-
Notifications
You must be signed in to change notification settings - Fork 5
127 lines (118 loc) · 3.67 KB
/
ci-build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
name: Build
on:
pull_request:
branches:
- main
- master
push:
branches:
- main
- master
jobs:
analyze-commits:
runs-on: ubuntu-latest
steps:
-
name: Checkout
uses: actions/checkout@v3
with:
token: ${{ secrets.GH_TOKEN }}
-
name: "🔧 setup node"
uses: actions/[email protected]
with:
node-version: 18.x
-
name: Install dependencies
run: yarn global add semantic-release @semantic-release/changelog @semantic-release/git @semantic-release/github @semantic-release/exec @semantic-release/release-notes-generator @semantic-release/[email protected] [email protected]
-
name: Get next version
id: next-version
run: semantic-release --dryRun
env:
GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
GH_TOKEN: ${{ secrets.GH_TOKEN }}
outputs:
release-tag: ${{ steps.next-version.outputs.release-tag }}
release-version: ${{ steps.next-version.outputs.release-version }}
docker:
uses: ./.github/workflows/docker-build-and-push-workflow.yml
needs: analyze-commits
secrets: inherit
with:
version: ${{ needs.analyze-commits.outputs.release-version }}
publish: >-
${{ (startsWith(github.ref, 'refs/tags/') ||
github.ref == 'refs/heads/main' ||
github.ref == 'refs/heads/master') &&
github.event_name == 'push' }}
docker-image-repo: docker.io/wearefrank/zaakbrug
upload-sarif-to-security: >-
${{ (startsWith(github.ref, 'refs/tags/') ||
github.ref == 'refs/heads/main' ||
github.ref == 'refs/heads/master') &&
github.event_name == 'push' }}
publish-docker:
runs-on: ubuntu-latest
needs:
- docker
if: >-
${{ (startsWith(github.ref, 'refs/tags/') ||
github.ref == 'refs/heads/main' ||
github.ref == 'refs/heads/master') &&
github.event_name == 'push' }}
steps:
-
name: Checkout
uses: actions/checkout@v3
with:
token: ${{ secrets.GH_TOKEN }}
-
name: "Download Docker artifact"
uses: actions/download-artifact@v2
with:
name: docker
path: /tmp
-
name: "Load Docker artifact"
run: |
docker load --input /tmp/docker.tar
docker image ls -a
-
name: Login to Container Registry
uses: docker/login-action@v2
if: github.event_name == 'push'
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Push Docker image
run: docker push docker.io/wearefrank/zaakbrug --all-tags
release:
runs-on: ubuntu-latest
needs: publish-docker
steps:
-
name: Checkout
uses: actions/checkout@v3
with:
token: ${{ secrets.GH_TOKEN }}
-
name: "🔧 setup node"
uses: actions/[email protected]
with:
node-version: 18.x
-
name: Install dependencies
run: yarn global add semantic-release @semantic-release/changelog @semantic-release/git @semantic-release/github @semantic-release/exec @semantic-release/release-notes-generator @semantic-release/[email protected] [email protected] semantic-release-helm
-
name: Semantic Release
run: "semantic-release"
env:
GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
GH_TOKEN: ${{ secrets.GH_TOKEN }}
update-helm:
uses: ./.github/workflows/update-helm-chart.yml
needs: [release, analyze-commits]
secrets: inherit
with:
version: ${{ needs.analyze-commits.outputs.release-version }}