Initial commit

This commit is contained in:
Nick Alteen
2023-12-08 10:33:30 -05:00
commit 46755db8f3
17 changed files with 616 additions and 0 deletions
+21
View File
@@ -0,0 +1,21 @@
version: 2
updates:
- package-ecosystem: docker
directory: /
schedule:
interval: weekly
groups:
docker-minor:
update-types:
- minor
- patch
- package-ecosystem: github-actions
directory: /
schedule:
interval: weekly
groups:
actions-minor:
update-types:
- minor
- patch
+7
View File
@@ -0,0 +1,7 @@
# Unordered list style
MD004:
style: dash
# Ordered list item prefix
MD029:
style: one
+10
View File
@@ -0,0 +1,10 @@
rules:
document-end: disable
document-start:
level: warning
present: false
line-length:
level: warning
max: 80
allow-non-breakable-words: true
allow-non-breakable-inline-mappings: true
+147
View File
@@ -0,0 +1,147 @@
# When a PR is merged, or when run manually, this workflow will create a
# release and publish the container image to the GitHub Container Registry. Both
# will be labeled with the version specified in the manifest file.
name: Continuous Delivery
on:
pull_request:
types:
- closed
branches:
- main
workflow_dispatch:
env:
CONTAINER_REGISTRY: ghcr.io
CONTAINER_REGISTRY_USERNAME: ${{ github.actor }}
CONTAINER_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
MANIFEST_PATH: .version
permissions:
contents: write
packages: write
jobs:
release:
name: Create Release
runs-on: ubuntu-latest
# Ignore Dependabot pull requests.
if: |
(github.event_name == 'workflow_dispatch' ||
github.event.pull_request.merged == true) &&
github.actor != 'dependabot[bot]'
outputs:
# Semantic version to use for tagging container images.
# E.g. `1.2.3` or `1.2.3-alpha.4`
version: ${{ steps.tag.outputs.version }}
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v4
with:
fetch-tags: true
ref: main
- name: Tag Version
id: tag
uses: issue-ops/semver@v0.3.2
with:
manifest-path: ${{ env.MANIFEST_PATH }}
ref: main
workspace: ${{ github.workspace }}
- name: Create Release
id: release
uses: issue-ops/releaser@v0.1.3
with:
tag: v${{ steps.tag.outputs.version }}
container:
name: Publish Container Image
runs-on: ubuntu-latest
needs: release
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v4
with:
fetch-tags: true
ref: main
- name: Build, Scan, and Publish Container Image
id: build-scan-publish
uses: usps/fast-track-container-image-action@v1.0.0
with:
# Container registry details
registry: ${{ env.CONTAINER_REGISTRY }}
username: ${{ env.CONTAINER_REGISTRY_USERNAME }}
password: ${{ env.CONTAINER_REGISTRY_PASSWORD }}
# Other inputs
checkout: true
manifest-path: ${{ env.MANIFEST_PATH }}
version: ${{ needs.release.outputs.version }}
# Create the list of image tags that will be published. If a prerelease is
# being published (e.g. `1.2.3-alpha.4`), only the prerelease tag will be
# published (`v1.2.3-alpha.4`). Otherwise, the following tags will be
# published:
# - `latest`
# - `v1.2.3`
# - `v1.2`
# - `v1`
- name: Set Image Tags
id: tags
uses: actions/github-script@v7
with:
script: |
const version = '${{ needs.release.outputs.version }}'
// Check if prerelease (e.g. 1.2.3-alpha.4)
if (version.includes('-')) {
// Only output the prerelease tag
core.setOutput('tags', `type=raw,value=v${version}`)
} else {
// Output all the tags
let tags = [
'type=raw,value=latest',
`type=raw,value=v${version}`,
`type=raw,value=v${version.split('.').slice(0, 2).join('.')}`,
`type=raw,value=v${version.split('.')[0]}`
]
core.setOutput('tags', tags.join('\n'))
}
# Get metadata to apply to image
- name: Extract Metadata
id: meta
uses: docker/metadata-action@v5
with:
images: ${{ env.CONTAINER_REGISTRY }}/${{ github.repository }}
tags: ${{ steps.tags.outputs.tags }}
# Authenticate to the container registry
- name: Authenticate to Container Registry
id: login
uses: docker/login-action@v3
with:
registry: ${{ env.CONTAINER_REGISTRY }}
username: ${{ env.CONTAINER_REGISTRY_USERNAME }}
password: ${{ env.CONTAINER_REGISTRY_PASSWORD }}
# Publish the container image
- name: Publish Container Image
id: publish
uses: docker/build-push-action@v5
env:
LABELS: ${{ steps.meta.outputs.labels }}
TAGS: ${{ steps.meta.outputs.tags }}
with:
labels: ${{ env.LABELS }}
push: true
tags: ${{ env.TAGS }}
+54
View File
@@ -0,0 +1,54 @@
name: Continuous Integration
on:
pull_request:
push:
branches:
- main
permissions:
contents: read
jobs:
test:
name: Test Container Image
runs-on: ubuntu-latest
# Run a local registry to push to
services:
registry:
image: registry:2
ports:
- 5001:5000
env:
TEST_TAG: localhost:5001/actions/container-prebuilt-action:latest
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v4
- name: Setup Docker BuildX
id: setup-buildx
uses: docker/setup-buildx-action@v3
with:
install: true
driver-opts: network=host
- name: Build the Container
id: build
uses: docker/build-push-action@v5
with:
context: .
push: true
tags: ${{ env.TEST_TAG }}
- name: Run the Container
id: run
env:
INPUT_WHO_TO_GREET: Mona Lisa Octocat
run: |
docker run \
--env INPUT_WHO_TO_GREET="${{ env.INPUT_WHO_TO_GREET }}" \
--rm ${{ env.TEST_TAG }}
+25
View File
@@ -0,0 +1,25 @@
name: Example Workflow
on:
push:
branches:
- main
permissions:
contents: read
jobs:
test:
name: Test the Action
runs-on: ubuntu-latest
steps:
- name: Run the Container Action
id: run
uses: actions/container-prebuilt-action@latest
with:
who-to-greet: Mona Lisa Octocat
- name: Print Output
id: output
run: echo "${{ steps.test-action.outputs.greeting }}"
+30
View File
@@ -0,0 +1,30 @@
name: Lint Codebase
on:
pull_request:
push:
branches:
- main
permissions:
contents: read
packages: read
statuses: write
jobs:
lint:
name: Lint Codebase
runs-on: ubuntu-latest
steps:
- name: Checkout
id: checkout
uses: actions/checkout@v4
- name: Lint Codebase
id: super-linter
uses: super-linter/super-linter/slim@v5
env:
DEFAULT_BRANCH: main
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
VALIDATE_ALL_CODEBASE: false