build(lint): Update golangci-lint-action version to v6 #1940
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build, Lint, and Test | |
| env: | |
| EXPORT_RESULT: true | |
| on: | |
| push: | |
| branches: | |
| - main | |
| - 'release-*' | |
| pull_request_target: | |
| jobs: | |
| build-container: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| ref: "${{ github.event.pull_request.head.sha }}" | |
| - uses: actions/cache@v3 | |
| with: | |
| path: | | |
| ~/.cache/golangci-lint | |
| ~/.cache/go-build | |
| ~/go/pkg/mod | |
| key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }} | |
| restore-keys: | | |
| ${{ runner.os }}-go- | |
| - name: Install devbox | |
| run: curl -fsSL https://get.jetpack.io/devbox | bash -s -- -f | |
| - name: Install devbox deps | |
| run: devbox install | |
| - name: Verify that generated manifests committed to the repository are up to date | |
| run: devbox run -- make verify-manifests | |
| - name: Build | |
| run: devbox run -- make generate fmt vet build | |
| - name: Run golangci-lint | |
| uses: golangci/golangci-lint-action@v6 | |
| with: | |
| version: v1.59 | |
| - name: Lint | |
| run: devbox run -- make lint-yaml | |
| - name: Template Tests | |
| run: devbox run -- make template-test | |
| - name: Run unit tests | |
| run: devbox run -- make unit-test | |
| # gocov-xml expects things to be properly placed under go path. | |
| # GHA clones into /home/runner/work/repository so we create | |
| # the directory under the right path and link it | |
| - run: mkdir -p /home/runner/go/src/github.com/nutanix-cloud-native/ && ln -s /home/runner/work/cluster-api-provider-nutanix/cluster-api-provider-nutanix /home/runner/go/src/github.com/nutanix-cloud-native | |
| - name: Run coverage report | |
| run: devbox run -- "make coverage" | |
| - name: Codecov | |
| uses: codecov/codecov-action@v3.1.4 | |
| env: | |
| CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} | |
| with: | |
| file: ./coverage.xml # Replace with the path to your coverage report | |
| fail_ci_if_error: true | |
| - name: Run Trivy vulnerability scanner | |
| uses: aquasecurity/trivy-action@0.16.1 | |
| with: | |
| scan-type: "fs" | |
| ignore-unfixed: true | |
| format: "table" | |
| exit-code: "1" | |
| vuln-type: "os,library" | |
| severity: "CRITICAL,HIGH" | |
| e2e: | |
| strategy: | |
| matrix: | |
| e2e-labels: | |
| - "clusterctl-upgrade" | |
| - "clusterclass" | |
| - "capx-feature-test" | |
| - "scaling" | |
| fail-fast: false | |
| uses: ./.github/workflows/e2e.yaml | |
| with: | |
| e2e-labels: ${{ matrix.e2e-labels }} | |
| make-target: test-e2e-calico | |
| secrets: inherit | |
| permissions: | |
| contents: read | |
| checks: write |