Update pre-commit hook renovatebot/pre-commit-hooks to v37.36.1 #1520
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
# yamllint disable rule:line-length | |
name: Tests | |
on: # yamllint disable-line rule:truthy | |
push: | |
branches: | |
- master | |
- release* | |
tags: | |
- "*" | |
pull_request: | |
branches: | |
- master | |
- release* | |
workflow_dispatch: | |
env: | |
GO_VERSION: "1.21" | |
KIND_VERSION: "0.20.0" | |
GO111MODULE: "on" | |
IMAGE: "quay.io/backube/snapscheduler" | |
jobs: | |
lint: | |
name: Lint | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Checkout source | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Install pre-commit | |
run: | | |
python -m pip install --user pre-commit | |
echo "PYHASH=$(python -VV | sha256sum | cut -d' ' -f1)" >> $GITHUB_ENV | |
- name: Enable cache for pre-commit hooks | |
uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2 | |
with: | |
path: ~/.cache/pre-commit | |
key: pre-commit|${{ env.PYHASH }}|${{ hashFiles('.pre-commit-config.yaml') }} | |
restore-keys: | | |
pre-commit|${{ env.PYHASH }} | |
pre-commit| | |
- name: Run pre-commit checks | |
run: | | |
pre-commit run -a | |
pre-commit gc | |
codescan: | |
name: CodeQL scan | |
runs-on: ubuntu-22.04 | |
permissions: | |
security-events: write | |
steps: | |
- name: Checkout source | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Install Go | |
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0 | |
with: | |
go-version: ${{ env.GO_VERSION }} | |
- uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2 | |
with: | |
path: | | |
~/.cache/go-build | |
~/go/pkg/mod | |
key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }} | |
restore-keys: | | |
${{ runner.os }}-go- | |
- name: Initialize CodeQL | |
uses: github/codeql-action/init@49abf0ba24d0b7953cb586944e918a0b92074c80 # v2.22.4 | |
- name: Download modules | |
run: go mod download | |
- name: Build operator | |
run: make build | |
- name: Perform CodeQL Analysis | |
uses: github/codeql-action/analyze@49abf0ba24d0b7953cb586944e918a0b92074c80 # v2.22.4 | |
build: | |
name: Build | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Checkout source | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Install Go | |
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0 | |
with: | |
go-version: ${{ env.GO_VERSION }} | |
- name: Build operator container | |
run: make docker-build IMAGE=${IMAGE} | |
- name: Export container image | |
run: docker save -o /tmp/image.tar ${IMAGE} | |
- name: Save container as artifact | |
uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3 | |
with: | |
name: container | |
path: /tmp/image.tar | |
test: | |
name: Unit test | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Checkout source | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Install Go | |
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0 | |
with: | |
go-version: ${{ env.GO_VERSION }} | |
- uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2 | |
with: | |
path: | | |
~/.cache/go-build | |
~/go/pkg/mod | |
key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }} | |
restore-keys: | | |
${{ runner.os }}-go- | |
- name: Ensure go module files are up-to-date | |
run: | | |
go mod tidy | |
diff=$(git diff --color -- go.mod go.sum) | |
if [ -n "$diff" ]; then | |
echo "$diff" | |
echo "***** go modules are out-of-date *****" | |
echo "***** run 'go mod tidy' *****" | |
exit 1 | |
fi | |
- name: Run unit tests | |
run: make test | |
- name: Upload coverage | |
uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # v3.1.4 | |
with: | |
token: ${{ secrets.CODECOV_TOKEN }} | |
file: cover.out | |
e2e: | |
name: End-to-end | |
needs: [build, test] | |
runs-on: ubuntu-22.04 | |
strategy: | |
fail-fast: false | |
matrix: | |
# There must be kindest/node images for these versions | |
# See: https://hub.docker.com/r/kindest/node/tags?page=1&ordering=last_updated | |
KUBERNETES_VERSIONS: | |
- "1.20.15" | |
- "1.21.14" | |
- "1.22.17" | |
- "1.23.17" | |
- "1.24.15" | |
- "1.25.11" | |
