mirror of
https://github.com/outbackdingo/firezone.git
synced 2026-03-21 20:41:57 +00:00
6575e0ca26
- Runs release asset builds simultaneously with `deploy-staging`. Those don't depend on each other. - Prevents running some build workflows in CD because they're run already in the PR and in the merge group, and the risk of semantic conflict is negligible - Run `release` assets in staging - Adds `compatibility_tests`: **To successfully introduce a breaking change in the control / data plane APIs, you must now "Merge as Administrator"** - Since `CI` is no longer run on `main`, caching needed to be refactored to make sense again - Since `CI` is no longer run on `main`, the Elixir `migrations_and_seeds_test` had to be rewritten. This now tests migrations using `git checkout` instead of importing `main`'s DB dump. - Move tauri builds to its own workflow so we can trigger Linux and Windows builds manually on an adhoc basis like we do for the Swift and Kotlin builds - Add a new `hotfix` workflow that will run `compatibility_tests` with the latest published images - Add `workflow_dispatch` to trigger `CD` manually for testing purposes (cc @ReactorScram) Refs #3995
72 lines
2.1 KiB
YAML
72 lines
2.1 KiB
YAML
name: Static Analysis
|
|
on:
|
|
workflow_call:
|
|
|
|
jobs:
|
|
pr-lint:
|
|
if: github.event_name == 'pull_request'
|
|
runs-on: ubuntu-22.04
|
|
permissions:
|
|
pull-requests: read
|
|
steps:
|
|
- uses: amannn/action-semantic-pull-request@v5
|
|
env:
|
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
version-check:
|
|
runs-on: macos-14
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
- name: Check version is up to date
|
|
run: |
|
|
make -f scripts/Makefile version
|
|
if [ -z "$(git status --porcelain)" ]; then
|
|
# Working directory clean
|
|
echo "Version manifests up to date"
|
|
else
|
|
# Uncommitted changes
|
|
echo '`make version` found outdated files! Showing diff'
|
|
git diff
|
|
exit 1
|
|
fi
|
|
|
|
link-check:
|
|
runs-on: ubuntu-22.04
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
- uses: lycheeverse/lychee-action@v1.9.3
|
|
with:
|
|
fail: true
|
|
args: --offline --verbose --no-progress **/*.md
|
|
|
|
global-linter:
|
|
runs-on: ubuntu-22.04
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
- uses: actions/setup-python@v5
|
|
with:
|
|
python-version: "3.11"
|
|
- uses: actions/cache/restore@v4
|
|
name: Restore Python Cache
|
|
id: cache
|
|
with:
|
|
path: ~/.cache/pip
|
|
key: ubuntu-22.04-${{ runner.arch }}-pip-${{ hashFiles('.github/requirements.txt') }}
|
|
- name: Install Python Dependencies
|
|
run: |
|
|
pip install -r .github/requirements.txt
|
|
- name: Install dependencies
|
|
run: |
|
|
sudo apt-get update
|
|
sudo apt-get install -y shfmt
|
|
- name: Run pre-commit
|
|
run: |
|
|
pre-commit install --config .github/pre-commit-config.yaml
|
|
SKIP=no-commit-to-branch pre-commit run --all-files --config .github/pre-commit-config.yaml
|
|
- uses: actions/cache/save@v4
|
|
if: ${{ steps.cache.outputs.cache-hit != 'true'}}
|
|
name: Save Python Cache
|
|
with:
|
|
path: ~/.cache/pip
|
|
key: ${{ steps.cache.outputs.cache-primary-key }}
|