diff options
author | Felix Boerner <ich@felix-boerner.de> | 2024-01-10 06:47:19 +0100 |
---|---|---|
committer | Felix Börner <escalate@gmx.de> | 2024-01-10 08:20:26 +0100 |
commit | 74b5eae7154de386a460b56b875fa82ccc427132 (patch) | |
tree | 4eac9ee111d65af4251fcfe77c5b6d1b588f65a3 | |
parent | 5fab3d88233446c42c52d39458dc4727b06f0720 (diff) |
test: add more tests
-rw-r--r-- | .github/workflows/tests.yml | 75 |
1 files changed, 63 insertions, 12 deletions
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index e7db8c5..a2c1b3e 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -5,6 +5,57 @@ name: Tests - master pull_request: jobs: + commits: + name: Commits + runs-on: ubuntu-latest + steps: + - name: Check out repository + if: github.event_name == 'pull_request' + uses: actions/checkout@v4 + + - name: Set up Node.js + if: github.event_name == 'pull_request' + uses: actions/setup-node@v4 + with: + node-version: 'lts/*' + + - name: Install commitlint + if: github.event_name == 'pull_request' + run: | + npm install -g @commitlint/cli @commitlint/config-conventional + + - name: Run commitlint + if: github.event_name == 'pull_request' + run: | + commitlint \ + --from "${{ github.event.pull_request.base.sha }}" \ + --to "${{ github.event.pull_request.head.sha }}" \ + --color \ + --verbose + + secrets: + name: Secrets + runs-on: ubuntu-latest + steps: + - name: Check out repository + uses: actions/checkout@v4 + with: + fetch-depth: 0 + + - name: Install gitleaks + env: + GH_REPO: gitleaks/gitleaks + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} + run: | + gh release download --pattern "*linux_x64.tar.gz" --dir /tmp + tar --extract --gzip --strip-components 1 --file /tmp/gitleaks_*_linux_x64.tar.gz --directory /tmp + chmod +x /tmp/gitleaks + mv /tmp/gitleaks /usr/local/bin/gitleaks + + - name: Run gitleaks + run: | + gitleaks detect --no-banner --redact + editorconfig: name: Editorconfig runs-on: ubuntu-latest @@ -13,14 +64,14 @@ jobs: uses: actions/checkout@v4 - name: Install editorconfig-checker + env: + GH_REPO: editorconfig-checker/editorconfig-checker + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} run: | gh release download --pattern "*linux-amd64.tar.gz" --dir /tmp tar --extract --gzip --strip-components 1 --file /tmp/ec-linux-amd64.tar.gz --directory /tmp chmod +x /tmp/ec-linux-amd64 mv /tmp/ec-linux-amd64 /usr/local/bin/ec - env: - GH_REPO: editorconfig-checker/editorconfig-checker - GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - name: Run editorconfig-checker run: | @@ -41,13 +92,13 @@ jobs: - name: Install hadolint if: steps.check_dockerfile.outputs.files_exists == 'true' + env: + GH_REPO: hadolint/hadolint + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} run: | gh release download --pattern "*Linux-x86_64" --dir /tmp chmod +x /tmp/hadolint-Linux-x86_64 mv /tmp/hadolint-Linux-x86_64 /usr/local/bin/hadolint - env: - GH_REPO: hadolint/hadolint - GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - name: Run hadolint if: steps.check_dockerfile.outputs.files_exists == 'true' @@ -69,14 +120,14 @@ jobs: - name: Install shellcheck if: steps.check_shell.outputs.files_exists == 'true' + env: + GH_REPO: koalaman/shellcheck + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} run: | gh release download --pattern "*linux.x86_64.tar.xz" --dir /tmp tar --extract --xz --strip-components 1 --file /tmp/shellcheck-*.linux.x86_64.tar.xz --directory /tmp chmod +x /tmp/shellcheck mv /tmp/shellcheck /usr/local/bin/shellcheck - env: - GH_REPO: koalaman/shellcheck - GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - name: Run shellcheck if: steps.check_shell.outputs.files_exists == 'true' @@ -259,14 +310,14 @@ jobs: - name: Install staticcheck if: steps.check_go.outputs.files_exists == 'true' + env: + GH_REPO: dominikh/go-tools + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} run: | gh release download --pattern "*linux_amd64.tar.gz" --dir /tmp tar --extract --gzip --strip-components 1 --file /tmp/staticcheck_linux_amd64.tar.gz --directory /tmp chmod +x /tmp/staticcheck mv /tmp/staticcheck /usr/local/bin/staticcheck - env: - GH_REPO: dominikh/go-tools - GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - name: Run staticcheck if: steps.check_go.outputs.files_exists == 'true' |