-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #1 from devops-kung-fu/dj-wip
feat: Initial functionality
- Loading branch information
Showing
21 changed files
with
1,168 additions
and
2 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,14 @@ | ||
| version: 2 | ||
| updates: | ||
| - package-ecosystem: github-actions | ||
| directory: /.github/workflows | ||
| schedule: | ||
| interval: daily | ||
| time: "05:00" | ||
| timezone: UTC | ||
| - package-ecosystem: gomod | ||
| directory: / | ||
| schedule: | ||
| interval: daily | ||
| time: "05:00" | ||
| timezone: UTC |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,67 @@ | ||
| # For most projects, this workflow file will not need changing; you simply need | ||
| # to commit it to your repository. | ||
| # | ||
| # You may wish to alter this file to override the set of languages analyzed, | ||
| # or to provide custom queries or build logic. | ||
| # | ||
| # ******** NOTE ******** | ||
| # We have attempted to detect the languages in your repository. Please check | ||
| # the `language` matrix defined below to confirm you have the correct set of | ||
| # supported CodeQL languages. | ||
| # | ||
| name: "CodeQL" | ||
|
|
||
| on: | ||
| push: | ||
| branches: [ main ] | ||
| pull_request: | ||
| # The branches below must be a subset of the branches above | ||
| branches: [ main ] | ||
| schedule: | ||
| - cron: '32 16 * * 1' | ||
|
|
||
| jobs: | ||
| analyze: | ||
| name: Analyze | ||
| runs-on: ubuntu-latest | ||
|
|
||
| strategy: | ||
| fail-fast: false | ||
| matrix: | ||
| language: [ 'go' ] | ||
| # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python' ] | ||
| # Learn more: | ||
| # https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#changing-the-languages-that-are-analyzed | ||
|
|
||
| steps: | ||
| - name: Checkout repository | ||
| uses: actions/checkout@v2 | ||
|
|
||
| # Initializes the CodeQL tools for scanning. | ||
| - name: Initialize CodeQL | ||
| uses: github/codeql-action/init@v1 | ||
| with: | ||
| languages: ${{ matrix.language }} | ||
| # If you wish to specify custom queries, you can do so here or in a config file. | ||
| # By default, queries listed here will override any specified in a config file. | ||
| # Prefix the list here with "+" to use these queries and those in the config file. | ||
| # queries: ./path/to/local/query, your-org/your-repo/queries@main | ||
|
|
||
| # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). | ||
| # If this step fails, then you should remove it and run the build manually (see below) | ||
| - name: Autobuild | ||
| uses: github/codeql-action/autobuild@v1 | ||
|
|
||
| # ℹ️ Command-line programs to run using the OS shell. | ||
| # 📚 https://git.io/JvXDl | ||
|
|
||
| # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines | ||
| # and modify them (or add more) to build your code if your project | ||
| # uses a compiled language | ||
|
|
||
| #- run: | | ||
| # make bootstrap | ||
| # make release | ||
|
|
||
| - name: Perform CodeQL Analysis | ||
| uses: github/codeql-action/analyze@v1 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,34 @@ | ||
| name: Go Quality Checks | ||
| on: push | ||
| jobs: | ||
| tests: | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: Checkout | ||
| uses: actions/checkout@v2 | ||
| - name: Setup Go | ||
| uses: actions/setup-go@v2 | ||
| with: | ||
| go-version: '1.18' | ||
| - name: Install Dependencies | ||
| run: | | ||
| go version | ||
| go install golang.org/x/lint/golint@latest | ||
| go install github.com/fzipp/gocyclo/cmd/gocyclo@latest | ||
| - name: Tests | ||
| run: | | ||
| go test -v -coverprofile=coverage.out ./... | ||
| go tool cover -func=coverage.out | ||
| - name: CodeCov | ||
| run: bash <(curl -s https://codecov.io/bash) | ||
| env: | ||
| CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} | ||
| - name: Build | ||
| run: go build ./... | ||
| - name: Vet | ||
| run: go vet -v ./... | ||
