Skip to content

Log rule evaluation errors (#891) #1352

Log rule evaluation errors (#891)

Log rule evaluation errors (#891) #1352

Workflow file for this run

name: Build
on:
push:
branches: [develop]
tags-ignore:
- '**'
pull_request:
release:
types: [published]
jobs:
Verify:
runs-on: ubuntu-latest
env:
GOPATH: /home/runner/go
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Set Go version
id: go_version
run: |
GO_VERSION=$(sed -E -n '/^go / s/^go ([0-9]+\.[0-9]+)(\.[0-9]+)?$/\1/p' < go.mod)
echo "version=${GO_VERSION}" >> $GITHUB_OUTPUT
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: ${{ steps.go_version.outputs.version }}
- name: Cache Godel assets
uses: actions/cache@v4
with:
path: ~/.godel
key: ${{ runner.os }}-godel-${{ hashFiles('godelw', 'godel/config/godel.yml') }}
restore-keys: |
${{ runner.os }}-godel-
- name: Verify
run: ./godelw verify --apply=false
Dist:
runs-on: ubuntu-latest
permissions:
contents: write
env:
GOPATH: /home/runner/go
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- name: Set Go version
id: go_version
run: |
GO_VERSION=$(sed -E -n '/^go / s/^go ([0-9]+\.[0-9]+)(\.[0-9]+)?$/\1/p' < go.mod)
echo "version=${GO_VERSION}" >> $GITHUB_OUTPUT
- name: Set up Go
uses: actions/setup-go@v5
with:
go-version: ${{ steps.go_version.outputs.version }}
- name: Cache Godel assets
uses: actions/cache@v4
with:
path: ~/.godel
key: ${{ runner.os }}-godel-${{ hashFiles('godelw', 'godel/config/godel.yml') }}
restore-keys: |
${{ runner.os }}-godel-
- name: Set up Node
uses: actions/setup-node@v4
with:
node-version: 20
- name: Cache node_modules
uses: actions/cache@v4
with:
path: node_modules
key: ${{ runner.os }}-node-modules-${{ hashFiles('yarn.lock') }}
restore-keys: |
${{ runner.os }}-node-modules-
- name: Install frontend dependencies
run: yarn install
- name: Build frontend
run: yarn run build:production
- name: Build distribution
run: ./godelw dist
- name: Build Docker image
run: ./godelw docker build --verbose
- name: Archive distribution
uses: actions/upload-artifact@v4
with:
name: dist
path: |
build/policy-bot/*/bin/*.tgz
#
# Steps after this point should only run when publishing
# Include them here to avoid exporting the Docker container as an artifact
#
- name: Login to Docker Hub
if: ${{ github.event_name == 'push' || github.event_name == 'release' }}
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_PASSWORD }}
- name: Push snapshot image to Docker Hub
if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/develop' }}
run: ./godelw docker push --tags=snapshot
- name: Push release image to Docker Hub
if: ${{ github.event_name == 'release' }}
run: ./godelw docker push --tags=latest,version
- name: Publish release assets
if: ${{ github.event_name == 'release' }}
run: ./godelw publish github --add-v-prefix --api-url=${GITHUB_API_URL} --user=palantir --repository=policy-bot --token=${{ secrets.GITHUB_TOKEN }}
ci-all:
runs-on: ubuntu-latest
needs:
- Verify
- Dist
steps:
- name: Complete
run: exit 0