Daily jobs #826
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Daily jobs | |
on: | |
schedule: | |
- cron: "30 1 * * *" | |
jobs: | |
periodics-gotest: | |
name: Run go tests | |
runs-on: ubuntu-18.04 | |
steps: | |
- name: checkout | |
uses: actions/checkout@v3 | |
- name: run tests | |
run: go test -json ./... > test.json | |
- name: Annotate tests | |
if: always() | |
uses: guyarb/[email protected] | |
with: | |
test-results: test.json | |
periodics-mark-stale: | |
name: Mark stale issues and PRs | |
runs-on: ubuntu-latest | |
steps: | |
# Stale by default waits for 60 days before marking PR/issues as stale, and closes them after 21 days. | |
# Do not expire the first issues that would allow the community to grow. | |
- uses: actions/stale@v5 | |
with: | |
repo-token: ${{ secrets.GITHUB_TOKEN }} | |
stale-issue-message: 'This issue was automatically considered stale due to lack of activity. Please update it and/or join our slack channels to promote it, before it automatically closes (in 7 days).' | |
stale-pr-message: 'This PR was automatically considered stale due to lack of activity. Please refresh it and/or join our slack channels to highlight it, before it automatically closes (in 7 days).' | |
stale-issue-label: 'no-issue-activity' | |
stale-pr-label: 'no-pr-activity' | |
exempt-issue-labels: 'good first issue,keep' | |
days-before-close: 21 | |
check-docs-links: | |
name: Check docs for incorrect links | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Link Checker | |
id: lc | |
uses: peter-evans/link-checker@v1 | |
with: | |
args: -r *.md *.yaml */*/*.go -x .cluster.local | |
- name: Fail if there were link errors | |
run: exit ${{ steps.lc.outputs.exit_code }} | |
vuln-scan: | |
name: Build image and scan it against known vulnerabilities | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v3 | |
- name: Find go version | |
run: | | |
GO_VERSION=$(awk '/^go/ {print $2};' go.mod) | |
echo "::set-output name=version::${GO_VERSION}" | |
id: awk_gomod | |
- name: Ensure go version | |
uses: actions/setup-go@v3 | |
with: | |
go-version: "${{ steps.awk_gomod.outputs.version }}" | |
check-latest: true | |
- run: make DH_ORG="${{ github.repository_owner }}" VERSION="${{ github.sha }}" image | |
- uses: Azure/container-scan@v0 | |
env: | |
# See https://github.com/goodwithtech/dockle/issues/188 | |
DOCKLE_HOST: "unix:///var/run/docker.sock" | |
with: | |
image-name: ghcr.io/${{ github.repository_owner }}/kured:${{ github.sha }} |