-
Notifications
You must be signed in to change notification settings - Fork 0
72 lines (69 loc) · 2.34 KB
/
ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
name: CI
on: [push, pull_request]
jobs:
tests:
runs-on: ubuntu-latest
strategy:
fail-fast: false
steps:
- uses: actions/checkout@v3
- name: Set up Python 3.11
uses: actions/setup-python@v4
with:
python-version: "3.11"
cache: "pip"
- name: Install poetry
run: python -m pip install poetry==1.6.1
- name: Configure poetry
run: python -m poetry config virtualenvs.in-project true
- name: Cache Poetry
uses: actions/cache@v3
with:
path: ./.venv
key: ${{ runner.os }}-venv-${{ hashFiles('**/poetry.lock') }}
- name: Install dependencies
run: python -m poetry install
- name: Check formatting with black
run: python -m poetry run black .
- name: Check import order
run: python -m poetry run isort . --check
- name: Lint Dockerfile
uses: hadolint/hadolint-action@master
with:
dockerfile: "Dockerfile"
- name: Lint with flake8
run: python -m poetry run flake8 --count --statistics
- name: Static analysis with mypy
run: python -m poetry run mypy
- name: Unittests with pytest
run: python -m poetry run pytest
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
# https://docs.docker.com/build/ci/github-actions/cache/#github-cache
- name: Python Build Cache for Docker
uses: actions/cache@v3
with:
path: python-build-cache
key: ${{ runner.os }}-python-build-cache-${{ hashFiles('**/python.sum') }}
- name: Inject python-build-cache into Docker
uses: overmindtech/buildkit-cache-dance/inject@main
with:
cache-source: python-build-cache
- name: Build docker container
uses: docker/build-push-action@v3
with:
tags: localbuild/testimage:latest
push: false
load: true
cache-from: type=gha
cache-to: type=gha,mode=max
- name: Extract python-build-cache from Docker
uses: overmindtech/buildkit-cache-dance/extract@main
with:
cache-source: python-build-cache
- name: Scan docker image
uses: anchore/scan-action@v3
with:
image: localbuild/testimage:latest
fail-build: false
output-format: table