Update dependency black to v24 [SECURITY] - autoclosed #3474
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Pull Request | |
on: | |
pull_request: | |
branches: | |
- master | |
jobs: | |
lints: | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
command: | |
- flake8 | |
- pylint | |
- bandit | |
- mypy | |
- black | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-python@v5 | |
with: | |
python-version: '3.9' | |
- uses: Gr1N/setup-poetry@v9 | |
- name: Install tox | |
run: | | |
pip install tox | |
- uses: actions/cache@v4 | |
with: | |
path: | | |
.tox | |
~/.cache/pypoetry/virtualenvs | |
key: ${{ runner.os }}-lint-${{ matrix.command }}-${{ hashFiles('poetry.lock', 'tox.ini') }} | |
- name: Run ${{ matrix.command }} | |
run: make lint_${{ matrix.command }} | |
editorconfig: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: snow-actions/[email protected] | |
with: | |
args: 'check' | |
tests: | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
python-version: | |
- '3.8' | |
- '3.9' | |
- '3.10' | |
- '3.11' | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-python@v5 | |
with: | |
python-version: ${{ matrix.python-version }} | |
- uses: Gr1N/setup-poetry@v9 | |
- name: Install tox | |
run: | | |
pip install tox | |
- uses: actions/cache@v4 | |
with: | |
path: | | |
.tox | |
~/.cache/pypoetry/virtualenvs | |
key: ${{ runner.os }}-test-py${{ matrix.python-version }}-${{ hashFiles('poetry.lock', 'tox.ini') }} | |
- name: Install jsonnet-bundler | |
run: | | |
mkdir -p /opt/bin && curl -sLo /opt/bin/jb \ | |
https://github.com/projectsyn/jsonnet-bundler/releases/download/v0.6.1/jb_linux_amd64 \ | |
&& chmod +x /opt/bin/jb | |
- name: Update PATH | |
run: echo "/opt/bin" >> $GITHUB_PATH | |
- name: Extract Python minor version from matrix python-version | |
run: echo "PYVER=$(echo ${{ matrix.python-version}} |cut -d. -f1,2)" >> $GITHUB_ENV | |
- name: Run tests on Python ${{ matrix.python-version }} | |
run: make test_py${PYVER} | |
tests_reclass_rs: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-python@v5 | |
with: | |
python-version: '3.11' | |
- uses: Gr1N/setup-poetry@v9 | |
- name: Install tox | |
run: | | |
pip install tox | |
- uses: actions/cache@v4 | |
with: | |
path: | | |
.tox | |
~/.cache/pypoetry/virtualenvs | |
key: ${{ runner.os }}-test-py3.11-reclass-rs-${{ hashFiles('poetry.lock', 'tox.ini') }} | |
- name: Install jsonnet-bundler | |
run: | | |
mkdir -p /opt/bin && curl -sLo /opt/bin/jb \ | |
https://github.com/projectsyn/jsonnet-bundler/releases/download/v0.6.1/jb_linux_amd64 \ | |
&& chmod +x /opt/bin/jb | |
- name: Update PATH | |
run: echo "/opt/bin" >> $GITHUB_PATH | |
- name: Run tests on Python 3.11 with reclass-rs | |
run: make test_py3.11_reclass_rs | |
benchs: | |
runs-on: ubuntu-latest | |
strategy: | |
matrix: | |
python-version: | |
- '3.8' | |
- '3.9' | |
- '3.10' | |
- '3.11' | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-python@v5 | |
with: | |
python-version: ${{ matrix.python-version }} | |
- uses: Gr1N/setup-poetry@v9 | |
- name: Install tox | |
run: | | |
pip install tox | |
- uses: actions/cache@v4 | |
with: | |
path: | | |
.tox | |
~/.cache/pypoetry/virtualenvs | |
key: ${{ runner.os }}-bench-py${{ matrix.python-version }}-${{ hashFiles('poetry.lock', 'tox.ini') }} | |
- name: Install jsonnet-bundler | |
run: | | |
mkdir -p /opt/bin && curl -sLo /opt/bin/jb \ | |
https://github.com/projectsyn/jsonnet-bundler/releases/download/v0.6.1/jb_linux_amd64 \ | |
&& chmod +x /opt/bin/jb | |
- name: Update PATH | |
run: echo "/opt/bin" >> $GITHUB_PATH | |
- name: Extract Python minor version from matrix python-version | |
run: echo "PYVER=$(echo ${{ matrix.python-version}} |cut -d. -f1,2)" >> $GITHUB_ENV | |
- name: Run benchmarks on Python ${{ matrix.python-version }} | |
run: make bench_py${PYVER} | |
integration: | |
# Skip integration tests on PRs from forks | |
if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.fork == false | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-python@v5 | |
with: | |
python-version: '3.9' | |
- uses: Gr1N/setup-poetry@v9 | |
- uses: actions/cache@v4 | |
with: | |
path: ~/.cache/pypoetry/virtualenvs | |
key: ${{ runner.os }}-poetry-${{ hashFiles('poetry.lock') }} | |
- name: Install Poetry, setup Poetry virtualenv, and build Kapitan helm bindings | |
run: | | |
poetry env use python3.9 | |
poetry install | |
- name: Install jsonnet-bundler | |
run: | | |
mkdir -p /opt/bin && curl -sLo /opt/bin/jb \ | |
https://github.com/projectsyn/jsonnet-bundler/releases/download/v0.6.1/jb_linux_amd64 \ | |
&& chmod +x /opt/bin/jb | |
- name: Update PATH | |
run: echo "/opt/bin" >> $GITHUB_PATH | |
- name: Pull in SSH deploy key for integration tests | |
env: | |
SSH_AUTH_SOCK: /tmp/ssh_agent.sock | |
run: | | |
mkdir -p ~/.ssh | |
echo "github.com ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAq2A7hRGmdnm9tUDbO9IDSwBK6TbQa+PXYPCPy6rbTrTtw7PHkccKrpp0yVhp5HdEIcKr6pLlVDBfOLX9QUsyCOV0wzfjIJNlGEYsdlLJizHhbn2mUjvSAHQqZETYP81eFzLQNnPHt4EVVUh7VfDESU84KezmD5QlWpXLmvU31/yMf+Se8xhHTvKSCZIFImWwoG6mbUoWf9nzpIoaSjB+weqqUUmpaaasXVal72J+UX2B+2RPW3RcT0eOzQgqlJL3RKrTJvdsjE3JEAvGq3lGHSZXy28G3skua2SmVi/w4yCE6gbODqnTWlg7+wC604ydGXA8VJiS5ap43JXiUFFAaQ==" >> ~/.ssh/known_hosts | |
ssh-agent -a $SSH_AUTH_SOCK > /dev/null | |
ssh-add - <<< "${{ secrets.CATALOG_DEPLOY_KEY }}" | |
- name: Run catalog compile integration test | |
run: make test_integration | |
env: | |
SSH_AUTH_SOCK: /tmp/ssh_agent.sock | |
docs: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Check Docs | |
run: make docs-vale | |
build: | |
needs: | |
- lints | |
- tests | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
with: | |
fetch-depth: "0" | |
- name: Build image | |
run: make docker | |
- name: Run image | |
run: docker run docker.io/projectsyn/commodore:test |