mirror of
https://github.com/hadolint/hadolint-action.git
synced 2024-08-16 10:09:53 +02:00
98fb3f8040
- Upgrade to Hadolint 2.8.0, enabling the SARIF formatter - Expand config options to reflect more of those regularly available with Hadolint including `no-fail` and `failure-threshold` options - Enable the creation of report files Breaking change: The list of ignored rules is now comma separated and not space separated. fixes: #23 fixes: #36 fixes: #42
99 lines
2.7 KiB
YAML
99 lines
2.7 KiB
YAML
name: "CI"
|
|
on:
|
|
push:
|
|
branches:
|
|
- master
|
|
pull_request:
|
|
|
|
env:
|
|
TEST_IMAGE_NAME: hadolint-action:${{github.sha}}
|
|
|
|
jobs:
|
|
lint:
|
|
name: Lint
|
|
runs-on: ubuntu-20.04
|
|
container: pipelinecomponents/hadolint:0.10.1
|
|
steps:
|
|
- uses: actions/checkout@v2
|
|
- name: Run hadolint
|
|
run: hadolint Dockerfile
|
|
|
|
build-test:
|
|
name: Build and Test
|
|
runs-on: ubuntu-20.04
|
|
needs: ["lint"]
|
|
steps:
|
|
- uses: actions/checkout@v2
|
|
- name: Build Docker image
|
|
run: docker build -t $TEST_IMAGE_NAME .
|
|
|
|
- name: Run Structure tests
|
|
uses: brpaz/structure-tests-action@v1.1.2
|
|
with:
|
|
image: ${{ env.TEST_IMAGE_NAME }}
|
|
|
|
integration-tests:
|
|
name: Integration Tests
|
|
runs-on: ubuntu-20.04
|
|
needs: build-test
|
|
steps:
|
|
- uses: actions/checkout@v2
|
|
|
|
- name: Run integration test 1
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/Dockerfile
|
|
|
|
- name: Run integration test 2 - ignore a rule
|
|
# This step is supposed to print out an info level rule violation
|
|
# but completely ignore the two rules listed below
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/warning.Dockerfile
|
|
ignore: 'DL3014,DL3008'
|
|
no-fail: true
|
|
|
|
- name: Run integration test 3 - set failure threshold
|
|
# This step will print out an info level rule violation, but not fail
|
|
# because of the high failure threshold.
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/info.Dockerfile
|
|
failure-threshold: warning
|
|
|
|
- name: Run integration test 4 - output format
|
|
# This step will never fail, but will print out rule violations as json.
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/warning.Dockerfile
|
|
failure-threshold: error
|
|
format: json
|
|
|
|
- name: Run integration test 5 - output format
|
|
# This step will never fail, but will print out rule violations.
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/warning.Dockerfile
|
|
config: testdata/hadolint.yaml
|
|
|
|
- name: Run integration test 6 - output to file
|
|
# This step will never fail, but will print out rule violations.
|
|
uses: ./
|
|
with:
|
|
dockerfile: testdata/warning.Dockerfile
|
|
format: sarif
|
|
output-file: /report.sarif
|
|
|
|
release:
|
|
if: github.event_name == 'push' && github.ref == 'refs/heads/master'
|
|
name: Release
|
|
runs-on: ubuntu-20.04
|
|
needs: integration-tests
|
|
steps:
|
|
- uses: actions/checkout@v2
|
|
- uses: cycjimmy/semantic-release-action@v2
|
|
with:
|
|
extra_plugins: |
|
|
@semantic-release/git
|
|
env:
|
|
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
|