Add more YAML verification #5151
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![datadog-datadog-prod-us1[bot]](https://avatars.githubusercontent.com/u/365230?s=60&v=4){kind=small}
Overall package sizeSelf size: 8.54 MB Dependency sizes| name | version | self size | total size | |------|---------|-----------|------------| | @datadog/libdatadog | 0.4.0 | 29.44 MB | 29.44 MB | | @datadog/native-appsec | 8.4.0 | 19.25 MB | 19.26 MB | | @datadog/native-iast-taint-tracking | 3.2.0 | 13.9 MB | 13.91 MB | | @datadog/pprof | 5.5.0 | 9.8 MB | 10.17 MB | | protobufjs | 7.2.5 | 2.77 MB | 5.16 MB | | @datadog/native-iast-rewriter | 2.6.1 | 2.59 MB | 2.73 MB | | @opentelemetry/core | 1.14.0 | 872.87 kB | 1.47 MB | | @datadog/native-metrics | 3.1.0 | 1.06 MB | 1.46 MB | | @opentelemetry/api | 1.8.0 | 1.21 MB | 1.21 MB | | import-in-the-middle | 1.11.2 | 112.74 kB | 826.22 kB | | source-map | 0.7.4 | 226 kB | 226 kB | | opentracing | 0.14.7 | 194.81 kB | 194.81 kB | | lru-cache | 7.18.3 | 133.92 kB | 133.92 kB | | pprof-format | 2.1.0 | 111.69 kB | 111.69 kB | | @datadog/sketches-js | 2.1.0 | 109.9 kB | 109.9 kB | | semver | 7.6.3 | 95.82 kB | 95.82 kB | | lodash.sortby | 4.7.0 | 75.76 kB | 75.76 kB | | ignore | 5.3.1 | 51.46 kB | 51.46 kB | | shell-quote | 1.8.1 | 44.96 kB | 44.96 kB | | istanbul-lib-coverage | 3.2.0 | 29.34 kB | 29.34 kB | | rfdc | 1.3.1 | 25.21 kB | 25.21 kB | | @isaacs/ttlcache | 1.4.1 | 25.2 kB | 25.2 kB | | tlhunter-sorted-set | 0.1.0 | 24.94 kB | 24.94 kB | | limiter | 1.1.5 | 23.17 kB | 23.17 kB | | dc-polyfill | 0.1.4 | 23.1 kB | 23.1 kB | | retry | 0.13.1 | 18.85 kB | 18.85 kB | | jest-docblock | 29.7.0 | 8.99 kB | 12.76 kB | | crypto-randomuuid | 1.0.0 | 11.18 kB | 11.18 kB | | ttl-set | 1.0.0 | 4.61 kB | 9.69 kB | | path-to-regexp | 0.1.12 | 6.6 kB | 6.6 kB | | koalas | 1.0.2 | 6.47 kB | 6.47 kB | | module-details-from-path | 1.0.3 | 4.47 kB | 4.47 kB |🤖 This report was automatically generated by heaviest-objects-in-the-universe |
BenchmarksBenchmark execution time: 2025-01-27 20:59:34 Comparing candidate commit baff787 in PR branch Found 1 performance improvements and 0 performance regressions! Performance is the same for 911 metrics, 21 unstable metrics. scenario:plugin-graphql-with-depth-and-collapse-on-18
|
bengl
force-pushed
the
bengl/more-yaml-verification
branch
2 times, most recently
from
9712db5 to
75b9f4b
Compare
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #5151 +/- ##
==========================================
- Coverage 90.38% 81.05% -9.33%
==========================================
Files 151 477 +326
Lines 5198 21307 +16109
==========================================
+ Hits 4698 17270 +12572
- Misses 500 4037 +3537 ☔ View full report in Codecov by Sentry. |
| env: | ||
| PLUGINS: multer | ||
| steps: | ||
| - uses: actions/checkout@v4 |
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
bengl
force-pushed
the
bengl/more-yaml-verification
branch
from
83cc0ba to
52f0f5a
Compare
simon-id
reviewed
Jan 24, 2025
simon-id
reviewed
Jan 24, 2025
simon-id
reviewed
Jan 24, 2025
|
few comments otherwise LGTM |
bengl
force-pushed
the
bengl/more-yaml-verification
branch
from
6d185b9 to
15d94b6
Compare
* Validate YAML files using actionlint * Check that tests in packages/datadog-instrumentations/tests/ are actually run. * Ensure all tests have the same triggers.