| - name: Lint | ||
| run: golint ./... | ||
| - name: gocyclo | ||
| run: gocyclo . | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| # Binaries for programs and plugins | ||
| *.exe | ||
| *.exe~ | ||
| *.dll | ||
| *.so | ||
| *.dylib | ||
|
|
||
| # Test binary, built with `go test -c` | ||
| *.test | ||
|
|
||
| # Output of the go coverage tool, specifically when used with LiteIDE | ||
| *.out | ||
|
|
||
| # Dependency directories (remove the comment below to include it) | ||
| # vendor/ | ||
|
|
||
| coverage.out | ||
| .DS_Store |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,51 @@ | ||
| version: 2.4.0 | ||
| sources: | ||
| - source: github.com/CycloneDX/cyclonedx-gomod/cmd/cyclonedx-gomod@latest | ||
| - source: github.com/devops-kung-fu/hookz@latest | ||
| - source: github.com/devops-kung-fu/lucha@latest | ||
| - source: github.com/devops-kung-fu/hinge@latest | ||
| - source: github.com/kisielk/errcheck@latest | ||
| - source: golang.org/x/lint/golint@latest | ||
| - source: github.com/fzipp/gocyclo/cmd/gocyclo@latest | ||
| hooks: | ||
| - type: pre-commit | ||
| actions: | ||
| - name: "git: Pull (Ensure there are no upstream changes that are not local)" | ||
| exec: git | ||
| args: ["pull"] | ||
| - name: "go: Tidy mod file" | ||
| exec: go | ||
| args: ["mod", "tidy"] | ||
| - name: "go: Update all dependencies to latest" | ||
| exec: go | ||
| args: ["get", "-u", "./..."] | ||
| - name: "gofmt: Run gofmt to format the code" | ||
| exec: gofmt | ||
| args: ["-s", "-w", "**/*.go"] | ||
| - name: "golint: Lint all go files" | ||
| exec: golint | ||
| args: ["./..."] #to error out, add the arg "-set_exit_status" | ||
| - name: "errcheck: Ensure that errors are checked" | ||
| exec: errcheck | ||
| args: ["-ignoretests", "./..."] | ||
| - name: "gocyclo: Check cyclomatic complexities" | ||
| exec: gocyclo | ||
| args: ["-over", "5", "."] | ||
| - name: Hinge | ||
| exec: hinge | ||
| args: ["."] | ||
| - name: "go: Build (Ensure pulled modules do not break the build)" | ||
| exec: go | ||
| args: ["build", "-v", "./..."] | ||
| - name: "go: Run all tests" | ||
| exec: go | ||
| args: ["test", "-v", "-coverprofile=coverage.out", "./..."] | ||
| - name: "go: Test coverage" | ||
| exec: go | ||
| args: ["tool", "cover", "-func=coverage.out"] | ||
| - name: "cyclone-dx: Generate a Software Bill of Materials (SBoM)" | ||
| exec: cyclonedx-gomod | ||
| args: ["mod", "-json", "-output", "kusari-sbom.json"] | ||
| - name: "git: Add all changed files during the pre-commit stage" | ||
| exec: git | ||
| args: ["add", "."] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,76 @@ | ||
| # Contributor Covenant Code of Conduct | ||
|
|
||
| ## Our Pledge | ||
|
|
||
| In the interest of fostering an open and welcoming environment, we as | ||
| contributors and maintainers pledge to making participation in our project and | ||
| our community a harassment-free experience for everyone, regardless of age, body | ||
| size, disability, ethnicity, sex characteristics, gender identity and expression, | ||
| level of experience, education, socio-economic status, nationality, personal | ||
| appearance, race, religion, or sexual identity and orientation. | ||
|
|
||
| ## Our Standards | ||
|
|
||
| Examples of behavior that contributes to creating a positive environment | ||
| include: | ||
|
|
||
| * Using welcoming and inclusive language | ||
| * Being respectful of differing viewpoints and experiences | ||
| * Gracefully accepting constructive criticism | ||
| * Focusing on what is best for the community | ||
| * Showing empathy towards other community members | ||
|
|
||
| Examples of unacceptable behavior by participants include: | ||
|
|
||
| * The use of sexualized language or imagery and unwelcome sexual attention or | ||
| advances | ||
| * Trolling, insulting/derogatory comments, and personal or political attacks | ||
| * Public or private harassment | ||
