-
Notifications
You must be signed in to change notification settings - Fork 18
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat: Enable automatic release (#321)
* Add automatic releases * fix makefile * fix lint * allow v prefix on tag name * Update trigger_prerelease.yml * Fix various items in automation * Remove nonexistent file from makefile * Remove nonexistent file from makefile * fix wrong versions and secret names * update slack action version
- Loading branch information
1 parent
12eef83
commit e90fc96
Showing
7 changed files
with
60 additions
and
15 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,15 +1,5 @@ | ||
{ | ||
"extends": [ | ||
"config:base", | ||
// Disable the creation of this issue that renovate updates with the pending issue we follow with Zenhub: | ||
":disableDependencyDashboard" | ||
], | ||
// Label PRs with `dependencies`. | ||
"labels": ["dependencies"], | ||
"enabledManagers": [ | ||
// Managers for helm and helm-values. Go dependencies are managed by Dependabot. | ||
"helm-values", | ||
"helmv3" | ||
], | ||
"ignoreDeps": ["ingress-nginx/kube-webhook-certgen"] | ||
"github>newrelic/coreint-automation:renovate-base.json5" | ||
] | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -4,6 +4,8 @@ on: | |
push: | ||
branches: | ||
- main | ||
- master | ||
- renovate/** | ||
This comment has been minimized.
Sorry, something went wrong.
This comment has been minimized.
Sorry, something went wrong.
csongnr
Contributor
|
||
pull_request: | ||
|
||
jobs: | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -5,6 +5,7 @@ on: | |
branches: | ||
- master | ||
- main | ||
- renovate/** | ||
pull_request: | ||
schedule: | ||
- cron: "0 3 * * *" | ||
|
@@ -15,7 +16,7 @@ jobs: | |
runs-on: ubuntu-latest | ||
steps: | ||
- name: Checkout code | ||
uses: actions/checkout@v2 | ||
uses: actions/checkout@v3 | ||
|
||
- name: Run Trivy vulnerability scanner in repo mode | ||
uses: aquasecurity/[email protected] | ||
|
@@ -25,6 +26,7 @@ jobs: | |
ignore-unfixed: true | ||
exit-code: 1 | ||
severity: 'HIGH,CRITICAL' | ||
skip-dirs: 'build' | ||
|
||
- name: Run Trivy vulnerability scanner sarif output | ||
uses: aquasecurity/[email protected] | ||
|
@@ -36,6 +38,7 @@ jobs: | |
format: 'template' | ||
template: '@/contrib/sarif.tpl' | ||
output: 'trivy-results.sarif' | ||
skip-dirs: 'build' | ||
|
||
- name: Upload Trivy scan results to GitHub Security tab | ||
uses: github/codeql-action/upload-sarif@v2 | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,20 @@ | ||
name: Trigger prerelease creation | ||
|
||
# This workflow triggers a prerelease creation with changelog and the release notes created by the release toolkit. | ||
# This workflow should be triggered merely from the default branch. | ||
# For more details about how to release follow https://github.com/newrelic/coreint-automation/blob/main/docs/release_runbook.md | ||
|
||
on: | ||
workflow_dispatch: | ||
schedule: | ||
- cron: "0 12 * * 1" # Monday at 12pm UTC or 5am PT | ||
|
||
jobs: | ||
prerelease: | ||
uses: newrelic/coreint-automation/.github/workflows/trigger_prerelease.yaml@v1 | ||
with: | ||
rt-included-files: go.mod,go.sum,build/Dockerfile | ||
secrets: | ||
bot_token: ${{ secrets.K8S_AGENTS_BOT_TOKEN }} | ||
slack_channel: ${{ secrets.K8S_AGENTS_SLACK_CHANNEL }} | ||
slack_token: ${{ secrets.K8S_AGENTS_SLACK_TOKEN }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -3,3 +3,6 @@ bin | |
|
||
# Downloaded chart dependencies | ||
**/charts/*.tgz | ||
|
||
# Release toolkit | ||
CHANGELOG.partial.md |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
I think this might be unnecessary, we're already running the same suite for any pull request (line below), now all the renovate PRs are running the full testing suite twice