-
Notifications
You must be signed in to change notification settings - Fork 7
165 lines (132 loc) · 3.69 KB
/
solidity.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
name: Solidity
on:
push:
branches:
- main
pull_request:
paths:
- "contracts/**"
- ".github/workflows/solidity.yml"
concurrency:
group: ci-solidity-${{ github.ref }}
cancel-in-progress: true
defaults:
run:
working-directory: contracts
jobs:
init:
runs-on: ubuntu-latest
strategy:
fail-fast: true
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Install Foundry
uses: foundry-rs/foundry-toolchain@v1
- name: Install dependencies
run: forge soldeer update
- name: Build contracts
run: forge build
- name: Cache data
uses: actions/cache/save@v4
with:
path: contracts
key: ci-solidity-${{ github.ref }}
- id: forge
run: echo "FORGE_PATH=$(which forge)" >> $GITHUB_OUTPUT
- name: Upload forge
uses: actions/upload-artifact@v4
with:
name: forge
path: ${{ steps.forge.outputs.FORGE_PATH }}
test:
needs: init
runs-on: ubuntu-latest
steps:
- name: Restore cache
uses: actions/cache/restore@v4
with:
path: contracts
key: ci-solidity-${{ github.ref }}
- name: Restore forge
uses: actions/download-artifact@v4
with:
name: forge
path: /usr/local/bin
- run: chmod +x /usr/local/bin/forge
- name: Run Forge tests
run: forge test -vvv
lint:
needs: init
runs-on: ubuntu-latest
steps:
- name: Restore cache
uses: actions/cache/restore@v4
with:
path: contracts
key: ci-solidity-${{ github.ref }}
- name: Restore forge
uses: actions/download-artifact@v4
with:
name: forge
path: /usr/local/bin
- run: chmod +x /usr/local/bin/forge
- name: Run Forge fmt
run: forge fmt contracts/src --check
slither:
needs: init
runs-on: ubuntu-latest
steps:
- name: Restore cache
uses: actions/cache/restore@v4
with:
path: contracts
key: ci-solidity-${{ github.ref }}
- name: Restore forge
uses: actions/download-artifact@v4
with:
name: forge
path: /usr/local/bin
- run: chmod +x /usr/local/bin/forge
- name: Install Slither
run: pip3 install slither-analyzer
- name: Run Slither
run: slither . --sarif output.sarif
- name: Upload SARIF file
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: contracts/output.sarif
abis:
needs: init
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Restore cache
uses: actions/cache/restore@v4
with:
path: contracts
key: ci-solidity-${{ github.ref }}
- name: Restore forge
uses: actions/download-artifact@v4
with:
name: forge
path: /usr/local/bin
- run: chmod +x /usr/local/bin/forge
- name: Setup Go
uses: actions/setup-go@v5
- name: Install abigen
run: go install github.com/ethereum/go-ethereum/cmd/[email protected]
- name: Generate ABIs
run: dev/generate
- name: Check for ABI changes
working-directory: ${{ github.workspace }}
run: |
if git diff --exit-code --ignore-space-change --ignore-all-space --ignore-cr-at-eol -- contracts/pkg; then
echo "No ABI changes detected."
else
echo "ERROR: Generated files are not up to date. Please run 'contracts/dev/generate' and commit the changes."
exit 1
fi