Skip to content

Commit

Permalink
Bump and pin github actions' dependencies
Browse files Browse the repository at this point in the history 
Signed-off-by: Paulo Gomes <pjbgf@linux.com>
  • Loading branch information
@pjbgf
pjbgf committed Dec 2, 2021
1 parent c2c7fcf commit 77e16ff
Show file tree
Hide file tree
Showing 2 changed files with 42 additions and 36 deletions.
36 changes: 18 additions & 18 deletions .github/workflows/build.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,47 +21,47 @@ permissions:
statuses: none
jobs:
macos:
runs-on: macos-latest
runs-on: macos-11
steps:
- uses: actions/checkout@v2
- uses: actions/setup-go@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: actions/setup-go@331ce1d993939866bb63c32c6cbbfd48fa76fc57 # v2.1.4
with:
go-version: ${{ env.GO_VERSION }}
- run: make test-unit
- run: make verify-go-lint

nix:
runs-on: ubuntu-latest
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: cachix/install-nix-action@d56f3ce9be45c562799280e8a561fbbe8f36de44 # v16
- uses: cachix/cachix-action@73e75d1a0cd4330597a571e8f9dedb41faa2fc4e # v10
with:
name: security-profiles-operator
authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}'
pushFilter: security-profiles-operator
- run: make nix nix-arm64

bpf-btf:
runs-on: ubuntu-latest
runs-on: ubuntu-20.04
steps:
- uses: actions/setup-go@v2
- uses: actions/setup-go@331ce1d993939866bb63c32c6cbbfd48fa76fc57 # v2.1.4
with:
go-version: ${{ env.GO_VERSION }}
- uses: actions/checkout@v2
- uses: cachix/install-nix-action@v12
- uses: cachix/cachix-action@v10
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: cachix/install-nix-action@d56f3ce9be45c562799280e8a561fbbe8f36de44 # v16
- uses: cachix/cachix-action@73e75d1a0cd4330597a571e8f9dedb41faa2fc4e # v10
with:
name: security-profiles-operator
authToken: '${{ secrets.CACHIX_AUTH_TOKEN }}'
pushFilter: security-profiles-operator
- run: make verify-bpf-btf | true

image:
runs-on: ubuntu-18.04
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: redhat-actions/buildah-build@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: redhat-actions/buildah-build@b13805753a7ac93d18d14b22f6ebdf8499a3a95e # v2.9
id: build-image
with:
image: build
Expand All @@ -77,10 +77,10 @@ jobs:
password: ${{ secrets.QUAY_TOKEN }}

ubi-image:
runs-on: ubuntu-18.04
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: redhat-actions/buildah-build@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: redhat-actions/buildah-build@b13805753a7ac93d18d14b22f6ebdf8499a3a95e # v2.9
id: build-image
with:
image: build
Expand Down
42 changes: 24 additions & 18 deletions .github/workflows/test.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,20 +21,20 @@ permissions:
statuses: none
jobs:
analyze:
runs-on: ubuntu-latest
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: github/codeql-action/init@v1
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: github/codeql-action/init@26567f6a492cf20b8a8a6913432a4f1b834b12be # v1.0.24
with:
languages: go
- uses: github/codeql-action/autobuild@v1
- uses: github/codeql-action/analyze@v1
- uses: github/codeql-action/autobuild@26567f6a492cf20b8a8a6913432a4f1b834b12be # v1.0.24
- uses: github/codeql-action/analyze@26567f6a492cf20b8a8a6913432a4f1b834b12be # v1.0.24

coverage:
runs-on: ubuntu-latest
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: actions/setup-go@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: actions/setup-go@331ce1d993939866bb63c32c6cbbfd48fa76fc57 # v2.1.4
with:
go-version: ${{ env.GO_VERSION }}
- name: Install dependencies
Expand All @@ -43,38 +43,41 @@ jobs:
sudo apt install -y libseccomp-dev libelf-dev libapparmor-dev
sudo hack/install-libbpf.sh
- run: make test-unit
- uses: codecov/codecov-action@v2
- uses: codecov/codecov-action@f32b3a3741e1053eb607407145bc9619351dc93b # v2.1.0
with:
files: build/coverage.out
flags: unittests
verbose: true

image:
runs-on: ubuntu-18.04
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- run: make image
- run: podman save -o image.tar security-profiles-operator
- uses: actions/upload-artifact@v2
- uses: actions/upload-artifact@27121b0bdffd731efa15d66772be8dc71245d074 # v2.2.4
with:
name: image
path: image.tar

e2e-fedora:
needs: image

# runs-on not set to macos-11 as vagrant currently not available and stable on macos BigSur
# https://github.com/actions/virtual-environments/issues/2999
runs-on: macos-10.15
timeout-minutes: 90
env:
RUN: ./hack/ci/run-fedora.sh
steps:
- uses: actions/checkout@v2
- uses: actions/cache@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: actions/cache@937d24475381cd9c75ae6db12cb4e79714b926ed # v2.1.7
with:
path: |
~/.vagrant.d/boxes
key: e2e-fedora-${{ hashFiles('hack/ci/Vagrantfile-fedora') }}
restore-keys: e2e-fedora-
- uses: actions/download-artifact@v2
- uses: actions/download-artifact@3be87be14a055c47b01d3bd88f8fe02320a9bb60 # v2.0.10
with:
name: image
path: .
Expand All @@ -89,19 +92,22 @@ jobs:

e2e-ubuntu:
needs: image

# runs-on not set to macos-11 as vagrant currently not available and stable on macos BigSur
# https://github.com/actions/virtual-environments/issues/2999
runs-on: macos-10.15
timeout-minutes: 90
env:
RUN: ./hack/ci/run-ubuntu.sh
steps:
- uses: actions/checkout@v2
- uses: actions/cache@v2
- uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0
- uses: actions/cache@937d24475381cd9c75ae6db12cb4e79714b926ed # v2.1.7
with:
path: |
~/.vagrant.d/boxes
key: e2e-ubuntu-${{ hashFiles('hack/ci/Vagrantfile-ubuntu') }}
restore-keys: e2e-ubuntu-
- uses: actions/download-artifact@v2
- uses: actions/download-artifact@3be87be14a055c47b01d3bd88f8fe02320a9bb60 # v2.0.10
with:
name: image
path: .
Expand Down

0 comments on commit 77e16ff

Please sign in to comment.