This repository has been archived by the owner on Apr 4, 2024. It is now read-only.

Bump golang.org/x/net in /test/_projects/api-client (#1403) #342

Workflow file for this run

.github/workflows/merge-to-master.yaml at 2bd54e6

	name: Merge to master

	on:
	push:
	branches:
	- master

	env:
	SDK_VERSION: "1.17.0"
	GO111MODULE: on
	K8S_VERSION: "1.19.2"
	CONTAINER_RUNTIME: "docker"

	jobs:
	release:
	name: Release operator on Quay.io
	runs-on: ubuntu-latest

	steps:
	- name: Checkout Git Repository
	uses: actions/checkout@v3

	- name: Set up PATH
	run: \|
	mkdir -p $GITHUB_WORKSPACE/bin/
	echo "PATH=$PATH:$GITHUB_WORKSPACE/bin/" >> $GITHUB_ENV

	- name: Set up Go
	uses: actions/setup-go@v3
	with:
	go-version: "^1.18"

	- name: Set up Python
	uses: actions/setup-python@v4
	with:
	python-version: "3.7"
	architecture: "x64"

	- name: Setup CLI
	uses: ./.github/actions/setup-cli
	with:
	operator-sdk: true
	kubectl: true

	- name: Release operator on Quay.io
	env:
	QUAY_USERNAME: ${{ secrets.QUAY_USERNAME }}
	QUAY_TOKEN: ${{ secrets.QUAY_TOKEN }}
	run: make release-operator

	unit-tests-with-coverage:
	name: Unit tests with code coverage for merge-to-master commits
	runs-on: ubuntu-latest

	steps:
	- name: Checkout Git Repository
	uses: actions/checkout@v3

	- name: Set up Go
	uses: actions/setup-go@v3
	with:
	go-version: "^1.18"

	- name: Unit Tests with Code Coverage
	run: \|
	make test

	- name: Upload Code Coverage Report
	uses: codecov/codecov-action@v3
	with:
	file: cover.out
	verbose: true
	fail_ci_if_error: true

	publish-website:
	name: Publish website
	runs-on: ubuntu-20.04

	steps:
	- name: Checkout repository
	uses: actions/checkout@v3

	- name: generate website
	env:
	SITE_SOURCE: github
	run: \|
	make site
	touch ./out/site/.nojekyll

	- name: Publish to GitHub Pages
	uses: peaceiris/actions-gh-pages@v3
	with:
	github_token: ${{ secrets.GITHUB_TOKEN }}
	publish_dir: ./out/site
	destination_dir: docs

	security-scan:
	name: Security vulnerability scan
	runs-on: ubuntu-20.04
	steps:
	- name: Checkout code
	uses: actions/checkout@v3

	- name: Wait for push
	uses: lewagon/wait-on-check-action@3a563271c3f8d1611ed7352809303617ee7e54ac
	with:
	ref: ${{ github.ref }}
	check-name: "Release operator on Quay.io"
	repo-token: ${{ secrets.GITHUB_TOKEN }}
	wait-interval: 60

	- name: Extract operator image ref
	id: operator-image-ref
	run: \|
	export OIR=$(make operator-image-ref)
	echo "operator-image-ref=${OIR}" >> $GITHUB_OUTPUT

	- name: Run Trivy vulnerability scanner in IaC mode
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: ${{ steps.operator-image-ref.outputs.operator-image-ref }}
	format: 'sarif'
	severity: 'CRITICAL,HIGH'
	ignore-unfixed: true
	output: 'trivy-results.sarif'

	- name: Upload Trivy scan results to GitHub Security tab
	if: always()
	uses: github/codeql-action/upload-sarif@v2
	with:
	sarif_file: 'trivy-results.sarif'

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump golang.org/x/net in /test/_projects/api-client (#1403) #342

Workflow file

Bump golang.org/x/net in /test/_projects/api-client (#1403) #342

Jobs

Run details

Workflow file for this run