It was testing very specific output, when really it should have just looked for its own output.
bengl
force-pushed
the
bengl/more-yaml-verification
branch
from
cfe88a6 to
14291db
Compare
watson
reviewed
Jan 27, 2025
.github/workflows/project.yml
Outdated
| @@ -169,3 +169,36 @@ jobs: | |||
| - uses: ./.github/actions/node/setup | |||
| - uses: ./.github/actions/install | |||
| - run: node scripts/verify-ci-config.js | |||
|
|
|||
| actionlint: | |||
There was a problem hiding this comment.
Wouldn't it be prudent to put this in its own yaml file, so that the risk of a syntax error in that yaml file was as low as possible? That way a syntax error in project.yml would be detectable
| @@ -71,7 +71,7 @@ jobs: | |||
| DD_API_KEY: ${{ secrets.DD_API_KEY_CI_APP }} | |||
| steps: | |||
| - uses: actions/checkout@v4 | |||
| - uses: actions/setup-node@v3 | |||
| - uses: actions/setup-node@v4 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| @@ -311,4 +311,4 @@ jobs: | |||
| - run: yarn test:appsec:plugins:ci | |||
| - uses: ./.github/actions/node/latest | |||
| - run: yarn test:appsec:plugins:ci | |||
| - uses: codecov/codecov-action@v3 | |||
| - uses: codecov/codecov-action@v5 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| @@ -88,7 +88,7 @@ jobs: | |||
| - uses: ./.github/actions/node/latest | |||
| - run: yarn test:llmobs:plugins:ci | |||
| shell: bash | |||
| - uses: codecov/codecov-action@v3 | |||
| - uses: codecov/codecov-action@v5 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| with: | ||
| node-version: ${{ matrix.node-version }} | ||
| - run: yarn test:plugins:ci | ||
| - if: always() | ||
| uses: ./.github/actions/testagent/logs | ||
| with: | ||
| suffix: plugins-${{ github.job }}-${{ matrix.node-version }} | ||
| - uses: codecov/codecov-action@v3 | ||
| - uses: codecov/codecov-action@v5 |
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| @@ -117,7 +117,7 @@ jobs: | |||
| - run: yarn test:appsec:plugins:ci | |||
| - uses: ./.github/actions/node/20 | |||
| - run: yarn test:appsec:plugins:ci | |||
| - uses: codecov/codecov-action@v3 | |||
| - uses: codecov/codecov-action@v5 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| @@ -46,7 +46,7 @@ jobs: | |||
| - uses: ./.github/actions/node/latest | |||
| - run: yarn test:llmobs:plugins:ci | |||
| shell: bash | |||
| - uses: codecov/codecov-action@v3 | |||
| - uses: codecov/codecov-action@v5 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| actionlint: | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - uses: actions/checkout@v4 |
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| @@ -164,15 +164,15 @@ jobs: | |||
| - uses: ./.github/actions/testagent/start | |||
| - uses: ./.github/actions/node/setup | |||
| - uses: ./.github/actions/install | |||
| - uses: actions/setup-node@v3 | |||
| - uses: actions/setup-node@v4 | |||
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
| npm init -y | ||
| - name: actionlint | ||
| id: actionlint | ||
| uses: raven-actions/actionlint@v2 |
There was a problem hiding this comment.
🟠 Code Vulnerability
Workflow depends on a GitHub actions pinned by tag (...read more)
simon-id
approved these changes
Jan 28, 2025
szegedi
pushed a commit
that referenced
this pull request
Jan 30, 2025
* Validate YAML files using actionlint * Check that tests in packages/datadog-instrumentations/tests/ are actually run. * Check that tests in packages/datadog-plugin-*/tests/ are actually run. * Ensure all tests have the same triggers.
Merged
szegedi
pushed a commit
that referenced
this pull request
Jan 30, 2025
* Validate YAML files using actionlint * Check that tests in packages/datadog-instrumentations/tests/ are actually run. * Check that tests in packages/datadog-plugin-*/tests/ are actually run. * Ensure all tests have the same triggers.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
packages/datadog-instrumentations/tests/are actually run.packages/datadog-plugin-*/tests/are actually run.