Skip to content
Back to pull request #25

build(deps): Bump com.github.gmazzo.buildconfig from 5.1.0 to 5.2.0 #140

Sign in to view logs

build(deps): Bump com.github.gmazzo.buildconfig from 5.1.0 to 5.2.0

build(deps): Bump com.github.gmazzo.buildconfig from 5.1.0 to 5.2.0 #140

Workflow file for this run

.github/workflows/build.yml at 65ac4cc
name: Build
on:
pull_request:
paths-ignore:
- '**-validation.yml'
- '**.*ignore'
- '**.md'
- '**.txt'
- '**/pr-**.yml'
- '**dependabot.yml'
push:
paths-ignore:
- '**-validation.yml'
- '**.*ignore'
- '**.md'
- '**.txt'
- '**/pr-**.yml'
- '**dependabot.yml'
env:
CI: true
BUILD_NUMBER: ${{ github.run_number }}
SCM_TAG: ${{ github.sha }}
#GRADLE_OPTS: "-Dorg.gradle.daemon=false"
GRADLE_BUILD_ACTION_CACHE_DEBUG_ENABLED: true
DEPENDENCY_GRAPH_INCLUDE_CONFIGURATIONS: "^(?!(classpath)).*"
DEPENDENCY_GRAPH_INCLUDE_PROJECTS: "^:(?!(buildSrc|test-)).*"
jobs:
buildAndCheck:
name: 'Build and check'
timeout-minutes: 25
runs-on: 'macos-latest'
if: ${{ !contains(github.event.head_commit.message, 'ci skip') }}
permissions:
contents: write
security-events: write
# We appear to need write permission for both pull-requests and
# issues in order to post a comment to a pull request.
pull-requests: write
issues: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 # v2.6.1
with:
disable-sudo: true
egress-policy: audit
- name: Checkout
uses: actions/checkout@v4
- name: 'Set up JDK 21'
uses: actions/setup-java@v4
with:
distribution: 'temurin'
java-version: '21'
- name: 'Cached KMP things (Konan, Node, Yarn, Binaryen)'
uses: actions/cache@v3
with:
path: |
~/.konan
~/.gradle/yarn
~/.gradle/nodejs
~/.gradle/binaryen
hashFiles('**/gradle/libs.versions.toml')
key: ${{ runner.os }}-kmp-${{ hashFiles('**/*.gradle.kts', '**/gradle-wrapper.properties', '**/gradle/libs.versions.toml') }}
#restore-keys: ${{ runner.os }}-kmp-
- name: Setup Gradle
uses: gradle/gradle-build-action@v2
with:
gradle-home-cache-cleanup: true
cache-read-only: ${{ github.ref != 'refs/heads/main' && github.ref != 'refs/heads/dev' }}
dependency-graph: ${{ github.ref == format('refs/heads/{0}', github.event.repository.default_branch) && 'generate-and-submit' || 'disabled'}}
# TODO: If it's a "build(deps): ..." commit, then run the dependency review actions,
# amend the `dependencyGuardBaseline` and `kotlinUpgradeYarnLock` task results
- name: 'Build and check plugin itself'
run: ./gradlew build assemble check --continue --stacktrace --scan
- name: Upload sarif report (Detekt)
if: (success() || failure()) && (github.event_name == 'pull_request' || github.ref == 'refs/heads/main' || github.ref == 'refs/heads/dev')
uses: github/codeql-action/upload-sarif@v2
continue-on-error: true
with:
sarif_file: build/detekt-merged.sarif
category: detekt
- name: 'Run check-main'
working-directory: checks/main
run: ./gradlew build assemble check printKotlinSourceSetsGraph --continue --stacktrace --scan
env:
GITHUB_DEPENDENCY_GRAPH_ENABLED: false
- name: 'Run check-gradle-plugin'
working-directory: checks/gradle-plugin
run: ./gradlew build assemble check --continue --stacktrace --scan
env:
GITHUB_DEPENDENCY_GRAPH_ENABLED: false
- name: "Add build scan URL as PR comment"
uses: actions/github-script@v7
if: github.event_name == 'pull_request' && failure()
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
script: |
github.rest.issues.createComment({
issue_number: context.issue.number,
owner: context.repo.owner,
repo: context.repo.repo,
body: '❌ ${{ github.workflow }} failed: ${{ steps.gradle.outputs.build-scan-url }}'
})
# TODO: Integrate the dependency-review-action
# https://github.com/marketplace/actions/gradle-build-action#integrating-the-dependency-review-action