-
Notifications
You must be signed in to change notification settings - Fork 0
70 lines (67 loc) · 2.33 KB
/
ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
on: [push, pull_request]
name: CI
env:
CACHIX_NAME: sos21-backend-infrastructure
# avoid caching libguestfs-appliance because it's large and built from binary distribution
CACHIX_PUSH_FILTER: libguestfs-appliance
jobs:
nixpkgs-fmt:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
with:
name: "${{ env.CACHIX_NAME }}"
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
pushFilter: "${{ env.CACHIX_PUSH_FILTER }}"
- run: nix-env -f ./nix/pkgs.nix -iA nixpkgs-fmt
- run: nixpkgs-fmt --check $(find . -name '*.nix')
shellcheck:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
with:
name: "${{ env.CACHIX_NAME }}"
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
pushFilter: "${{ env.CACHIX_PUSH_FILTER }}"
- run: nix-env -f ./nix/pkgs.nix -iA shellcheck
- run: shellcheck $(find . -name '*.sh')
terraform-fmt:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
with:
name: "${{ env.CACHIX_NAME }}"
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
pushFilter: "${{ env.CACHIX_PUSH_FILTER }}"
- run: nix-env -f ./nix/terraform.nix -i
- run: terraform fmt -check -recursive
terraform-validate:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
with:
name: "${{ env.CACHIX_NAME }}"
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
pushFilter: "${{ env.CACHIX_PUSH_FILTER }}"
- run: nix-env -f ./nix/terraform.nix -i
- run: terraform init -backend=false
- run: terraform validate
build-disk:
runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
with:
name: "${{ env.CACHIX_NAME }}"
authToken: "${{ secrets.CACHIX_AUTH_TOKEN }}"
pushFilter: "${{ env.CACHIX_PUSH_FILTER }}"
- run: nix-build nix/disk --arg useKvm false