chore(deps): update aquasecurity/trivy-action action to v0.16.1 #2862
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Lint and Test Charts | |
on: pull_request | |
jobs: | |
codespell: | |
name: Check spelling | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v2 | |
- uses: codespell-project/actions-codespell@master | |
with: | |
check_filenames: true | |
check_hidden: true | |
skip: ./.git | |
ignore_words_list: enver | |
lint-test: | |
name: Lint and test charts | |
runs-on: ubuntu-latest | |
outputs: | |
charts-changed: ${{ steps.changed.outputs.charts }} | |
bundle-changed: ${{ steps.changed.outputs.bundle }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v2 | |
with: | |
fetch-depth: 0 | |
- uses: actions/setup-python@v2 | |
- uses: helm/[email protected] | |
- uses: azure/setup-helm@v3 | |
with: | |
version: 'v3.0.0' | |
- name: Set up helm-unittest | |
run: helm plugin install https://github.com/helm-unittest/helm-unittest | |
- name: Lint charts | |
run: ct lint --config .github/ct-lint.yaml | |
- name: Run unit tests | |
run: | | |
for chart in $(ct list-changed --config .github/ct-lint.yaml); do | |
if [ -d "$chart/tests/" ]; then | |
helm unittest $chart | |
fi | |
done | |
- name: Check for changed installable charts | |
id: changed | |
run: | | |
set -x | |
charts=$(ct list-changed --config .github/ct-install.yaml) | |
if [[ -n "$charts" ]]; then | |
echo "::set-output name=charts::true" | |
fi | |
if [[ -n "$(echo -n "$charts" | grep charts/nri-bundle)" ]]; then | |
echo "::set-output name=bundle::true" | |
fi | |
install-test: | |
name: Test chart installability | |
runs-on: ubuntu-latest | |
if: ${{ needs.lint-test.outputs.charts-changed == 'true' }} | |
needs: [ lint-test ] | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v2 | |
with: | |
fetch-depth: 0 | |
- uses: actions/setup-python@v2 | |
- uses: helm/[email protected] | |
- uses: azure/setup-helm@v3 | |
with: | |
version: 'v3.0.0' | |
- name: Install Minikube | |
uses: manusa/[email protected] | |
with: | |
minikube version: v1.31.2 | |
kubernetes version: v1.27.7 | |
github token: ${{ secrets.GITHUB_TOKEN }} | |
driver: docker | |
start args: "--container-runtime=containerd" | |
- name: Create test ns | |
run: kubectl create ns ct | |
- name: Test install charts | |
run: ct install --namespace ct --config .github/ct-install.yaml | |
- name: Test upgrade charts | |
run: ct install --namespace ct --config .github/ct-install.yaml --upgrade | |
bundle-integrity: | |
name: Test nri-bundle dependencies has the same version of the common-library | |
runs-on: ubuntu-latest | |
if: ${{ needs.lint-test.outputs.bundle-changed == 'true' }} | |
needs: [ lint-test ] | |
steps: | |
- uses: actions/checkout@v2 | |
- uses: azure/setup-helm@v3 | |
with: | |
version: 'v3.0.0' | |
- name: Add helm repositories | |
run: | | |
yq '.chart-repos[]' .github/ct-lint.yaml | while read line; do | |
repo_name=$(cut -d= -f1 <<<"$line"); | |
repo_url=$(cut -d= -f2- <<<"$line"); | |
helm repo add "$repo_name" "$repo_url"; | |
done | |
- name: Build nri-bundle dependencies | |
run: helm dependency update ./charts/nri-bundle | |
- name: Decompress nri-bundle and all its dependencies recursively | |
run: | | |
while [ `find charts/nri-bundle -name \*.tgz -or -name \*.tar.gz | wc -l` -gt 0 ]; do | |
find charts/nri-bundle -name \*.tgz -or -name \*.tar.gz | while read line; do | |
echo "Decompressing $line..." | |
tar xzf "$line" -C $(dirname "$line") | |
echo "Removing $line..." | |
rm "$line" | |
done | |
done | |
- name: Find versions of the common library | |
run: | | |
( | |
echo CHART NAME: common-library VERSION | |
find charts/nri-bundle -name Chart.yaml | \ | |
xargs yq eval-all --no-doc '{ .name: (.dependencies | map(select(contains({"name": "common-library"}))) | .[].version ) }' | \ | |
tee versions.txt; | |
) | column -t -s: | |
echo "" | |
echo Versions of the common library detected: | |
cut -d\ -f2 versions.txt | sort -u | |
[ $(cut -d\ -f2 versions.txt | sort -u | wc -l) -eq 1 ] || exit 1 | |
bundle-dependencies-check: | |
name: Test the bundle dependency conditions | |
runs-on: ubuntu-latest | |
if: ${{ needs.lint-test.outputs.bundle-changed == 'true' }} | |
needs: [ lint-test ] | |
steps: | |
- uses: actions/checkout@v2 | |
- uses: azure/setup-helm@v3 | |
with: | |
version: 'v3.0.0' | |
- name: Add helm repositories | |
run: | | |
yq '.chart-repos[]' .github/ct-lint.yaml | while read line; do | |
repo_name=$(cut -d= -f1 <<<"$line"); | |
repo_url=$(cut -d= -f2- <<<"$line"); | |
helm repo add "$repo_name" "$repo_url"; | |
done | |
- name: Build nri-bundle dependencies | |
run: helm dependency update ./charts/nri-bundle | |
- name: Run dependencies check | |
run: ./scripts/check-bundle-dependencies.sh |