Bump dependancy golang.org/x/[email protected] to address vuln #969
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: On release publish | |
on: | |
push: | |
pull_request: | |
release: | |
types: [published] | |
jobs: | |
gen_version: | |
name: Generate software version | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v4 | |
# on release, we want to use release.tag_name for the version | |
- name: Set tegola version (use release.tag_name) | |
if: github.event_name == 'release' | |
run: echo ${{ github.event.release.tag_name }} > ${{ github.workspace }}/version.txt | |
# when it's not a release build use the commit hash for the version tag | |
- name: Set tegola version (use commit hash) | |
if: github.event_name != 'release' | |
run: echo ${{ github.sha }} | cut -c1-7 > ${{ github.workspace }}/version.txt | |
- name: Upload build artifact version | |
uses: actions/upload-artifact@v4 | |
with: | |
name: version | |
path: ${{ github.workspace }}/version.txt | |
# when it's not a release, but we want to perform an action on a new push/pr to default branch | |
# we need the default branch ref, which in case of tegola changes with the version | |
- name: Get tegola default branch ref | |
run: | | |
DEFAULT_BRANCH=$(git remote show origin | awk '/HEAD branch/ {print $NF}') | |
echo "DEFAULT_BRANCH=$DEFAULT_BRANCH" >> $GITHUB_ENV | |
echo "refs/heads/$DEFAULT_BRANCH" > ${{ github.workspace }}/default-branch-ref.txt | |
- name: Upload build artifacts default branch ref | |
uses: actions/upload-artifact@v4 | |
with: | |
name: default-branch-ref | |
path: ${{ github.workspace }}/default-branch-ref.txt | |
build_ui: | |
name: Build for embedded ui | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v4 | |
- name: Set up Go | |
uses: actions/setup-go@v5 | |
with: | |
go-version-file: 'go.mod' | |
check-latest: true | |
- name: Build embedded UI | |
run: | | |
pushd ${GITHUB_WORKSPACE}/server | |
go generate ./... | |
popd | |
- name: Upload build artifact version | |
uses: actions/upload-artifact@v4 | |
with: | |
name: ui | |
path: ${{ github.workspace }}/ui/dist | |
build_linux_amd64: | |
name: Build for Linux (amd64) | |
needs: [gen_version,build_ui] | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
- name: Build for Linux | |
env: | |
# build architecture | |
GOOS: linux | |
run: | | |
cd cmd/tegola | |
go build -mod vendor -ldflags "-w -X ${BUILD_PKG}.Version=${VERSION} -X ${BUILD_PKG}.GitRevision=${GIT_REVISION} -X ${BUILD_PKG}.GitBranch=${GIT_BRANCH}" | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "tegola" | |
release_archive_name: "tegola_linux_amd64" | |
build_linux_arm: | |
name: Build for Linux (arm64) | |
needs: [gen_version,build_ui] | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
- name: Build for Linux | |
env: | |
# build architecture | |
GOOS: linux | |
GOARCH: arm64 | |
run: | | |
cd cmd/tegola | |
go build -mod vendor -ldflags "-w -X ${BUILD_PKG}.Version=${VERSION} -X ${BUILD_PKG}.GitRevision=${GIT_REVISION} -X ${BUILD_PKG}.GitBranch=${GIT_BRANCH}" | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "tegola" | |
release_archive_name: "tegola_linux_arm64" | |
build_tegola_lambda_amd64: | |
name: Build tegola_lambda on Amazon Linux (amd64) | |
needs: [gen_version,build_ui] | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
go: false | |
- name: Build tegola_lambda | |
uses: ./.github/actions/amazon-linux-build-action | |
env: | |
GOARCH: amd64 # set the target build architecture | |
with: | |
args: '...' | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "bootstrap" | |
cmd_subdir: "tegola_lambda" | |
release_archive_name: "tegola_lambda_amd64" | |
build_tegola_lambda_arm64: | |
name: Build tegola_lambda on Amazon Linux (arm64) | |
