fix: properly handle go.mod files with no dependencies #203
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: Stage | |
| env: | |
| # 🖊️ EDIT to change the image build settings. | |
| IMAGE_NAME: exhort-javascript-api | |
| IMAGE_REGISTRY: quay.io/ecosystem-appeng | |
| DOCKERFILE_PATH: ./docker-image/Dockerfiles/Dockerfile | |
| on: | |
| pull_request_target: | |
| types: | |
| - closed | |
| branches: | |
| - main | |
| - 'release/*' | |
| paths: | |
| - "src/**" | |
| - "test/**" | |
| - "package-lock.json" | |
| - "package.json" | |
| - "tsconfig.json" | |
| - ".github/workflows/stage.yml" | |
| - "docker-image/**" | |
| jobs: | |
| stage: | |
| runs-on: ubuntu-latest | |
| # Branches that starts with `release/` shouldn't trigger this workflow, as these are triggering the release workflow. | |
| if: github.repository_owner == 'trustification' && github.event.pull_request.merged == true && !startsWith(github.head_ref, 'release/') | |
| environment: staging | |
| name: Stage the project | |
| steps: | |
| - name: Checkout sources | |
| uses: actions/checkout@v4 | |
| with: | |
| ssh-key: ${{ secrets.DEPLOY_KEY }} | |
| fetch-depth: 0 | |
| - name: Install node 18 | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: 18 | |
| cache: npm | |
| registry-url: 'https://npm.pkg.github.com' | |
| env: | |
| NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Create .npmrc | |
| run: | | |
| echo "@trustification:registry=https://npm.pkg.github.com" >> .npmrc | |
| - name: Enable Corepack | |
| run: corepack enable | |
| - name: Prepare Yarn | |
| run: corepack prepare [email protected] --activate | |
| - name: Prepare PNPM | |
| run: corepack prepare pnpm@latest --activate | |
| - name: Setup Java 17 | |
| uses: actions/setup-java@v4 | |
| with: | |
| distribution: temurin | |
| java-version: 17 | |
| cache: maven | |
| - name: setup go | |
| uses: actions/setup-go@v5 | |
| with: | |
| go-version: '1.20.1' | |
| - name: Setup Gradle | |
| uses: gradle/gradle-build-action@v3 | |
| - name: Setup syft | |
| uses: jaxxstorm/[email protected] | |
| with: | |
| repo: anchore/syft | |
| platform: linux | |
| arch: amd64 | |
| # tag: the latest one, so we can catch changes | |
| - name: Setup skopeo | |
| run: sudo apt update && sudo apt-get -y install skopeo | |
| - name: Configure git | |
| run: | | |
| git config user.name "${{ github.actor }}" | |
| git config user.email "${{ github.actor }}@users.noreply.github.com" | |
| - name: Update package with new version | |
| id: bump | |
| run: | | |
| echo "version=$(npm version prerelease --no-git-tag-version --preid ea)" >> "$GITHUB_OUTPUT" | |
| - name: Install project modules | |
| run: npm ci | |
| - name: Compile project | |
| run: npm run compile | |
| - name: Check if re-test is needed | |
| id: test-check | |
| uses: zvigrinberg/[email protected] | |
| with: | |
| base-ref: ${{ github.base_ref }} | |
| pr-ref: ${{ github.head_ref }} | |
| file-pattern-regex: "^src/.*|^test/.*" | |
| - name: setup Python | |
| uses: actions/setup-python@v4 | |
| if: steps.test-check.outputs.retest-is-needed == 'true' | |
| with: | |
| python-version: '3.9' | |
| cache: 'pip' | |
| - name: get Python location | |
| id: python-location | |
| run: | | |
| echo "python-bin-location=$(echo $pythonLocation)/bin" >> $GITHUB_OUTPUT | |
| - name: re-test Unit-Tests + Integration Tests | |
| if: steps.test-check.outputs.retest-is-needed == 'true' | |
| env: | |
| TRIGGERING_FILE: ${{ steps.test-check.outputs.triggering-file}} | |
| run: | | |
| echo "Re-test was triggered!!, triggering changed file - $TRIGGERING_FILE" | |
| echo "Running Again Unit-tests =>" | |
| npm run test | |
| echo "Running Again Integration tests =>" | |
| npm run integration-tests | |
| - name: Publish package | |
| env: | |
| NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| run: npm publish | |
| - name: Commit and push package modifications | |
| run: | | |
| git add package.json | |
| git add package-lock.json | |
| git commit -m "build: updated package with ${{ steps.bump.outputs.version }} [skip ci]" | |
| git push | |
| - name: Create and push new tag | |
| run: | | |
| git tag ${{ steps.bump.outputs.version }} -m "${{ steps.bump.outputs.version }}" | |
| git push origin ${{ steps.bump.outputs.version }} | |
| - name: Create a release | |
| uses: actions/[email protected] | |
| with: | |
| github-token: ${{ secrets.GITHUB_TOKEN }} | |
| script: | | |
| const repo_name = context.payload.repository.full_name | |
| const response = await github.request('POST /repos/' + repo_name + '/releases', { | |
| tag_name: '${{ steps.bump.outputs.version }}', | |
| name: '${{ steps.bump.outputs.version }}', | |
| prerelease: true, | |
| generate_release_notes: true | |
| }) | |
| - name: Build Image With buildah | |
| id: build-image | |
| uses: redhat-actions/buildah-build@v2 | |
| with: | |
| image: ${{ env.IMAGE_NAME }} | |
| tags: ${{ steps.bump.outputs.version }} | |
| dockerfiles: | | |
| ${{ env.DOCKERFILE_PATH }} | |
| build-args: | | |
| PACKAGE_REGISTRY_ACCESS_TOKEN=${{ secrets.PACKAGE_REGISTRY_ACCESS_TOKEN }} | |
| EXHORT_JAVASCRIPT_API_VERSION=${{ steps.bump.outputs.version }} | |
| context: docker-image | |
| - name: Push Image To Registry | |
| uses: redhat-actions/push-to-registry@v2 | |
| with: | |
| image: ${{ steps.build-image.outputs.image }} | |
| tags: ${{ steps.build-image.outputs.tags }} | |
| registry: ${{ env.IMAGE_REGISTRY }} | |
| username: ${{ secrets.IMAGE_REGISTRY_USER }} | |
| password: ${{ secrets.IMAGE_REGISTRY_PASSWORD }} |