|
|
|
|
ruleguard:
|
|
|
|
|
uses: caarlos0/meta/.github/workflows/ruleguard.yml@main
|
2022-09-22 21:00:05 +02:00
|
|
|
with:
|
|
|
|
|
cache: true
|
|
|
|
|
go-version: '>=1.19.1'
|
|
|
|
|
args: '-disable largeloopcopy'
|
2022-09-19 02:31:33 +02:00
|
|
|
test:
|
2020-05-10 22:08:36 +02:00
|
|
|
runs-on: ubuntu-latest
|
2020-11-28 21:26:37 +02:00
|
|
|
env:
|
|
|
|
|
DOCKER_CLI_EXPERIMENTAL: "enabled"
|
2020-05-10 22:08:36 +02:00
|
|
|
steps:
|
2022-10-05 14:38:34 +02:00
|
|
|
- uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3
|
2020-06-16 14:37:11 +02:00
|
|
|
with:
|
|
|
|
|
fetch-depth: 0
|
2022-03-28 14:36:15 +02:00
|
|
|
- uses: arduino/setup-task@ca745e18916de727f841ec824ac20a615f1cddea # v1
|
2021-10-13 01:14:15 +02:00
|
|
|
with:
|
2021-11-14 16:54:31 +02:00
|
|
|
version: 3.x
|
2021-10-13 01:14:15 +02:00
|
|
|
repo-token: ${{ secrets.GITHUB_TOKEN }}
|
2022-05-06 20:58:34 +02:00
|
|
|
- uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 # v1
|
2022-05-06 19:37:18 +02:00
|
|
|
- uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6 # v1
|
2021-11-14 16:54:31 +02:00
|
|
|
- name: setup-snapcraft
|
2021-03-19 13:48:37 +02:00
|
|
|
# FIXME: the mkdirs are a hack for https://github.com/goreleaser/goreleaser/issues/1715
|
2020-05-10 23:52:25 +02:00
|
|
|
run: |
|
2021-01-04 18:02:44 +02:00
|
|
|
sudo apt-get update
|
2020-05-10 23:52:25 +02:00
|
|
|
sudo apt-get -yq --no-install-suggests --no-install-recommends install snapcraft
|
2021-03-19 13:48:37 +02:00
|
|
|
mkdir -p $HOME/.cache/snapcraft/download
|
|
|
|
|
mkdir -p $HOME/.cache/snapcraft/stage-packages
|
2022-08-24 15:02:10 +02:00
|
|
|
- uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3
|
2020-05-10 22:08:36 +02:00
|
|
|
with:
|
2022-09-22 21:00:05 +02:00
|
|
|
go-version: '>=1.19.1'
|
2022-09-09 16:36:15 +02:00
|
|
|
cache: true
|
2022-09-26 15:24:30 +02:00
|
|
|
- uses: sigstore/cosign-installer@v2.7.0
|
2022-08-19 14:11:54 +02:00
|
|
|
- uses: anchore/sbom-action/download-syft@v0.12.0
|
2021-11-14 16:54:31 +02:00
|
|
|
- name: setup-validate-krew-manifest
|
2022-04-14 04:00:29 +02:00
|
|
|
run: go install sigs.k8s.io/krew/cmd/validate-krew-manifest@latest
|
2022-06-12 04:25:04 +02:00
|
|
|
- name: setup-tparse
|
|
|
|
|
run: go install github.com/mfridman/tparse@latest
|
|
|
|
|
- name: setup
|
|
|
|
|
run: |
|
|
|
|
|
task setup
|
|
|
|
|
task build
|
|
|
|
|
- name: test
|
2022-06-24 14:33:34 +02:00
|
|
|
run: ./scripts/test.sh
|
2022-09-20 15:15:30 +02:00
|
|
|
- uses: codecov/codecov-action@d9f34f8cd5cb3b3eb79b3e4b5dae3a16df499a70 # v3
|
2020-05-10 23:52:25 +02:00
|
|
|
with:
|
|
|
|
|
file: ./coverage.txt
|
2021-11-14 16:54:31 +02:00
|
|
|
- run: ./goreleaser check
|
|
|
|
|
- run: git diff
|
