Skip to content

Bump postcss from 7.0.39 to 8.4.47 in /web #2104

Bump postcss from 7.0.39 to 8.4.47 in /web

Bump postcss from 7.0.39 to 8.4.47 in /web #2104

Workflow file for this run

name: Continuous Integration
on:
push:
pull_request:
types: [ opened, reopened ]
jobs:
golang:
name: Go CI
runs-on: ubuntu-20.04
steps:
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: 1.17
- uses: innovationnorway/[email protected]
with:
version: '1.5.2'
- name: Check out code
uses: actions/[email protected]
with:
submodules: recursive
- uses: actions/[email protected]
id: go-mod-cache
with:
path: ~/go/pkg/mod
key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
restore-keys: |
${{ runner.os }}-go-
- name: Get dependencies
run: go mod download
- name: Lint
run: |
result=$(make lint)
echo "$result"
[ -n "$(echo "$result" | grep 'diff -u')" ] && exit 1 || exit 0
- name: Build
run: make build
- name: Build sandbox
run: |
(cd notary ; make cross)
docker-compose -f notary/docker-compose.sandbox.yml build
- name: Run sandbox
run: docker-compose -f notary/docker-compose.sandbox.yml up -d
- name: Wait for notary server to be ready
run: |
health_check=https://localhost:4443/_notary_server/health
while [[ "$(curl --insecure -sLSo /dev/null -w ''%{http_code}'' ${health_check})" != "200" ]]; \
do echo "Waiting for ${health_check}" && sleep 1; \
done
echo 'OK!'
curl -X GET -sIL --insecure ${health_check}
- name: Test and Cover
run: go test -v -race -count=1 -covermode=atomic -coverprofile=coverage.out ./...
- name: Upload Code Coverage
uses: codecov/[email protected]
with:
token: ${{ secrets.CODECOV_TOKEN }}
files: ./coverage.out
flags: unittests
name: codecov-umbrella
fail_ci_if_error: true
verbose: true
- name: Shutdown sandbox
run: docker-compose -f notary/docker-compose.sandbox.yml down
nodejs:
name: NodeJS CI
runs-on: ubuntu-20.04
strategy:
matrix:
node-version: [16.x]
fail-fast: true
env:
CI: true
steps:
- name: Setup Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node-version }}
- name: Check out code
uses: actions/[email protected]
- name: Get yarn cache directory path
id: yarn-cache-dir-path
run: echo "::set-output name=dir::$(yarn cache dir)"
- uses: actions/[email protected]
id: yarn-cache
with:
path: ${{ steps.yarn-cache-dir-path.outputs.dir }}
key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }}
restore-keys: |
${{ runner.os }}-yarn-
- name: Install Dependencies
working-directory: web
run: yarn
- name: Build local packages
working-directory: web
run: yarn build
- name: Test and coverage
working-directory: web
run: yarn test --coverage
- name: Upload Code Coverage
uses: codecov/[email protected]
with:
token: ${{ secrets.CODECOV_TOKEN }}
files: ./web/coverage/clover.xml
flags: unittests
name: codecov-umbrella
fail_ci_if_error: true
verbose: true
release:
name: Release artifacts
needs: [golang, nodejs]
runs-on: ubuntu-20.04
steps:
- name: Check out code
uses: actions/[email protected]
with:
fetch-depth: 0
submodules: recursive
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: 1.17
- name: Login to Docker Registries
if: startsWith(github.ref, 'refs/tags/')
run: |
echo "${{ secrets.DOCKERHUB_PASSWORD }}" | docker login -u ${{ secrets.DOCKERHUB_USERNAME }} --password-stdin
echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }} --password-stdin
- name: Release ${{ (!startsWith(github.ref, 'refs/tags/') && 'snapshot') || '' }}
uses: goreleaser/goreleaser-action@v3
with:
version: latest
args: release --rm-dist ${{ (!startsWith(github.ref, 'refs/tags/') && '--snapshot') || '' }}
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Release Docker dctna-web
run: |
make dockerize-web
if [ "${{ startsWith(github.ref, 'refs/tags/') }}" == 'true' ] ; then
make docker-publish-web
fi
- name: Logout from Docker Registries
if: ${{ always() }}
run: |
docker logout
docker logout ghcr.io
provenance:
name: Generate provenance
runs-on: ubuntu-20.04
needs: [release]
if: startsWith(github.ref, 'refs/tags/')
steps:
- name: Generate provenance for release
uses: philips-labs/[email protected]
with:
command: generate
subcommand: github-release
arguments: --artifact-path release-assets --output-path provenance.json --tag-name ${{ github.ref_name }}
env:
GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"