X-Git-Url: https://git.piment-noir.org/?a=blobdiff_plain;f=.github%2Fworkflows%2Fci.yml;h=1334244836579dad6c6694bba61cc9ad58765aa1;hb=6eddb71902ac0d0552f705190aaf62525f07c476;hp=3ce95224edc0a42a8d039f1a0b5773bab763c3dd;hpb=ea4f96d4551e157941463f86d64a16a53855ee7f;p=e-mobility-charging-stations-simulator.git diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 3ce95224..13342448 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -7,48 +7,76 @@ on: merge_group: branches: [main] jobs: - build: + check-secrets: + runs-on: ubuntu-latest + outputs: + sonar-token-exists: ${{ steps.sonar-token.outputs.defined }} + steps: + - name: Check for SonarCloud Token Availability + id: sonar-token + shell: bash + run: | + if [ "${{ secrets.SONAR_TOKEN }}" != '' ]; then + echo "defined=true" >> $GITHUB_OUTPUT; + else + echo "defined=false" >> $GITHUB_OUTPUT; + fi + build-simulator: + needs: [check-secrets] strategy: matrix: os: [windows-latest, macos-latest, ubuntu-latest] - node: ['16.x', '18.x', '20.x'] + node: ['20.x', 'latest'] name: Build simulator with Node ${{ matrix.node }} on ${{ matrix.os }} runs-on: ${{ matrix.os }} steps: - uses: actions/checkout@v4 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - - uses: pnpm/action-setup@v2 + - name: Dependency Review + if: ${{ github.event_name == 'push' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: actions/dependency-review-action@v4 with: - version: 8 + base-ref: ${{ github.ref_name }} + head-ref: ${{ github.sha }} + - name: Pull Request Dependency Review + if: ${{ github.event_name == 'pull_request' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: actions/dependency-review-action@v4 + - uses: pnpm/action-setup@v3 + with: + version: 9 - name: Setup node ${{ matrix.node }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node }} cache: 'pnpm' - name: pnpm install - run: pnpm install --ignore-scripts + run: pnpm install --ignore-scripts --frozen-lockfile + - name: pnpm audit + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + run: pnpm audit --prod - name: pnpm lint - if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm lint - name: pnpm build run: pnpm build - name: pnpm test run: pnpm test - name: pnpm coverage - if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} + if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm coverage - name: SonarCloud Scan - if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} - uses: sonarsource/sonarcloud-github-action@v2.0.1 + if: ${{ needs.check-secrets.outputs.sonar-token-exists == 'true' && github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: sonarsource/sonarcloud-github-action@v2.1.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} build-dashboard: + needs: [check-secrets] strategy: matrix: os: [windows-latest, macos-latest, ubuntu-latest] - node: ['16.x', '18.x', '20.x'] + node: ['18.x', '20.x', 'latest'] name: Build dashboard with Node ${{ matrix.node }} on ${{ matrix.os }} runs-on: ${{ matrix.os }} defaults: @@ -58,42 +86,54 @@ jobs: - uses: actions/checkout@v4 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - - uses: pnpm/action-setup@v2 + - name: Dependency Review + if: ${{ github.event_name == 'push' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: actions/dependency-review-action@v4 + with: + base-ref: ${{ github.ref_name }} + head-ref: ${{ github.sha }} + - name: Pull Request Dependency Review + if: ${{ github.event_name == 'pull_request' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: actions/dependency-review-action@v4 + - uses: pnpm/action-setup@v3 with: - version: 8 + version: 9 - name: Setup node ${{ matrix.node }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node }} cache: 'pnpm' - name: pnpm install - run: pnpm install --ignore-scripts + run: pnpm install --ignore-scripts --frozen-lockfile + - name: pnpm audit + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + run: pnpm audit --prod - name: pnpm lint - if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm lint - name: pnpm build run: pnpm build - name: pnpm test run: pnpm test - name: pnpm coverage - if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} + if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm coverage - name: SonarCloud Scan - if: ${{ github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '18.x' }} - uses: sonarsource/sonarcloud-github-action@v2.0.1 + if: ${{ needs.check-secrets.outputs.sonar-token-exists == 'true' && github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + uses: sonarsource/sonarcloud-github-action@v2.1.1 with: projectBaseDir: ui/web env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} - build-docker: + build-docker-image: runs-on: ubuntu-latest name: Build docker image steps: - uses: actions/checkout@v4 - name: Setup Docker Buildx id: buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@v3 - name: Build docker image run: | cd docker