2019-10-02 22:50:00 +02:00
|
|
|
name: "CI"
|
|
|
|
on:
|
|
|
|
push:
|
|
|
|
branches:
|
|
|
|
- master
|
|
|
|
pull_request:
|
|
|
|
|
|
|
|
env:
|
|
|
|
TEST_IMAGE_NAME: hadolint-action:${{github.sha}}
|
|
|
|
|
|
|
|
jobs:
|
|
|
|
lint:
|
2020-12-06 10:46:26 +01:00
|
|
|
name: Lint
|
|
|
|
runs-on: ubuntu-20.04
|
|
|
|
container: pipelinecomponents/hadolint:0.10.1
|
2019-10-02 22:50:00 +02:00
|
|
|
steps:
|
2020-12-06 10:46:26 +01:00
|
|
|
- uses: actions/checkout@v2
|
2019-10-02 22:50:00 +02:00
|
|
|
- name: Run hadolint
|
|
|
|
run: hadolint Dockerfile
|
|
|
|
|
2020-12-06 10:46:26 +01:00
|
|
|
build-test:
|
|
|
|
name: Build and Test
|
|
|
|
runs-on: ubuntu-20.04
|
|
|
|
needs: ["lint"]
|
2019-10-02 22:50:00 +02:00
|
|
|
steps:
|
2020-12-06 10:46:26 +01:00
|
|
|
- uses: actions/checkout@v2
|
2019-10-02 22:50:00 +02:00
|
|
|
- name: Build Docker image
|
|
|
|
run: docker build -t $TEST_IMAGE_NAME .
|
|
|
|
|
|
|
|
- name: Run Structure tests
|
2020-12-06 10:46:26 +01:00
|
|
|
uses: brpaz/structure-tests-action@v1.1.2
|
2019-10-02 22:50:00 +02:00
|
|
|
with:
|
2020-12-06 10:46:26 +01:00
|
|
|
image: ${{ env.TEST_IMAGE_NAME }}
|
2019-10-02 22:50:00 +02:00
|
|
|
|
2020-12-06 10:46:26 +01:00
|
|
|
integration-tests:
|
2019-10-02 22:50:00 +02:00
|
|
|
name: Integration Tests
|
2020-12-06 10:46:26 +01:00
|
|
|
runs-on: ubuntu-20.04
|
|
|
|
needs: build-test
|
2019-10-02 22:50:00 +02:00
|
|
|
steps:
|
2020-12-06 10:46:26 +01:00
|
|
|
- uses: actions/checkout@v2
|
2019-10-02 22:58:07 +02:00
|
|
|
|
2021-05-08 13:08:16 +02:00
|
|
|
- name: Run integration test 1
|
2019-10-02 22:58:07 +02:00
|
|
|
uses: ./
|
2019-10-02 22:50:00 +02:00
|
|
|
with:
|
|
|
|
dockerfile: testdata/Dockerfile
|
|
|
|
|
2021-05-08 13:08:16 +02:00
|
|
|
- name: Run integration test 2 - ignore a rule
|
|
|
|
# This step is supposed to print out an info level rule violation
|
|
|
|
# but completely ignore the two rules listed below
|
|
|
|
uses: ./
|
|
|
|
with:
|
|
|
|
dockerfile: testdata/warning.Dockerfile
|
2021-11-18 13:09:22 +01:00
|
|
|
ignore: 'DL3014,DL3008'
|
|
|
|
no-fail: true
|
2021-05-08 13:08:16 +02:00
|
|
|
|
|
|
|
- name: Run integration test 3 - set failure threshold
|
|
|
|
# This step will print out an info level rule violation, but not fail
|
|
|
|
# because of the high failure threshold.
|
|
|
|
uses: ./
|
|
|
|
with:
|
|
|
|
dockerfile: testdata/info.Dockerfile
|
|
|
|
failure-threshold: warning
|
|
|
|
|
|
|
|
- name: Run integration test 4 - output format
|
|
|
|
# This step will never fail, but will print out rule violations as json.
|
|
|
|
uses: ./
|
|
|
|
with:
|
|
|
|
dockerfile: testdata/warning.Dockerfile
|
|
|
|
failure-threshold: error
|
|
|
|
format: json
|
|
|
|
|
2021-11-18 13:09:22 +01:00
|
|
|
- name: Run integration test 5 - output format
|
2021-05-08 13:08:16 +02:00
|
|
|
# This step will never fail, but will print out rule violations.
|
2022-03-31 09:57:07 +02:00
|
|
|
id: hadolint5
|
2021-05-08 13:08:16 +02:00
|
|
|
uses: ./
|
|
|
|
with:
|
|
|
|
dockerfile: testdata/warning.Dockerfile
|
|
|
|
config: testdata/hadolint.yaml
|
|
|
|
|
2022-03-31 09:57:07 +02:00
|
|
|
- name: Run integration test 6 - verify results output parameter
|
|
|
|
# This step will never fail, but will print out the results from step5
|
2022-03-31 10:08:14 +02:00
|
|
|
run: echo "${{ steps.hadolint5.outputs.results }}"
|
2022-03-31 09:57:07 +02:00
|
|
|
|
2022-03-31 10:31:29 +02:00
|
|
|
- name: Update Pull Request
|
|
|
|
uses: actions/github-script@v6
|
|
|
|
if: github.event_name == 'pull_request'
|
|
|
|
with:
|
|
|
|
script: |
|
|
|
|
const output = `
|
|
|
|
#### Hadolint: \`${{ steps.hadolint.outcome }}\`
|
|
|
|
_output from integration test 5_
|
|
|
|
\`\`\`
|
|
|
|
${{ steps.hadolint5.outputs.results }}
|
|
|
|
\`\`\`
|
|
|
|
`;
|
|
|
|
|
|
|
|
github.rest.issues.createComment({
|
|
|
|
issue_number: context.issue.number,
|
|
|
|
owner: context.repo.owner,
|
|
|
|
repo: context.repo.repo,
|
|
|
|
body: output
|
|
|
|
})
|
|
|
|
|
2022-03-24 15:36:08 +01:00
|
|
|
#- name: Run integration test 6 - output to file
|
|
|
|
# # This step will never fail, but will print out rule violations.
|
|
|
|
# uses: ./
|
|
|
|
# with:
|
|
|
|
# dockerfile: testdata/warning.Dockerfile
|
|
|
|
# format: sarif
|
|
|
|
# output-file: report.sarif
|
2021-11-18 13:09:22 +01:00
|
|
|
|
2019-10-02 22:50:00 +02:00
|
|
|
release:
|
|
|
|
if: github.event_name == 'push' && github.ref == 'refs/heads/master'
|
|
|
|
name: Release
|
2020-12-06 10:46:26 +01:00
|
|
|
runs-on: ubuntu-20.04
|
|
|
|
needs: integration-tests
|
2019-10-02 22:50:00 +02:00
|
|
|
steps:
|
2020-12-06 10:46:26 +01:00
|
|
|
- uses: actions/checkout@v2
|
|
|
|
- uses: cycjimmy/semantic-release-action@v2
|
|
|
|
with:
|
|
|
|
extra_plugins: |
|
|
|
|
@semantic-release/git
|
2019-10-02 22:50:00 +02:00
|
|
|
env:
|
|
|
|
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
|