feat: Add validation for docker-cmd-file #9252
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build | |
on: | |
push: | |
pull_request: | |
workflow_dispatch: | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.event.number || github.ref }} | |
cancel-in-progress: true | |
env: | |
NODE_VERSION: 20 | |
RENOVATE_VERSION: 37.203.3 # renovate: datasource=docker depName=renovate packageName=ghcr.io/renovatebot/renovate | |
jobs: | |
commitlint: | |
runs-on: ubuntu-latest | |
if: ${{ github.event_name != 'pull_request' || github.repository_owner != github.event.pull_request.head.repo.owner.login }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
fetch-depth: 0 | |
show-progress: false | |
filter: blob:none # we don't need all blobs, only the full tree | |
- name: Lint commit messages | |
uses: wagoid/commitlint-github-action@5ce82f5d814d4010519d15f0552aec4f17a1e1fe # v5.4.5 | |
continue-on-error: true | |
lint: | |
runs-on: ubuntu-latest | |
if: ${{ github.event_name != 'pull_request' || github.repository_owner != github.event.pull_request.head.repo.owner.login }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
show-progress: false | |
- name: enable corepack | |
run: corepack enable | |
- name: Setup node | |
uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2 | |
with: | |
node-version: ${{ env.NODE_VERSION }} | |
cache: pnpm | |
- name: enable corepack | |
run: corepack enable | |
- name: Install project | |
run: pnpm install --frozen-lockfile | |
- name: Lint | |
run: pnpm lint | |
e2e: | |
runs-on: ubuntu-latest | |
if: ${{ github.event_name != 'pull_request' || github.repository_owner != github.event.pull_request.head.repo.owner.login }} | |
strategy: | |
fail-fast: false | |
matrix: | |
configurationFile: [example/renovate-config.js, example/renovate.json] | |
steps: | |
- name: Checkout | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
show-progress: false | |
- name: enable corepack | |
run: corepack enable | |
- name: Setup node | |
uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2 | |
with: | |
node-version: ${{ env.NODE_VERSION }} | |
cache: pnpm | |
- name: enable corepack | |
run: corepack enable | |
- name: Install project | |
run: pnpm install --frozen-lockfile | |
- name: Build | |
run: pnpm build | |
- name: Configure renovate token | |
run: | | |
if [[ "${RENOVATE_TOKEN}" != "" ]]; then | |
echo "RENOVATE_TOKEN=${RENOVATE_TOKEN}" >> $GITHUB_ENV | |
else | |
echo "RENOVATE_TOKEN=${GITHUB_TOKEN}" >> $GITHUB_ENV | |
fi | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
RENOVATE_TOKEN: ${{ secrets.RENOVATE_TOKEN }} | |
- name: Renovate test | |
uses: ./ | |
env: | |
LOG_LEVEL: debug | |
with: | |
configurationFile: ${{ matrix.configurationFile }} | |
renovate-version: ${{ env.RENOVATE_VERSION }} | |
- name: Renovate test with entrypoint | |
uses: ./ | |
env: | |
LOG_LEVEL: debug | |
with: | |
configurationFile: ${{ matrix.configurationFile }} | |
renovate-version: ${{ env.RENOVATE_VERSION }} | |
docker-cmd-file: example/entrypoint.sh | |
docker-user: root | |
release: | |
needs: [lint, commitlint, e2e] | |
runs-on: ubuntu-latest | |
steps: | |
- name: Setup Git user | |
shell: bash | |
run: | | |
git config --global core.autocrlf false | |
git config --global core.symlinks true | |
git config --global user.email '[email protected]' | |
git config --global user.name 'Renovate Bot' | |
- name: Checkout | |
uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 | |
with: | |
fetch-depth: 0 # required for semantic release | |
ref: 'release' | |
show-progress: false | |
filter: blob:none # we don't need all blobs, only the full tree | |
- name: fetch pr | |
if: ${{github.event_name == 'pull_request'}} | |
run: git fetch origin +${{ github.sha }}:${{ github.ref }} | |
- name: Merge main | |
id: merge | |
run: | | |
git merge --no-ff -Xtheirs -m 'skip: merge (${{ github.sha }}) [skip release]' ${{ github.sha }} | |
commit=$(git rev-parse HEAD) | |
- name: enable corepack | |
run: corepack enable | |
- name: Setup node | |
uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2 | |
with: | |
node-version: ${{ env.NODE_VERSION }} | |
cache: pnpm | |
- name: enable corepack | |
run: corepack enable | |
- name: Install project | |
run: pnpm install --frozen-lockfile | |
- name: Push release branch | |
run: git push origin release:release | |
if: ${{ github.ref_name == github.event.repository.default_branch }} | |
- name: Release | |
run: | | |
# override for semantic-release | |
export GITHUB_REF=refs/heads/release GITHUB_SHA=${{ steps.merge.outputs.commit }} | |
pnpm release | |
if: ${{ github.ref_name == github.event.repository.default_branch }} | |
env: | |
GITHUB_TOKEN: ${{ github.token }} |