-
Notifications
You must be signed in to change notification settings - Fork 46
75 lines (66 loc) · 2.24 KB
/
carbon_silicon_ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
name: Run Backend CI
on:
push:
branches: [ master ]
# `pull_request_target` can be triggered by a malicious PR to Silver
# So we run the backend CI on a fork to ensure safety
pull_request_target:
branches: [ master ]
workflow_dispatch:
# `${{ secrets.PAT }}` must give access to `${{ env.fork }}/${{ matrix.repo }}`
# for both pushes and triggering workflows (`workflow`+`repo` and `repo_hook` scopes).
env:
fork: viper-admin
branch: master
sha: ${{ github.event.pull_request.head.sha || github.sha }}
ref: ${{ github.head_ref || github.ref }}
repo: ${{ github.event.pull_request.head.repo.full_name || github.repository }}
jobs:
run_ci:
strategy:
fail-fast: false
matrix:
include:
- repo: 'silicon'
- repo: 'carbon'
runs-on: ubuntu-latest
steps:
- name: Checkout backend
uses: actions/checkout@v3
with:
repository: ${{ env.fork }}/${{ matrix.repo }}
token: ${{ secrets.PAT }}
ref: ${{ env.branch }}
submodules: true
- name: Update fork
run: |
git config --global user.name 'Silver Bot'
git config --global user.email '[email protected]'
git remote add upstream https://github.com/viperproject/${{ matrix.repo }}
git fetch upstream ${{ env.branch }}
git pull upstream ${{ env.branch }}
git push origin ${{ env.branch }}
- name: Checkout current silver
run: |
git checkout -b ci-test-${{ env.sha }}
cd silver
git remote add upstream https://github.com/${{ env.repo }}
git fetch upstream ${{ env.ref }}
git checkout ${{ env.sha }}
cd ..
- name: Push temporary branch
run: |
git commit -am "Set silver submodule to ${{ env.sha }} [skip ci]" || echo "Correct Silver already checked out"
git push origin ci-test-${{ env.sha }}
- name: Run CI
uses: convictional/[email protected]
with:
owner: ${{ env.fork }}
repo: ${{ matrix.repo }}
github_token: ${{ secrets.PAT }}
ref: ci-test-${{ env.sha }}
workflow_file_name: ci.yml
- name: Delete temporary branch
if: always()
run: |
git push origin --delete ci-test-${{ env.sha }}