Skip to content

ci: init gh-actions

ci: init gh-actions #1

Workflow file for this run

name: Helm CI
on:
push:
branches:
- main
paths:
- .github/workflows/**
- charts/**
pull_request:
branches:
- main
paths:
- .github/workflows/**
- charts/**
permissions: { }
jobs:
lint:
name: Lint
runs-on: ubuntu-latest
timeout-minutes: 5
permissions:
security-events: write
steps:
- name: Checkout Repository
uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # tag=v4.1.5
with:
fetch-depth: "0"
- name: Set up Helm
uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # tag=v4.2.0
- name: Set up Python
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # tag=v5.1.0
with:
python-version: "3.11"
check-latest: true
- name: Set up Chart Testing
uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # tag=v2.6.1
- name: Lint Chart
run: ct lint --config ct.yaml
- name: Scan for Misconfiguration
uses: aquasecurity/trivy-action@b2933f565dbc598b29947660e66259e3c7bc8561 # tag=v0.20.0
with:
scan-type: config
format: sarif
output: misconfig.sarif
- name: Upload Misconfiguration Scan Results
uses: github/codeql-action/upload-sarif@956f09c2ef1926b580554b9014cfb8a51abf89dd # tag=codeql-bundle-v2.16.6
with:
sarif_file: misconfig.sarif
test:
name: Test
runs-on: ubuntu-latest
timeout-minutes: 15
steps:
- name: Checkout Repository
uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # tag=v4.1.5
with:
fetch-depth: "0"
- name: Set up Helm
uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # tag=v4.2.0
- name: Set up Python
uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # tag=v5.1.0
with:
python-version: "3.11"
check-latest: true
- name: Set up Chart Testing
uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # tag=v2.6.1
- name: Create Kind Cluster
uses: helm/kind-action@0025e74a8c7512023d06dc019c617aa3cf561fde # tag=v1.10.0
- name: Test
run: ct install --config ct.yaml --debug