diff --git a/.github/workflows/certora.yml b/.github/workflows/certora.yml index bc44c7b9d4..5e8f5b645c 100644 --- a/.github/workflows/certora.yml +++ b/.github/workflows/certora.yml @@ -1,43 +1,53 @@ -name: certora +name: Certora Prover Workflow -on: push +on: + push: + branches: + - ccip_gho + pull_request: + branches: + - ccip_gho + workflow_dispatch: jobs: - verify: + compile: runs-on: ubuntu-latest - steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v4 with: submodules: recursive - - - name: Install python - uses: actions/setup-python@v2 - with: { python-version: 3.9 } - - - name: Install java - uses: actions/setup-java@v1 - with: { java-version: '11', java-package: jre } - - - name: Install certora cli - run: pip install certora-cli==7.21.1 - - - name: Install solc - run: | - wget https://github.com/ethereum/solidity/releases/download/v0.8.24/solc-static-linux - chmod +x solc-static-linux - sudo mv solc-static-linux /usr/local/bin/solc8.24 - - - name: Verify rule ${{ matrix.rule }} - run: | - echo "key length" ${#CERTORAKEY} - certoraRun certora/confs/${{ matrix.rule }} + - uses: actions/setup-node@v4 + - run: npm install + - uses: Certora/certora-run-action@v1 + with: + configurations: |- + certora/confs/ccip.conf + solc-versions: 0.8.24 + solc-remove-version-prefix: "0." + cli-version: 7.21.1 + job-name: "CCIP Compiled Rules" + certora-key: ${{ secrets.CERTORAKEY }} + compilation-steps-only: true env: - CERTORAKEY: ${{ secrets.CERTORAKEY }} + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - strategy: - fail-fast: false - max-parallel: 16 - matrix: - rule: - - ccip.conf + verify: + runs-on: ubuntu-latest + needs: compile + steps: + - uses: actions/checkout@v4 + with: + submodules: recursive + - uses: actions/setup-node@v4 + - run: npm install + - uses: Certora/certora-run-action@v1 + with: + configurations: |- + certora/confs/ccip.conf + solc-versions: 0.8.24 + solc-remove-version-prefix: "0." + cli-version: 7.21.1 + job-name: "CCIP Verified Rules" + certora-key: ${{ secrets.CERTORAKEY }} + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}