Skip to content

CI

CI #3236

Workflow file for this run

name: CI
on:
push:
branches: [master]
tags: ['v*']
pull_request:
branches: [master]
schedule:
- cron: 0 4 * * *
jobs:
test:
name: Run tests
runs-on: ubuntu-latest
steps:
- name: Checkout commit
uses: actions/checkout@v4
with:
ref: ${{ github.event.pull_request.head.sha }}
fetch-depth: 0
- name: Install python
uses: actions/setup-python@v5.3.0
with:
python-version: 3.9
- name: Cache packages
uses: actions/cache@v4
with:
path: ~/.cache/pip
key: ${{ runner.os }}-py-3.9-${{ hashFiles('pyproject.toml') }}-${{ hashFiles('setup.cfg') }}
- name: Install dependencies
run: make setup
- name: Lint
run: |
echo "::add-matcher::.github/actionlint-matcher.json"
make lint
- name: Run unit tests
run: make test_unit
- name: Upload coverage to Codecov
uses: codecov/codecov-action@v4
with:
token: ${{ secrets.CODECOV_TOKEN }}
file: .coverage-unit.xml
flags: unit
name: codecov-unit
- name: Login to ghcr.io
uses: docker/login-action@v3.3.0
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ github.token }}
- name: Start minikube
run: |
make install_k8s
make start_k8s
- name: Pull test images
run: make docker_pull_test_images
- name: Setup services in minikube
run: |
make apply_configuration_k8s
make test_k8s
- name: Run integration tests
run: |
make test_integration
- name: Upload coverage to Codecov
uses: codecov/codecov-action@v4
with:
token: ${{ secrets.CODECOV_TOKEN }}
file: .coverage-integration.xml
flags: integration
name: codecov-integration
- name: Build Docker image
run: make docker_build
- name: Upload image artifact
uses: neuro-inc/upload-image-action@v24.4.0
with:
image: platformsecrets
token: ${{ secrets.GITHUB_TOKEN }}
release:
name: Create release
needs: test
if: github.event_name == 'push' && (github.ref == 'refs/heads/master' || startsWith(github.ref, 'refs/tags/'))
uses: neuro-inc/reuse/.github/workflows/release-service.yaml@v24.10.0
with:
image: platformsecrets
helm_charts: platform-secrets
deploy:
name: Deploy
needs: release
if: github.event_name == 'push' && github.ref == 'refs/heads/master'
uses: neuro-inc/reuse/.github/workflows/deploy-service.yaml@v24.10.0
secrets:
tf_api_token: ${{ secrets.TF_API_TOKEN }}
with:
environment: dev
dev_workspace: ${{ vars.DEV_TFC_WORKSPACE_JSON }}
variables: |
platform_secrets_version=${{ needs.release.outputs.version }}