needs: [gen_version,build_ui] | |
runs-on: ubuntu-22.04 | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
go: false | |
- name: Build tegola_lambda | |
uses: ./.github/actions/amazon-linux-build-action | |
env: | |
GOARCH: arm64 # set the target build architecture | |
with: | |
args: '...' | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "bootstrap" | |
cmd_subdir: "tegola_lambda" | |
release_archive_name: "tegola_lambda_arm64" | |
build_macos: | |
name: Build for MacOS | |
needs: [gen_version,build_ui] | |
runs-on: macos-latest | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
- name: Build for Darwin | |
env: | |
GOOS: darwin | |
run: | | |
cd cmd/tegola | |
go build -mod vendor -ldflags "-w -X ${BUILD_PKG}.Version=${VERSION} -X ${BUILD_PKG}.GitRevision=${GIT_REVISION} -X ${BUILD_PKG}.GitBranch=${GIT_BRANCH}" | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "tegola" | |
release_archive_name: "tegola_darwin_amd64" | |
build_docker: | |
name: Build Docker image and publish to Docker Hub | |
needs: [gen_version,build_ui] | |
runs-on: ubuntu-22.04 | |
env: | |
DOCKERHUB_ORG: gospatial | |
DOCKERHUB_REPO: tegola | |
BUILD_ARGS: | | |
BUILDPKG=${BUILD_PKG} | |
VER=${VERSION} | |
BRANCH=${GIT_BRANCH} | |
REVISION=${GIT_REVISION} | |
steps: | |
- name: Check out code | |
uses: actions/checkout@v4 | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@v3 | |
- name: Set up Docker Buildx | |
uses: docker/setup-buildx-action@v3 | |
- name: Login to Docker Hub | |
uses: docker/login-action@v3 | |
with: | |
username: ${{ secrets.DOCKERHUB_USERNAME }} | |
password: ${{ secrets.DOCKERHUB_TOKEN }} | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
# Buildx can only output single-platform result image to docker | |
# so for testing purposes we are building only for linux/amd64 | |
# Later when we publish the image we build for linux/amd64 and linux/arm64 | |
# Note that linux/amd64 is cached, so when we build images for publishing | |
# we are not rebuilding linux/amd64 | |
- name: Build docker image for testing | |
uses: docker/build-push-action@v5 | |
with: | |
context: . | |
load: true | |
platforms: linux/amd64 | |
build-args: ${{ env.BUILD_ARGS }} | |
tags: ${{ env.DOCKERHUB_ORG }}/${{ env.DOCKERHUB_REPO }}:${{ env.VERSION }} | |
- name: Test image build | |
run: | | |
docker run --rm ${DOCKERHUB_ORG}/${DOCKERHUB_REPO}:${VERSION} version | |
- name: Publish Docker edge container | |
if: github.ref == env.DEFAULT_BRANCH_REF | |
uses: docker/build-push-action@v5 | |
with: | |
context: . | |
push: true | |
tags: ${{ env.DOCKERHUB_ORG }}/${{ env.DOCKERHUB_REPO }}:edge | |
platforms: linux/amd64,linux/arm64 | |
build-args: ${{ env.BUILD_ARGS }} | |
- name: Publish Docker container | |
if: github.event_name == 'release' | |
uses: docker/build-push-action@v5 | |
with: | |
context: . | |
push: true | |
tags: ${{ env.DOCKERHUB_ORG }}/${{ env.DOCKERHUB_REPO }}:${{ env.VERSION }},${{ env.DOCKERHUB_ORG }}/${{ env.DOCKERHUB_REPO }}:latest | |
platforms: linux/amd64,linux/arm64 | |
build-args: ${{ env.BUILD_ARGS }} | |
build_windows: | |
name: Build for Windows | |
needs: [gen_version,build_ui] | |
runs-on: windows-latest | |
steps: | |
- name: Check out actions | |
uses: actions/checkout@v4 | |
- name: Setup env | |
uses: ./.github/actions/tegola-setup-env | |
with: | |
ui: true | |
- name: Build for Windows | |
run: | | |
cd cmd\tegola | |
go build -ldflags "-w -X $Env:BUILD_PKG.Version=$Env:VERSION -X $Env:BUILD_PKG.GitRevision=$Env:GIT_REVISION -X $Env:BUILD_PKG.GitBranch=$Env:GIT_BRANCH" | |
- name: Upload artifact | |
uses: ./.github/actions/upload-artifact | |
with: | |
github_token: ${{ secrets.GITHUB_TOKEN }} | |
artifact_name: "tegola" | |
release_archive_name: "tegola_windows_amd64" |