Increase scanner pool safety; fix panics and data races #2400
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Copyright 2024 Chainguard, Inc. | |
| # SPDX-License-Identifier: Apache-2.0 | |
| name: Go Tests | |
| on: | |
| push: | |
| branches: | |
| - "main" | |
| pull_request: | |
| branches: | |
| - "main" | |
| permissions: | |
| contents: read | |
| jobs: | |
| test: | |
| if: ${{ github.repository }} == 'chainguard-dev/malcontent' | |
| runs-on: mal-ubuntu-latest-8-core | |
| container: | |
| image: cgr.dev/chainguard/wolfi-base@sha256:eeb70e74e2ac07d3c80a30150bf473970c8b51a57f06daef3e4d065ac52489bc | |
| options: >- | |
| --cap-add DAC_OVERRIDE | |
| --cap-add SETGID | |
| --cap-add SETUID | |
| --cap-drop ALL | |
| --cgroupns private | |
| --cpu-shares=8192 | |
| --memory-swappiness=0 | |
| --security-opt no-new-privileges | |
| --ulimit core=0 | |
| --ulimit nofile=1024:1024 | |
| --ulimit nproc=4096:4096 | |
| steps: | |
| - name: Install dependencies | |
| run: | | |
| apk update | |
| apk add curl findutils git go nodejs upx xz yara-x-compat | |
| - name: Checkout code | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - name: Trust repository | |
| run: git config --global --add safe.directory "$GITHUB_WORKSPACE" | |
| - name: Unit tests | |
| run: | | |
| make test | |
| integration: | |
| if: ${{ github.repository }} == 'chainguard-dev/malcontent' | |
| runs-on: mal-ubuntu-latest-8-core | |
| container: | |
| image: cgr.dev/chainguard/wolfi-base@sha256:eeb70e74e2ac07d3c80a30150bf473970c8b51a57f06daef3e4d065ac52489bc | |
| options: >- | |
| --cap-add DAC_OVERRIDE | |
| --cap-add SETGID | |
| --cap-add SETUID | |
| --cap-drop ALL | |
| --cgroupns private | |
| --cpu-shares=8192 | |
| --memory-swappiness=0 | |
| --security-opt no-new-privileges | |
| --ulimit core=0 | |
| --ulimit nofile=1024:1024 | |
| --ulimit nproc=4096:4096 | |
| steps: | |
| - name: Install dependencies | |
| run: | | |
| apk update | |
| apk add curl findutils git go nodejs upx xz yara-x-compat | |
| - name: Checkout code | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - name: Trust repository | |
| run: git config --global --add safe.directory "$GITHUB_WORKSPACE" | |
| - name: Integration tests | |
| run: | | |
| make integration |