| * Publishing others' private information, such as a physical or electronic | ||
| address, without explicit permission | ||
| * Other conduct which could reasonably be considered inappropriate in a | ||
| professional setting | ||
|
|
||
| ## Our Responsibilities | ||
|
|
||
| Project maintainers are responsible for clarifying the standards of acceptable | ||
| behavior and are expected to take appropriate and fair corrective action in | ||
| response to any instances of unacceptable behavior. | ||
|
|
||
| Project maintainers have the right and responsibility to remove, edit, or | ||
| reject comments, commits, code, wiki edits, issues, and other contributions | ||
| that are not aligned to this Code of Conduct, or to ban temporarily or | ||
| permanently any contributor for other behaviors that they deem inappropriate, | ||
| threatening, offensive, or harmful. | ||
|
|
||
| ## Scope | ||
|
|
||
| This Code of Conduct applies both within project spaces and in public spaces | ||
| when an individual is representing the project or its community. Examples of | ||
| representing a project or community include using an official project e-mail | ||
| address, posting via an official social media account, or acting as an appointed | ||
| representative at an online or offline event. Representation of a project may be | ||
| further defined and clarified by project maintainers. | ||
|
|
||
| ## Enforcement | ||
|
|
||
| Instances of abusive, harassing, or otherwise unacceptable behavior may be | ||
| reported by contacting the project team. All | ||
| complaints will be reviewed and investigated and will result in a response that | ||
| is deemed necessary and appropriate to the circumstances. The project team is | ||
| obligated to maintain confidentiality with regard to the reporter of an incident. | ||
| Further details of specific enforcement policies may be posted separately. | ||
|
|
||
| Project maintainers who do not follow or enforce the Code of Conduct in good | ||
| faith may face temporary or permanent repercussions as determined by other | ||
| members of the project's leadership. | ||
|
|
||
| ## Attribution | ||
|
|
||
| This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4, | ||
| available at https://www.contributor-covenant.org/version/1/4/code-of-conduct.html | ||
|
|
||
| [homepage]: https://www.contributor-covenant.org | ||
|
|
||
| For answers to common questions about this code of conduct, see | ||
| https://www.contributor-covenant.org/faq |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,24 @@ | ||
| # Contributing to SHS | ||
|
|
||
| ## We Develop with Github | ||
|
|
||
| We use github to host code, to track issues and feature requests, as well as accept pull requests. | ||
|
|
||
| ## Use GPG to Sign Your Commits | ||
|
|
||
| Only pull requests that have been signed will be accepted. For more information on setting up a GPG key for your Github account see the instructions [here](https://help.github.com/en/articles/managing-commit-signature-verification). | ||
|
|
||
| ## Contributing Code | ||
|
|
||
| All Code Changes Happen Through Pull Requests. Pull requests are the best way to propose changes to the codebase. We actively welcome your pull requests and review regularly. We practice a single trunk development method. | ||
|
|
||
| - Fork the repo and create your branch from main. | ||
| - All code requires test coverage. 100% coverage is the target Add new or modify existing tests. | ||
| - If you've changed APIs, update the documentation. | ||
| - Ensure the tests pass. | ||
| - Make sure your code lints (go) | ||
| - Create a pull request. | ||
|
|
||
| ## Licensing Notes | ||
|
|
||
| Any contributions you make will be under the MIT Software License. When you submit code changes, your submissions are understood to be under the same MIT License that covers the project. Feel free to contact the maintainers if that's a concern. |
Oops, something went wrong.