Skip to content

feat(manifest): bump to ubi 9.3-1361.1699548029 #140

feat(manifest): bump to ubi 9.3-1361.1699548029

feat(manifest): bump to ubi 9.3-1361.1699548029 #140

Workflow file for this run

name: ci
on:
push:
branches:
- master
- dev
tags:
- '*'
pull_request:
branches:
- master
- dev
types:
- opened
- edited
- reopened
- synchronize
- ready_for_review
- unlocked
- review_requested
workflow_dispatch:
env:
DOCKER_REGISTRY_REPOSITORY: sysflowtelemetry/sf-exporter
jobs:
lint:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Setup Python
uses: actions/setup-python@v3
with:
python-version: '3.x'
- name: Install requirements
run: |
python -m pip install --upgrade pip
python -m pip install black==22.3 unimport==0.9.5 safety bandit
- name: Check style
run: black --check -S -l 120 src/
- name: Check imports
run: unimport --check --exclude __init__.py src/
- name: Check package vulnerabilities
run: safety check -r src/requirements.txt
- name: Check code vulnerabilities
run: bandit -r src/
docker:
needs: lint
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
steps:
- name: Checkout
uses: actions/checkout@v3
with:
submodules: true
- name: Docker meta
id: meta
uses: docker/metadata-action@v4
with:
images: |
${{ env.DOCKER_REGISTRY_REPOSITORY }}
ghcr.io/${{ github.repository }}
tags: |
type=edge,branch=master
type=ref,event=branch
type=ref,event=tag
type=ref,event=pr
labels: |
org.opencontainers.image.documentation=https://sysflow.readthedocs.io/
org.opencontainers.image.vendor=SysFlow
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Login to DockerHub
uses: docker/login-action@v2
if: ${{ github.event_name != 'pull_request' }}
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Login to GitHub Container Registry
uses: docker/login-action@v2
if: ${{ github.event_name != 'pull_request' }}
with:
registry: ghcr.io
username: ${{ github.repository_owner }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Set build args
id: args
shell: bash
run: |
echo "BRANCH=$(echo ${GITHUB_REF#refs/*/})" >> $GITHUB_ENV
echo "SHA_SHORT=$(git rev-parse --short HEAD)" >> $GITHUB_ENV
echo "UBI_VERSION=$(awk -F'=' '/UBI_VERSION/{print $2}' makefile.manifest.inc)" >> $GITHUB_ENV
- name: Build and push
id: docker_build
uses: docker/build-push-action@v3
with:
push: ${{ github.event_name != 'pull_request' }}
tags: "${{ steps.meta.outputs.tags }}"
labels: "${{ steps.meta.outputs.labels }}"
build-args: |
VERSION=${{ env.BRANCH }}
RELEASE=${{ env.SHA_SHORT }}
UBI_VER=${{ env.UBI_VERSION }}
- name: push README to Dockerhub
uses: christian-korneck/update-container-description-action@v1
if: ${{ github.ref == 'refs/heads/master' && github.event_name != 'pull_request' }}
env:
DOCKER_USER: ${{ secrets.DOCKERHUB_USERNAME }}
DOCKER_PASS: ${{ secrets.DOCKERHUB_TOKEN }}
with:
destination_container_repo: ${{ env.DOCKER_REGISTRY_REPOSITORY }}
provider: dockerhub
readme_file: "README.md"
- name: Image digest
run: echo ${{ steps.docker_build.outputs.digest }}
release:
needs: [docker]
if: startsWith(github.ref, 'refs/tags/')
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- name: Checkout
uses: actions/checkout@v3
- name: Get version from tag
id: tag_name
shell: bash
run: |
GHREF=${GITHUB_REF#refs/tags/}; echo "CURRENT_VERSION=${GHREF%%-*}" >> $GITHUB_ENV
echo "CURRENT_TAG=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV
- name: Get Changelog Entry
id: changelog_reader
uses: mindsers/changelog-reader-action@v2
with:
version: ${{ env.CURRENT_VERSION }}
path: ./CHANGELOG.md
- name: Release
uses: softprops/action-gh-release@v1
with:
body: ${{ steps.changelog_reader.outputs.changes }}
token: ${{ secrets.GITHUB_TOKEN }}
prerelease: ( contains(env.CURRENT_VERSION, '-rc') || contains(env.CURRENT_VERSION, '-alpha') || contains(env.CURRENT_VERSION, '-beta') )
draft: true