xunit/.github/workflows/ci-pipeline.yml at 820848370bb235519ddcf146a66d8dafd02c0bf4 · codebeltnet/xunit · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
name: xUnit Ext. CI Pipeline
on:
  pull_request:
    branches: [main]
  workflow_dispatch:
    inputs:
      configuration:
        type: choice
        description: The build configuration to use in the deploy stage.
        required: true
        default: Release
        options:
          - Debug
          - Release

permissions:
  contents: read

jobs:
  init:
    name: initialize
    runs-on: ubuntu-24.04
    outputs:
      run-privileged-jobs: ${{ steps.vars.outputs.run-privileged-jobs }}
      strong-name-key-filename: ${{ steps.vars.outputs.strong-name-key-filename }}
      build-switches: ${{ steps.vars.outputs.build-switches }}
    steps:
      - id: vars
        name: calculate workflow variables
        shell: bash
        run: |
          if [[ "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.full_name }}" != "${{ github.repository }}" ]]; then
            echo "run-privileged-jobs=false" >> "$GITHUB_OUTPUT"
            echo "strong-name-key-filename=" >> "$GITHUB_OUTPUT"
            echo "build-switches=-p:SkipSignAssembly=true" >> "$GITHUB_OUTPUT"
          else
            echo "run-privileged-jobs=true" >> "$GITHUB_OUTPUT"
            echo "strong-name-key-filename=xunit.snk" >> "$GITHUB_OUTPUT"
            echo "build-switches=" >> "$GITHUB_OUTPUT"
          fi

  build:
    name: call-build
    needs: [init]
    strategy:
      matrix:
        arch: [X64, ARM64]
        configuration: [Debug, Release]
    uses: codebeltnet/jobs-dotnet-build/.github/workflows/default.yml@v3
    with:
      configuration: ${{ matrix.configuration }}
      strong-name-key-filename: ${{ needs.init.outputs.strong-name-key-filename }}
      build-switches: ${{ needs.init.outputs.build-switches }}
      runs-on: ${{ matrix.arch == 'ARM64' && 'ubuntu-24.04-arm' || 'ubuntu-24.04' }}
      upload-build-artifact-name: build-${{ matrix.configuration }}-${{ matrix.arch }}
    secrets: inherit

  pack:
    name: call-pack
    needs: [build]
    strategy:
      matrix:
        configuration: [Debug, Release]
    uses: codebeltnet/jobs-dotnet-pack/.github/workflows/default.yml@v3
    with:
      configuration: ${{ matrix.configuration }}
      version: ${{ needs.build.outputs.version }}
      download-build-artifact-pattern: build-${{ matrix.configuration }}-X64

  test_linux:
    name: call-test-linux
    needs: [build]
    strategy:
      fail-fast: false
      matrix:
        configuration: [Debug, Release]
        arch: [X64, ARM64]
    uses: codebeltnet/jobs-dotnet-test/.github/workflows/default.yml@v3
    with:
      runs-on: ${{ matrix.arch == 'ARM64' && 'ubuntu-24.04-arm' || 'ubuntu-24.04' }}
      configuration: ${{ matrix.configuration }}
      build-switches: -p:SkipSignAssembly=true
      restore: true # we need to restore the packages for the test project
      build: true # we need to build for .net48 tests
      download-pattern: build-${{ matrix.configuration }}-${{ matrix.arch }}

  test_windows:
    name: call-test-windows
    needs: [build]
    strategy:
      fail-fast: false
      matrix:
        configuration: [Debug, Release]
        arch: [X64, ARM64]
    uses: codebeltnet/jobs-dotnet-test/.github/workflows/default.yml@v3
    with:
      runs-on: ${{ matrix.arch == 'ARM64' && 'windows-11-arm' || 'windows-2025' }}
      configuration: ${{ matrix.configuration }}
      build-switches: -p:SkipSignAssembly=true
      restore: true # we need to restore the packages for the test project
      build: true # we need to build for .net48 tests
      download-pattern: build-${{ matrix.configuration }}-${{ matrix.arch }}

  sonarcloud:
    if: ${{ needs.init.outputs.run-privileged-jobs == 'true' }}
    name: call-sonarcloud
    needs: [init, build, test_linux, test_windows]
    uses: codebeltnet/jobs-sonarcloud/.github/workflows/default.yml@v3
    with:
      organization: geekle
      projectKey: xunit
      version: ${{ needs.build.outputs.version }}
    secrets: inherit

  codecov:
    if: ${{ needs.init.outputs.run-privileged-jobs == 'true' }}
    name: call-codecov
    needs: [init, build, test_linux, test_windows]
    uses: codebeltnet/jobs-codecov/.github/workflows/default.yml@v1
    with:
      repository: codebeltnet/xunit
    secrets: inherit

  codeql:
    if: ${{ needs.init.outputs.run-privileged-jobs == 'true' }}
    name: call-codeql
    needs: [init, build, test_linux, test_windows]
    uses: codebeltnet/jobs-codeql/.github/workflows/default.yml@v3
    permissions:
      security-events: write

  deploy:
    if: github.event_name != 'pull_request'
    name: call-nuget
    needs: [build, pack, test_linux, test_windows, sonarcloud, codecov, codeql]
    uses: codebeltnet/jobs-nuget-push/.github/workflows/default.yml@v3
    with:
      version: ${{ needs.build.outputs.version }}
      environment: Production
      configuration: ${{ inputs.configuration == '' && 'Release' || inputs.configuration }}
    permissions:
      contents: write
      packages: write
    secrets: inherit