-
Notifications
You must be signed in to change notification settings - Fork 179
155 lines (145 loc) · 3.83 KB
/
Copy pathmain.yml
File metadata and controls
155 lines (145 loc) · 3.83 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
name: Guardian CI
on:
workflow_dispatch:
push:
branches-ignore:
- 'dependabot/**'
jobs:
buildAndTest:
name: Build and Test (Manual - Main)
runs-on: guardian-linux-medium
env:
YARN_ENABLE_GLOBAL_CACHE: 'false'
strategy:
matrix:
node-version: [ 20.20.2 ]
steps:
- name: Harden Runner
uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
with:
egress-policy: audit
- name: Checkout Code
uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
with:
node-version: ${{ matrix.node-version }}
- name: Enable Corepack
run: corepack enable
- name: Cache yarn
uses: actions/cache@27d5ce7f107fe9357f9df03efb73ab90386fccae # v5.0.5
with:
path: .yarn/cache
key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }}
restore-keys: ${{ runner.os }}-yarn-
- name: Install dependencies
run: yarn install --immutable
- name: Build
run: |
pushd interfaces
yarn run build
popd
pushd common
yarn run build
popd
pushd logger-service
yarn run build
popd
pushd notification-service
yarn run build
popd
pushd frontend
npm install
npm run build
npm run build:prod
npm run build:demo
popd
pushd auth-service
yarn run build
popd
pushd policy-service
yarn run build
popd
pushd guardian-service
yarn run build
popd
pushd worker-service
yarn run build
popd
pushd queue-service
yarn run build
popd
pushd topic-listener-service
yarn run build
popd
pushd api-gateway
yarn run build
popd
env:
CI: true
NODE_OPTIONS: --openssl-legacy-provider
- name: Detect secrets
run: |
yarn run detect-secrets
env:
CI: true
NODE_OPTIONS: --openssl-legacy-provider
- name: Lint
run: |
pushd interfaces
npm run lint
popd
pushd common
npm run lint
popd
pushd logger-service
npm run lint
popd
pushd notification-service
npm run lint
popd
pushd auth-service
npm run lint
popd
pushd policy-service
npm run lint
popd
pushd guardian-service
npm run lint
popd
pushd worker-service
npm run lint
popd
pushd queue-service
npm run lint
popd
pushd topic-listener-service
npm run lint
popd
pushd api-gateway
npm run lint
popd
env:
CI: true
NODE_OPTIONS: --openssl-legacy-provider
- name: Test
run: |
pushd common
npm run test
popd
pushd policy-service
npm run test
popd
pushd guardian-service
npm run test
popd
env:
CI: true
NODE_OPTIONS: --openssl-legacy-provider
OPERATOR_ID: ${{ secrets.CI_HEDERA_ACCOUNT }}
OPERATOR_KEY: ${{ secrets.CI_HEDERA_PRIV_KEY }}
- name: Publish Unit Test Results
uses: step-security/publish-unit-test-result-action@681100d67b09305624c089873f12c545ee7cbc24 # v2.23.0
if: always()
with:
files: test_results/**/*.xml