-
Notifications
You must be signed in to change notification settings - Fork 108
143 lines (114 loc) · 3.43 KB
/
build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
name: Build
on:
push:
branches: [develop]
tags-ignore:
- '**'
pull_request:
release:
types: [published]
jobs:
Verify:
runs-on: ubuntu-latest
env:
GOPATH: /home/runner/go
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Set Go version
id: go_version
run: |
GO_VERSION=$(cat .palantir/go-version | sed 's/^go//' )
echo "version=${GO_VERSION}" >> $GITHUB_OUTPUT
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: ${{ steps.go_version.outputs.version }}
- name: Cache Godel assets
uses: actions/cache@v4
with:
path: ~/.godel
key: ${{ runner.os }}-godel-${{ hashFiles('godelw', 'godel/config/godel.yml') }}
restore-keys: |
${{ runner.os }}-godel-
- name: Verify
run: ./godelw verify --apply=false
Dist:
runs-on: ubuntu-latest
permissions:
contents: write
env:
GOPATH: /home/runner/go
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Set Go version
id: go_version
run: |
GO_VERSION=$(cat .palantir/go-version | sed 's/^go//' )
echo "version=${GO_VERSION}" >> $GITHUB_OUTPUT
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: ${{ steps.go_version.outputs.version }}
- name: Cache Godel assets
uses: actions/cache@v4
with:
path: ~/.godel
key: ${{ runner.os }}-godel-${{ hashFiles('godelw', 'godel/config/godel.yml') }}
restore-keys: |
${{ runner.os }}-godel-
- name: Set up Node
uses: actions/setup-node@v4
with:
node-version: 20
- name: Cache node_modules
uses: actions/cache@v4
with:
path: node_modules
key: ${{ runner.os }}-node-modules-${{ hashFiles('yarn.lock') }}
restore-keys: |
${{ runner.os }}-node-modules-
- name: Install frontend dependencies
run: yarn install
- name: Build frontend
run: yarn run build:production
- name: Build distribution
run: ./godelw dist
- name: Build Docker image
run: ./godelw docker build --verbose
- name: Archive distribution
uses: actions/upload-artifact@v4
with:
name: dist
path: |
build/policy-bot/*/bin/*.tgz
#
# Steps after this point should only run when publishing
# Include them here to avoid exporting the Docker container as an artifact
#
- name: Login to Docker Hub
if: ${{ github.event_name == 'push' || github.event_name == 'release' }}
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}
- name: Push snapshot image to Docker Hub
if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/develop' }}
run: ./godelw docker push --tags=snapshot
- name: Push release image to Docker Hub
if: ${{ github.event_name == 'release' }}
run: ./godelw docker push --tags=latest,version
- name: Publish release assets
if: ${{ github.event_name == 'release' }}
run: ./godelw publish github --add-v-prefix --api-url=${GITHUB_API_URL} --user=palantir --repository=policy-bot --token=${{ secrets.GITHUB_TOKEN }}
ci-all:
runs-on: ubuntu-latest
needs:
- Verify
- Dist
steps:
- name: Complete
run: exit 0