[Snyk] Security upgrade alpine from 3.15.0 to 3.16.7 #17
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Push/PR pipeline | |
| on: | |
| pull_request: | |
| push: | |
| branches: | |
| - main | |
| jobs: | |
| build: | |
| name: Build integration for | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| goos: [ linux ] | |
| goarch: [ amd64, arm64, arm ] | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - uses: actions/setup-go@v2 | |
| with: | |
| go-version: '1.17' | |
| - uses: actions/cache@v2 | |
| with: | |
| path: | | |
| ~/.cache/go-build | |
| ~/go/pkg/mod | |
| key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }} | |
| restore-keys: | | |
| ${{ runner.os }}-go- | |
| - name: Build integration | |
| env: | |
| GOOS: ${{ matrix.goos }} | |
| GOARCH: ${{ matrix.goarch }} | |
| run: | | |
| make compile | |
| chart-lint: | |
| name: Helm chart Lint | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 10 | |
| steps: | |
| - uses: actions/checkout@v2 | |
| with: | |
| fetch-depth: 0 | |
| - uses: helm/[email protected] | |
| - name: Lint charts | |
| run: ct --config .github/ct.yaml lint --debug | |
| - name: Check for changed installable charts | |
| id: list-changed | |
| run: | | |
| changed=$(ct --config .github/ct.yaml list-changed) | |
| if [[ -n "$changed" ]]; then | |
| echo "::set-output name=changed::true" | |
| fi | |
| - name: Run helm unit tests | |
| if: steps.list-changed.outputs.changed == 'true' | |
| run: | | |
| helm plugin install https://github.com/quintush/helm-unittest | |
| for chart in $(ct --config .github/ct.yaml list-changed); do | |
| if [ -d "$chart/tests/" ]; then | |
| helm unittest -3 $chart | |
| else | |
| echo "No unit tests found for $chart" | |
| fi | |
| done | |
| test: | |
| name: Run tests | |
| needs: [ build ] | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - uses: actions/setup-go@v2 | |
| with: | |
| go-version: '1.17' | |
| - uses: actions/cache@v2 | |
| with: | |
| path: | | |
| ~/.cache/go-build | |
| ~/go/pkg/mod | |
| key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }} | |
| restore-keys: | | |
| ${{ runner.os }}-go- | |
| - name: Run tests | |
| run: make test | |
| static-analysis: | |
| name: Static analysis and linting | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - uses: newrelic/newrelic-infra-checkers@v1 | |
| - name: Semgrep | |
| uses: returntocorp/semgrep-action@v1 | |
| with: | |
| auditOn: push | |
| - name: golangci-lint | |
| uses: golangci/golangci-lint-action@v2 | |
| continue-on-error: ${{ github.event_name != 'pull_request' }} | |
| with: | |
| only-new-issues: true | |
| codespell: | |
| name: Codespell | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 5 | |
| steps: | |
| - uses: actions/checkout@v2 | |
| - name: Codespell test | |
| uses: codespell-project/actions-codespell@master |