mukimovd/tercul-backend
1
0
Fork 0
mirror of https://github.com/SamyRai/tercul-backend.git synced 2025-12-27 01:41:34 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Switch to semantic version tags for GitHub Actions instead of SHAs for better maintainability

Browse Source
This commit is contained in:
Damir Mukimov 2025-11-27 04:29:15 +01:00
parent 36a9e97fc8
commit 39fae4dbf8
No known key found for this signature in database
GPG Key ID: 42996CC7C73BC750
3 changed files with 27 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
.github/workflows/cd.yml vendored
View File

@ -17,13 +17,13 @@ jobs:
steps:
- name: Check out code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
uses: docker/setup-buildx-action@v3
- name: Login to GitHub Container Registry
uses: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ github.actor }}
@ -31,7 +31,7 @@ jobs:
- name: Extract metadata
id: meta
uses: docker/metadata-action@9ec57ed1fcdbf14dcef7dfbe97b2010124a938b7
uses: docker/metadata-action@v5
with:
images: ghcr.io/${{ github.repository }}
tags: |
@ -43,7 +43,7 @@ jobs:
- name: Build and push
id: push
uses: docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671
uses: docker/build-push-action@v6
with:
context: .
push: true
@ -68,7 +68,7 @@ jobs:
steps:
- name: Check out code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Extract tag name
id: tag

34
.github/workflows/ci-cd.yml vendored
View File

@ -2,9 +2,9 @@ name: CI/CD Pipeline
on:
push:
branches: [master, develop]
branches: [main, develop]
pull_request:
branches: [master, develop]
branches: [main, develop]
jobs:
# Security scanning with CodeQL (only on main branch pushes)
@ -19,15 +19,15 @@ jobs:
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Initialize CodeQL
uses: github/codeql-action/init@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.12
uses: github/codeql-action/init@v3
with:
languages: go
- name: Setup Go
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: "1.25"
cache: true
@ -39,7 +39,7 @@ jobs:
run: go build -v ./...
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.12
uses: github/codeql-action/analyze@v3
# Linting (runs on PRs and pushes)
lint:
@ -47,16 +47,16 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Setup Go
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: "1.25"
cache: true
- name: golangci-lint
uses: golangci/golangci-lint-action@1481404843c368bc19ca9406f87d6e0fc97bdcfd # v6.1.1
uses: golangci/golangci-lint-action@v6
with:
version: latest
args: --timeout=5m
@ -87,10 +87,10 @@ jobs:
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Setup Go
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: "1.25"
cache: true
@ -104,7 +104,7 @@ jobs:
go tool cover -html=coverage.out -o coverage.html
- name: Upload coverage reports
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
uses: actions/upload-artifact@v4
with:
name: coverage-report
path: coverage.html
@ -120,10 +120,10 @@ jobs:
id-token: write
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Setup Go
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: "1.25"
cache: true
@ -143,7 +143,7 @@ jobs:
run: ./bin/tercul-backend --help || echo "Binary built successfully"
- name: Upload build artifacts
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
uses: actions/upload-artifact@v4
with:
name: terbul-backend-binary
path: bin/
@ -179,10 +179,10 @@ jobs:
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Setup Go ${{ matrix.go-version }}
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: ${{ matrix.go-version }}
cache: true

8
.github/workflows/ci.yml vendored
View File

@ -14,10 +14,10 @@ jobs:
security-events: write # For code scanning
steps:
- name: Checkout code
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v5.2.0
uses: actions/checkout@v5
- name: Setup Go
uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35 # v5.4.0
uses: actions/setup-go@v5
with:
go-version: "1.25"
cache: true
@ -26,7 +26,7 @@ jobs:
run: go mod download
- name: Lint
uses: golangci/golangci-lint-action@1481404843c368bc19ca9406f87d6e0fc97bdcfd # v6.1.1
uses: golangci/golangci-lint-action@v6
with:
version: latest
args: --timeout=5m
@ -35,7 +35,7 @@ jobs:
run: go test -v -race -coverprofile=coverage.out ./...
- name: Upload coverage
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
uses: actions/upload-artifact@v4
with:
name: coverage
path: coverage.out