- "1.26.6" | |
- "1.27.3" | |
- "1.28.0" | |
env: | |
KUBECONFIG: /tmp/kubeconfig | |
KUBERNETES_VERSION: ${{ matrix.KUBERNETES_VERSIONS }} | |
steps: | |
# Bash as default shell is needed by the kuttl tests | |
- name: Set bash as default shell | |
run: | | |
echo 'APT::Acquire::Retries "5";' | sudo tee /etc/apt/apt.conf.d/80-retries | |
sudo apt-get update | |
sudo DEBIAN_FRONTEND=noninteractive apt-get install -y bash | |
sudo ln -s bash /bin/sh.bash | |
sudo mv /bin/sh.bash /bin/sh | |
- name: Checkout source | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
- name: Install Helm | |
run: make helm | |
- name: Install kubectl | |
run: | | |
curl -LO "https://storage.googleapis.com/kubernetes-release/release/v${KUBERNETES_VERSION}/bin/linux/amd64/kubectl" | |
sudo install ./kubectl /usr/local/bin/ | |
kubectl version --client | |
kubectl version --client | grep -q ${KUBERNETES_VERSION} | |
- name: Install kind | |
run: | | |
curl -L -o kind https://github.com/kubernetes-sigs/kind/releases/download/v${KIND_VERSION}/kind-linux-amd64 | |
sudo install ./kind /usr/local/bin && rm kind | |
kind version | |
kind version | grep -q ${KIND_VERSION} | |
- name: Create Kubernetes cluster | |
run: | | |
./hack/setup-kind-cluster.sh "${KUBERNETES_VERSION}" | |
- name: Load container artifact | |
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 | |
with: | |
name: container | |
path: /tmp | |
- name: Import container image | |
run: | | |
docker load -i /tmp/image.tar | |
docker inspect ${IMAGE} | |
docker tag ${IMAGE} ${IMAGE}:ci-build | |
kind load docker-image "${IMAGE}:ci-build" | |
- name: Start operator | |
run: | | |
bin/helm install --create-namespace -n backube-snapscheduler \ | |
--set image.tagOverride=ci-build \ | |
--set metrics.disableAuth=true \ | |
--wait --timeout=300s \ | |
snapscheduler ./helm/snapscheduler | |
kubectl -n backube-snapscheduler get all | |
- name: Run e2e tests | |
run: make test-e2e | |
# This is a dummy job that can be used to determine success of CI: | |
# - by Mergify instead of having to list a bunch of other jobs | |
# - by the push jobs to ensure all pre-reqs pass before ANY containers are | |
# pushed. | |
# - by branch protection so it doesn't need to be updated each time the kube | |
# versions in the matrix change | |
e2e-success: | |
name: Successful e2e tests | |
needs: [build, e2e, lint] | |
runs-on: ubuntu-latest | |
steps: | |
- name: Success | |
run: echo "Previous steps were successful" | |
push: | |
name: Push container to registry | |
needs: [e2e-success] | |
if: > | |
(github.event_name == 'push' || github.event_name == 'workflow_dispatch') && | |
(github.ref == 'refs/heads/master' || startsWith(github.ref, 'refs/tags/v')) | |
runs-on: ubuntu-latest | |
steps: | |
- name: Load container artifact | |
uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2 | |
with: | |
name: container | |
path: /tmp | |
- name: Import container image | |
run: | | |
docker load -i /tmp/image.tar | |
docker inspect ${IMAGE} | |
- name: Login to registry | |
# If the registry server is specified in the image name, we use that. | |
# If the server isn't in the image name, default to docker.io | |
run: | | |
[[ "${IMAGE}" =~ ^([^/]+)/[^/]+/[^/]+ ]] && REGISTRY="${BASH_REMATCH[1]}" || REGISTRY="docker.io" | |
echo "Attempting docker login to: ${REGISTRY}" | |
echo "${{ secrets.REGISTRY_PASSWORD }}" | docker login -u "${{ secrets.REGISTRY_USERNAME }}" --password-stdin ${REGISTRY} | |
- name: Push to registry (latest) | |
if: > | |
(github.event_name == 'push' || github.event_name == 'workflow_dispatch') && | |
github.ref == 'refs/heads/master' | |
run: | | |
docker push "${IMAGE}" | |
- name: Push to registry (version tag) | |
if: > | |
(github.event_name == 'push' || github.event_name == 'workflow_dispatch') && | |
startsWith(github.ref, 'refs/tags/v') | |
run: | | |
[[ "${{ github.ref }}" =~ ^refs/tags/v([0-9]+\..*) ]] || exit 0 | |
TAG="${BASH_REMATCH[1]}" | |
echo "Pushing to $TAG" | |
docker tag "${IMAGE}" "${IMAGE}:${TAG}" | |
docker push "${IMAGE}:${TAG}" |