mirror of
https://github.com/aquasecurity/kube-bench.git
synced 2024-11-24 00:50:44 +00:00
103 lines
2.6 KiB
YAML
103 lines
2.6 KiB
YAML
---
|
|
name: Build
|
|
on:
|
|
push:
|
|
branches:
|
|
- main
|
|
paths-ignore:
|
|
- "*.md"
|
|
- "LICENSE"
|
|
- "NOTICE"
|
|
pull_request:
|
|
paths-ignore:
|
|
- "*.md"
|
|
- "LICENSE"
|
|
- "NOTICE"
|
|
env:
|
|
GO_VERSION: "1.22.7"
|
|
KIND_VERSION: "v0.11.1"
|
|
KIND_IMAGE: "kindest/node:v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6"
|
|
|
|
jobs:
|
|
lint:
|
|
name: Lint
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Setup Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version: ${{ env.GO_VERSION }}
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
- name: yaml-lint
|
|
uses: ibiqlik/action-yamllint@v3
|
|
- name: Setup golangci-lint
|
|
uses: golangci/golangci-lint-action@v4
|
|
with:
|
|
version: v1.57.2
|
|
args: --verbose
|
|
unit:
|
|
name: Unit tests
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Setup Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version: ${{ env.GO_VERSION }}
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
- name: Run unit tests
|
|
run: make tests
|
|
- name: Upload code coverage
|
|
uses: codecov/codecov-action@v4
|
|
with:
|
|
file: ./coverage.txt
|
|
e2e:
|
|
name: E2e tests
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Setup Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version: ${{ env.GO_VERSION }}
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
- name: Setup Kubernetes cluster (KIND)
|
|
uses: engineerd/setup-kind@v0.5.0
|
|
with:
|
|
version: ${{ env.KIND_VERSION }}
|
|
image: ${{ env.KIND_IMAGE }}
|
|
name: kube-bench
|
|
- name: Test connection to Kubernetes cluster
|
|
run: |
|
|
kubectl cluster-info
|
|
kubectl describe node
|
|
- name: Run integration tests
|
|
run: |
|
|
make integration-test
|
|
- name: Compare output with expected output
|
|
uses: GuillaumeFalourd/diff-action@v1
|
|
with:
|
|
first_file_path: ./test.data
|
|
second_file_path: integration/testdata/Expected_output.data
|
|
expected_result: PASSED
|
|
release:
|
|
name: Release snapshot
|
|
runs-on: ubuntu-latest
|
|
needs: [e2e, unit]
|
|
steps:
|
|
- name: Setup Go
|
|
uses: actions/setup-go@v5
|
|
with:
|
|
go-version: ${{ env.GO_VERSION }}
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
with:
|
|
fetch-depth: 0
|
|
- name: Dry-run release snapshot
|
|
uses: goreleaser/goreleaser-action@v6
|
|
with:
|
|
distribution: goreleaser
|
|
version: v1.7.0
|
|
args: release --snapshot --skip-publish --rm-dist
|