-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update workflows and workflow templates
- Loading branch information
Showing
6 changed files
with
95 additions
and
31 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -8,8 +8,8 @@ on: | |
|
||
jobs: | ||
|
||
version-check-job: | ||
name: Version Check | ||
Version-Check: | ||
name: Version | ||
runs-on: ubuntu-latest | ||
|
||
steps: | ||
|
@@ -22,17 +22,17 @@ jobs: | |
uses: exasol/python-toolbox/.github/actions/[email protected] | ||
|
||
- name: Check Version(s) | ||
run: | | ||
run: poetry run version-check `poetry run python -c "from noxconfig import PROJECT_CONFIG; print(PROJECT_CONFIG.version_file)"` | ||
echo "Please enable the version check by replacing this output with shell command bellow:" | ||
echo "" | ||
echo "poetry run version-check <<VERSION_PY>>" | ||
echo "" | ||
echo "Note: <<VERSION_PY>> needs to point to the version file of the project (version.py)." | ||
exit 1 | ||
|
||
build-documentation-job: | ||
name: Build Documentation | ||
needs: [version-check-job] | ||
Documentation: | ||
name: Docs | ||
needs: [ Version-Check ] | ||
runs-on: ubuntu-latest | ||
|
||
steps: | ||
|
@@ -46,9 +46,9 @@ jobs: | |
run: | | ||
poetry run python -m nox -s build-docs | ||
lint-job: | ||
Lint: | ||
name: Linting (Python-${{ matrix.python-version }}) | ||
needs: [version-check-job] | ||
needs: [ Version-Check ] | ||
runs-on: ubuntu-latest | ||
strategy: | ||
fail-fast: false | ||
|
@@ -74,9 +74,9 @@ jobs: | |
path: .lint.txt | ||
include-hidden-files: true | ||
|
||
type-check-job: | ||
Type-Check: | ||
name: Type Checking (Python-${{ matrix.python-version }}) | ||
needs: [version-check-job] | ||
needs: [ Version-Check ] | ||
runs-on: ubuntu-latest | ||
strategy: | ||
fail-fast: false | ||
|
@@ -95,9 +95,37 @@ jobs: | |
- name: Run type-check | ||
run: poetry run nox -s type-check | ||
|
||
tests-job: | ||
Security: | ||
name: Security Checks (Python-${{ matrix.python-version }}) | ||
needs: [ Version-Check ] | ||
runs-on: ubuntu-latest | ||
strategy: | ||
fail-fast: false | ||
matrix: | ||
python-version: [ "3.8", "3.9", "3.10", "3.11" ] | ||
|
||
steps: | ||
- name: SCM Checkout | ||
uses: actions/checkout@v4 | ||
|
||
- name: Setup Python & Poetry Environment | ||
uses: exasol/python-toolbox/.github/actions/[email protected] | ||
with: | ||
python-version: ${{ matrix.python-version }} | ||
|
||
- name: Run security linter | ||
run: poetry run nox -s security | ||
|
||
- name: Upload Artifacts | ||
uses: actions/[email protected] | ||
with: | ||
name: security-python${{ matrix.python-version }} | ||
path: .security.json | ||
include-hidden-files: true | ||
|
||
Tests: | ||
name: Tests (Python-${{ matrix.python-version }}, Exasol-${{ matrix.exasol-version}}) | ||
needs: [build-documentation-job, lint-job, type-check-job] | ||
needs: [ Documentation, Lint, Type-Check, Security] | ||
runs-on: ubuntu-latest | ||
env: | ||
GITHUB_TOKEN: ${{ secrets.ALTERNATIVE_GITHUB_TOKEN || secrets.GITHUB_TOKEN }} | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,46 @@ | ||
name: Merge-Gate | ||
|
||
on: | ||
workflow_call: | ||
secrets: | ||
ALTERNATIVE_GITHUB_TOKEN: | ||
required: false | ||
|
||
jobs: | ||
|
||
fast-checks: | ||
name: Fast | ||
uses: ./.github/workflows/checks.yml | ||
|
||
slow-checks: | ||
name: Slow | ||
runs-on: ubuntu-latest | ||
|
||
# Even though the "manual-approval" environment will be created automatically, | ||
# it still needs to be configured to require manual approval. | ||
# See project settings on GitHub (Settings / Environments / manual-approval). | ||
environment: manual-approval | ||
|
||
# Replace the steps below with the required actions | ||
# and/or add additional jobs if required | ||
# Note: | ||
# If you add additional jobs, make sure they are added as a requirement | ||
# to the approve-merge jobs input requirements (needs). | ||
steps: | ||
- name: Tests | ||
run: | | ||
echo "Slow tests ran successfully" | ||
# This job ensures inputs have been executed successfully. | ||
approve-merge: | ||
name: Allow Merge | ||
runs-on: ubuntu-latest | ||
# If you need additional jobs to be part of the merge gate, add them below | ||
needs: [ fast-checks, slow-checks ] | ||
|
||
# Each job requires a step, so we added this dummy step. | ||
steps: | ||
- name: Approve | ||
run: | | ||
echo "Merge Approved" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters