Skip to content

build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 #120

build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1

build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 #120

Workflow file for this run

name: PR
on:
pull_request:
branches: [main]
workflow_dispatch:
concurrency:
# PR open and close use the same group, allowing only one at a time
group: pr-${{ github.workflow }}-${{ github.event.number }}
cancel-in-progress: true
jobs:
pr-greeting:
if: "!github.event.pull_request.head.repo.fork"
name: PR Greeting
env:
DOMAIN: apps.silver.devops.gov.bc.ca
PREFIX: ${{ github.event.repository.name }}-${{ github.event.number }}
runs-on: ubuntu-22.04
permissions:
pull-requests: write
steps:
- name: PR Greeting
uses: bcgov-nr/[email protected]
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
add_markdown: |
---
Thanks for the PR!
Deployments, as required, will be available below:
- [Backend](https://${{ env.PREFIX }}-backend.${{ env.DOMAIN }})
- [Backend-java](https://${{ env.PREFIX }}-backend-java.${{ env.DOMAIN }})
- [Backend-py](https://${{ env.PREFIX }}-backend-py.${{ env.DOMAIN }})
- [Backend-go](https://${{ env.PREFIX }}-backend-go.${{ env.DOMAIN }})
Please create PRs in draft mode. Mark as ready to enable:
- [Analysis Workflow](https://github.com/${{ github.repository }}/actions/workflows/analysis.yml)
- [Tests Workflow](https://github.com/${{ github.repository }}/actions/workflows/tests.yml)
After merge, new images are promoted to:
- [Main Merge Workflow](https://github.com/${{ github.repository }}/actions/workflows/merge-main.yml)
# https://github.com/bcgov-nr/action-builder-ghcr
builds:
name: Builds
if: "!github.event.pull_request.head.repo.fork"
permissions:
packages: write
runs-on: ubuntu-22.04
strategy:
matrix:
package: [database, backend-go, backend-java, backend-py, migrations-go, migrations-py]
include:
- package: database
triggers: ('database/')
- package: backend-go
triggers: ('backend-go/')
- package: backend-java
triggers: ('backend-java/')
- package: backend-py
triggers: ('backend-py/')
- package: migrations-py
triggers: ('backend-py/db')
build_context: ./backend-py/db
- package: migrations-go
triggers: ('backend-go/db')
build_context: ./backend-go/db
steps:
- uses: bcgov-nr/[email protected]
with:
build_context: ${{ matrix.build_context }}
keep_versions: 10
package: ${{ matrix.package }}
tag: ${{ github.event.number }}
triggers: ${{ matrix.triggers }}
tag_fallback: test
# https://github.com/bcgov-nr/action-deployer-openshift
deploys:
name: Deploys
if: "!github.event.pull_request.head.repo.fork"
needs: [builds]
permissions:
issues: write
runs-on: ubuntu-22.04
strategy:
matrix:
name: [database, backend-go, backend-java, backend-py]
include:
- name: database
file: database/openshift.deploy.yml
overwrite: false
triggers: ('database' 'backend-go' 'backend-java' 'backend-py')
- name: backend-go
file: backend-go/openshift.deploy.yml
overwrite: true
parameters: -p MIN_REPLICAS=1 -p MAX_REPLICAS=2
-p PROMOTE=${{ github.repository }}/backend-go:${{ github.event.number }}
-p PROMOTE_MIGRATION=${{ github.repository }}/migrations-go:${{ github.event.number }}
triggers: ('backend-go/')
- name: backend-java
file: backend-java/openshift.deploy.yml
overwrite: true
parameters: -p MIN_REPLICAS=1 -p MAX_REPLICAS=2
-p PROMOTE=${{ github.repository }}/backend-java:${{ github.event.number }}
triggers: ('backend-java/')
- name: backend-py
file: backend-py/openshift.deploy.yml
overwrite: true
parameters: -p MIN_REPLICAS=1 -p MAX_REPLICAS=2
-p PROMOTE=${{ github.repository }}/backend-py:${{ github.event.number }}
-p PROMOTE_MIGRATION=${{ github.repository }}/migrations-py:${{ github.event.number }}
triggers: ('backend-py/')
steps:
- uses: bcgov-nr/[email protected]
with:
file: ${{ matrix.file }}
oc_namespace: ${{ vars.OC_NAMESPACE }}
oc_server: ${{ vars.OC_SERVER }}
oc_token: ${{ secrets.OC_TOKEN }}
overwrite: ${{ matrix.overwrite }}
parameters:
-p ZONE=${{ github.event.number }} -p NAME=${{ github.event.repository.name }}
${{ matrix.parameters }}
triggers: ${{ matrix.triggers }}
verification_path: ${{ matrix.verification_path }}