Skip to content

Ensure profiles are merged properly #32

Ensure profiles are merged properly

Ensure profiles are merged properly #32

Workflow file for this run

name: CI
on:
push:
branches:
- '*'
tags:
- '*'
permissions: read-all
jobs:
test:
runs-on: ubuntu-latest
steps:
- uses: actions/[email protected]
- uses: actions/setup-go@v5
with:
go-version: '>=1.21.0'
- name: Build
run: |
make
- name: Test
run: |
go test -covermode=count -coverprofile=coverage.out -v ./...
- name: Convert coverage to lcov
uses: jandelgado/[email protected]
- name: Coveralls
uses: coverallsapp/[email protected]
with:
github-token: ${{ secrets.github_token }}
path-to-lcov: coverage.lcov
- name: gosec
run: |
go install github.com/securego/gosec/v2/cmd/gosec@latest
gosec ./...
- name: golangci-lint
run: |
go install github.com/golangci/golangci-lint/cmd/[email protected]
golangci-lint run --skip-files='.*_test.go'
- name: Archive stuff
uses: actions/[email protected]
with:
name: build-artefacts
path: |
littleauth
coverage.out
sonarcloud:
needs: test
runs-on: ubuntu-latest
if: ${{ github.triggering_actor != 'dependabot[bot]' }}
steps:
- uses: actions/checkout@v3
with:
# Disabling shallow clone is recommended for improving relevancy of reporting
fetch-depth: 0
- name: Download artefacts
uses: actions/[email protected]
with:
name: build-artefacts
- name: SonarCloud Scan
uses: sonarsource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
build-and-push:
needs: sonarcloud
permissions:
contents: write
runs-on: ubuntu-latest
if: contains(github.ref, 'refs/tags')
steps:
- uses: actions/[email protected]
- name: Download artefacts
uses: actions/[email protected]
with:
name: build-artefacts
- name: Generate SBOM
uses: CycloneDX/gh-gomod-generate-sbom@v2
with:
version: v1
args: mod -licenses -json -output bom.json
- name: Release
uses: softprops/action-gh-release@v1
with:
files: |
littleauth
bom.json
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}