Merge pull request #1 from HHS/initial-version

GCM Pipeline 1.0.0

Author: bischoffz

.github/dependabot.yml

@@ -0,0 +1,33 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/code-security/dependabot/dependabot-version-updates/configuration-options-for-the-dependabot.yml-file
+
+version: 2
+updates:
+  - package-ecosystem: "maven" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "daily"
+    target-branch: "dev"
+    open-pull-requests-limit: 10
+    groups:
+      standard-plugins:
+        patterns:
+          - "org.codehaus.mojo:flatten-maven-plugin"
+          - "org.apache.maven.plugins*"
+      deploy-plugins:
+        patterns:
+          - "org.sonatype.central"
+      dependencies:
+        patterns:
+          - "org.apache.commons:commons-math3"
+          - "net.jcip:jcip-annotations"
+      aspr-ms-dependencies:
+        patterns:
+          - "gov.hhs.aspr.ms.gcm:simulation"
+          - "gov.hhs.aspr.ms.gcm.taskit*"
+      test-dependencies:
+        patterns:
+          - "org.jacoco*"
+          - "org.junit.jupiter*"

.github/workflows/dev_build.yml

@@ -0,0 +1,102 @@
+# This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-maven
+
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: GCM Pipeline Development Build
+
+on:
+  push:
+    branches: [ "dev" ]
+  pull_request:
+    branches: [ "dev" ]
+
+jobs:
+  dev-build:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout GCM Pipeline
+      uses: actions/checkout@v4
+
+    - name: Set up JDK 17
+      uses: actions/setup-java@v4
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+        cache: maven
+    
+    - name: Get GCM Version
+      run: |
+        echo "gcm_version=v$(mvn help:evaluate -Dexpression=gcm.version -q -DforceStdout --file pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Checkout GCM
+      if: ${{ endsWith(env.gcm_version, 'SNAPSHOT') }}
+      uses: actions/checkout@v4
+      with:
+        repository: HHS/ASPR-8
+        path: gcm
+        ref: dev
+
+    - name: Get GCM Taskit Version
+      run: |
+        echo "gcm_taskit_version=v$(mvn help:evaluate -Dexpression=gcm-taskit.version -q -DforceStdout --file pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Checkout GCM Taskit
+      if: ${{ endsWith(env.gcm_taskit_version, 'SNAPSHOT') }}
+      uses: actions/checkout@v4
+      with:
+        repository: HHS/ASPR-ms-gcm-taskit
+        path: gcm-taskit
+        ref: dev
+    
+    - name: Get Util Version
+      if: ${{ endsWith(env.gcm_version, 'SNAPSHOT') }}
+      run: |
+        echo "util_version=v$(mvn help:evaluate -Dexpression=util.version -q -DforceStdout --file gcm/pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Checkout Util
+      if: ${{ endsWith(env.util_version, 'SNAPSHOT') }}
+      uses: actions/checkout@v4
+      with:
+        repository: HHS/ASPR-ms-util
+        path: util
+        ref: dev
+
+    - name: Get Taskit Version
+      if: ${{ endsWith(env.gcm_taskit_version, 'SNAPSHOT') }}
+      run: |
+        echo "taskit_version=v$(mvn help:evaluate -Dexpression=taskit.version -q -DforceStdout --file gcm-taskit/pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Checkout Taskit
+      if: ${{ endsWith(env.taskit_version, 'SNAPSHOT') }}
+      uses: actions/checkout@v4
+      with:
+        repository: HHS/ASPR-ms-taskit
+        path: taskit-core
+        ref: dev
+
+    - name: Build Util
+      if: ${{ endsWith(env.util_version, 'SNAPSHOT') }}
+      run: mvn clean install -DskipTests --file util/pom.xml
+  
+    - name: Build GCM
+      if: ${{ endsWith(env.gcm_version, 'SNAPSHOT') }}
+      run: mvn clean install -DskipTests --file gcm/pom.xml
+
+    - name: Build Taskit
+      if: ${{ endsWith(env.taskit_version, 'SNAPSHOT') }}
+      run: mvn clean install -DskipTests --file taskit-core/pom.xml
+
+    - name: Build GCM Taskit
+      if: ${{ endsWith(env.gcm_taskit_version, 'SNAPSHOT') }}
+      run: mvn clean install -DskipTests --file gcm-taskit/pom.xml
+
+    - name: Build GCM Pipeline
+      run: mvn clean install --file pom.xml
+
+    # Optional: Uploads the full dependency graph to GitHub to improve the quality of Dependabot alerts this repository can receive
+   # - name: Update dependency graph
+     # uses: advanced-security/maven-dependency-submission-action@571e99aab1055c2e71a1e2309b9691de18d6b7d6

.github/workflows/release_build.yml

@@ -0,0 +1,54 @@
+# This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-maven
+
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: GCM Pipeline Release Build
+
+on: 
+  push:
+    paths-ignore:
+      - 'README.md'
+      - 'LICENSE'
+    branches: ["main"]
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout GCM Pipeline
+      uses: actions/checkout@v4
+
+    - name: Set up JDK 17
+      uses: actions/setup-java@v4
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+        server-id: central
+        server-username: MAVEN_USERNAME
+        server-password: MAVEN_PASSWORD
+        gpg-private-key: ${{ secrets.GPG_SECRET_KEY }}
+        gpg-passphrase: MAVEN_GPG_PASSPHRASE
+    
+    - name: Build and Deploy GCM Pipeline
+      run: mvn clean deploy -Pjavadoc,sign --file pom.xml
+      env:
+        MAVEN_USERNAME: ${{ secrets.MAVEN_CENTRAL_USERNAME }}
+        MAVEN_PASSWORD: ${{ secrets.MAVEN_CENTRAL_TOKEN }}
+        MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_SECRET_KEY_PASSWORD }}
+
+    - name: Get GCM Pipeline Version
+      run: |
+        echo "version=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout --file pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Make Release
+      uses: ncipollo/release-action@v1
+      with:
+        artifacts: "target/pipeline-${{ env.version }}*"
+        name: "v${{ env.version }}"
+        tag: "v${{ env.version }}"
+        generateReleaseNotes: true
+        skipIfReleaseExists: true

.github/workflows/release_pr_build.yml

@@ -0,0 +1,43 @@
+# This workflow will build a Java project with Maven, and cache/restore any dependencies to improve the workflow execution time
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-java-with-maven
+
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: GCM Pipeline Release Pull Request Build
+
+on: 
+  pull_request:
+    branches: [ "main" ]
+
+jobs:
+  release-pr-build:
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout GCM
+      uses: actions/checkout@v4
+
+    - name: Set up JDK 17
+      uses: actions/setup-java@v4
+      with:
+        java-version: '17'
+        distribution: 'temurin'
+    
+    - name: Get Version
+      run: |
+        echo "version=$(mvn help:evaluate -Dexpression=project.version -q -DforceStdout --file pom.xml)" >> "$GITHUB_ENV"
+
+    - name: Version Is Snapshot
+      if: ${{ endsWith(env.version, 'SNAPSHOT') }}
+      run: |
+        echo "Version is a SNAPSHOT version. Update version to proper version."
+        exit 1
+
+    - name: Build GCM Pipeline
+      run: mvn clean install -Pjavadoc,jacoco --file pom.xml
+      
+    # Optional: Uploads the full dependency graph to GitHub to improve the quality of Dependabot alerts this repository can receive
+   # - name: Update dependency graph
+     # uses: advanced-security/maven-dependency-submission-action@571e99aab1055c2e71a1e2309b9691de18d6b7d6