Skip to content

Merge pull request #11 from KeplerOps/Brad-Edwards/issue10 #14

Merge pull request #11 from KeplerOps/Brad-Edwards/issue10

Merge pull request #11 from KeplerOps/Brad-Edwards/issue10 #14

Workflow file for this run

name: Build
on:
push:
branches:
- main
pull_request:
types: [opened, synchronize, reopened]
jobs:
lint:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: '3.10'
- name: Cache dependencies
uses: actions/cache@v3
with:
path: ~/.cache/pip
key: ${{ runner.os }}-pip-${{ hashFiles('**/requirements.txt') }}
restore-keys: |
${{ runner.os }}-pip-
- name: Install dependencies
run: |
pip install --upgrade pip
pip install -r requirements.txt
- name: Check imports (isort)
run: isort --check-only .
- name: Check formatting (black)
run: black --check .
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: '3.10'
- name: Install bandit
run: pip install bandit
- name: Run bandit
run: bandit -r . -c bandit.yaml
test:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v4
with:
python-version: '3.10'
- name: Install dependencies
run: |
pip install --upgrade pip
pip install -r requirements.txt
- name: Run tests with coverage
run: |
pytest --cov=. --cov-report term-missing --cov-report xml:coverage-reports/coverage.xml
- name: Store coverage report
uses: actions/upload-artifact@v3
with:
name: coverage-report
path: coverage-reports/coverage.xml
sonarqube:
needs: test
name: SonarQube
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Download coverage report
uses: actions/download-artifact@v3
with:
name: coverage-report
path: coverage-reports
- name: SonarQube Scan
uses: SonarSource/sonarqube-scan-action@v4
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}