Add clang-tidy in clang images #91
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Tools-rippled | |
| on: | |
| pull_request: | |
| paths: | |
| - .github/workflows/tools-rippled.yml | |
| - docker/tools-rippled/Dockerfile | |
| push: | |
| branches: | |
| - main | |
| paths: | |
| - .github/workflows/tools-rippled.yml | |
| - docker/tools-rippled/Dockerfile | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| defaults: | |
| run: | |
| shell: bash | |
| env: | |
| PUSH: ${{ github.event_name == 'push' }} | |
| CONTAINER_REGISTRY: ghcr.io | |
| BUILDKIT_PROGRESS: plain | |
| CMAKE_VERSION: 4.2.1 | |
| DOXYGEN_VERSION: 1.9.8+ds-2build5 | |
| GCC_VERSION: 14 | |
| GRAPHVIZ_VERSION: 2.42.2-9ubuntu0.1 | |
| PRE_COMMIT_VERSION: 4.2.0 | |
| UBUNTU_VERSION: noble | |
| jobs: | |
| build: | |
| strategy: | |
| matrix: | |
| architecture: | |
| - platform: linux/amd64 | |
| runner: ubuntu-24.04 | |
| - platform: linux/arm64 | |
| runner: ubuntu-24.04-arm | |
| tool: | |
| - documentation | |
| - pre-commit | |
| - signing | |
| runs-on: ${{ matrix.architecture.runner }} | |
| permissions: | |
| packages: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1 | |
| - name: Login to GitHub Registry | |
| if: ${{ github.event_name == 'push' }} | |
| uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0 | |
| with: | |
| registry: ${{ env.CONTAINER_REGISTRY }} | |
| username: ${{ github.repository_owner }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Prepare environment | |
| run: | | |
| # Convert the repository name to lowercase as the organization name is | |
| # uppercase, which is not permitted by the Docker registry. It's 2025 and GitHub | |
| # still does not provide convenient action expression syntax for lowercase. | |
| GITHUB_REPO=${{ github.repository }} | |
| CONTAINER_REPO=${GITHUB_REPO@L} | |
| echo "CONTAINER_REPOSITORY=${CONTAINER_REPO}/tools-rippled-${{ matrix.tool }}" >> $GITHUB_ENV | |
| echo "CONTAINER_IMAGE=${CONTAINER_REGISTRY}/${CONTAINER_REPO}/tools-rippled-${{ matrix.tool }}" >> $GITHUB_ENV | |
| PLATFORM=${{ matrix.architecture.platform }} | |
| echo "PLATFORM_PAIR=${PLATFORM//\//-}" >> $GITHUB_ENV | |
| - name: Prepare container metadata | |
| id: meta | |
| uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0 | |
| env: | |
| DOCKER_METADATA_ANNOTATIONS_LEVELS: manifest,manifest-descriptor | |
| with: | |
| images: ${{ env.CONTAINER_IMAGE }} | |
| tags: | | |
| type=sha,prefix=sha- | |
| type=raw,value=latest | |
| labels: | | |
| org.opencontainers.image.authors=For inquiries, please use https://${{ github.repository }}/issues | |
| org.opencontainers.image.documentation=https://${{ github.repository }} | |
| org.opencontainers.image.vendor=XRPLF | |
| org.opencontainers.image.title=${{ env.CONTAINER_REPOSITORY }} | |
| - name: Build and push the Docker image | |
| id: build | |
| uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0 | |
| with: | |
| build-args: | | |
| BUILDKIT_DOCKERFILE_CHECK=skip=InvalidDefaultArgInFrom | |
| BUILDKIT_INLINE_CACHE=1 | |
| UBUNTU_VERSION=${{ env.UBUNTU_VERSION }} | |
| CMAKE_VERSION=${{ env.CMAKE_VERSION }} | |
| DOXYGEN_VERSION=${{ env.DOXYGEN_VERSION }} | |
| GCC_VERSION=${{ env.GCC_VERSION }} | |
| GRAPHVIZ_VERSION=${{ env.GRAPHVIZ_VERSION }} | |
| LLVM_VERSION=${{ env.LLVM_VERSION }} | |
| PRE_COMMIT_VERSION=${{ env.PRE_COMMIT_VERSION }} | |
| context: docker/tools-rippled | |
| outputs: type=image,name=${{ env.CONTAINER_IMAGE }},push-by-digest=true,name-canonical=true,push=${{ env.PUSH }} | |
| platforms: ${{ matrix.architecture.platform }} | |
| provenance: mode=max | |
| push: ${{ env.PUSH }} | |
| sbom: true | |
| labels: ${{ steps.meta.outputs.labels }} | |
| target: ${{ matrix.tool }} | |
| - name: Export digest | |
| if: ${{ env.PUSH }} | |
| run: | | |
| mkdir -p /tmp/digests | |
| DIGEST="${{ steps.build.outputs.digest }}" | |
| touch "/tmp/digests/${DIGEST#sha256:}" | |
| - name: Upload digest | |
| if: ${{ env.PUSH }} | |
| uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 | |
| with: | |
| name: digests-${{ matrix.tool }}-${{ env.PLATFORM_PAIR }} | |
| path: /tmp/digests/* | |
| if-no-files-found: error | |
| retention-days: 1 | |
| merge: | |
| if: ${{ github.event_name == 'push' }} | |
| strategy: | |
| matrix: | |
| tool: | |
| - clang-tidy | |
| - documentation | |
| - pre-commit | |
| - signing | |
| runs-on: ubuntu-24.04 | |
| needs: | |
| - build | |
| permissions: | |
| packages: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0 | |
| - name: Download digests | |
| uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0 | |
| with: | |
| path: /tmp/digests | |
| pattern: digests-${{ matrix.tool }}-* | |
| merge-multiple: true | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1 | |
| - name: Login to GitHub Registry | |
| if: ${{ github.event_name == 'push' }} | |
| uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0 | |
| with: | |
| registry: ${{ env.CONTAINER_REGISTRY }} | |
| username: ${{ github.repository_owner }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Prepare environment | |
| run: | | |
| GITHUB_REPO=${{ github.repository }} | |
| CONTAINER_REPO=${GITHUB_REPO@L} | |
| echo "CONTAINER_IMAGE=${CONTAINER_REGISTRY}/${CONTAINER_REPO}/tools-rippled-${{ matrix.tool }}" >> $GITHUB_ENV | |
| - name: Prepare container metadata | |
| id: meta | |
| uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0 | |
| env: | |
| DOCKER_METADATA_ANNOTATIONS_LEVELS: index | |
| with: | |
| images: ${{ env.CONTAINER_IMAGE }} | |
| tags: | | |
| type=sha,prefix=sha- | |
| type=raw,value=latest | |
| - name: Create manifest list and push | |
| working-directory: /tmp/digests | |
| run: | | |
| eval "docker buildx imagetools create \ | |
| $(jq -cr '.tags | map("-t " + .) | join(" ")' <<< "$DOCKER_METADATA_OUTPUT_JSON") \ | |
| $(jq -cr '.annotations | map("--annotation \"" + . + "\"") | join(" ")' <<< "$DOCKER_METADATA_OUTPUT_JSON") \ | |
| $(printf '${{ env.CONTAINER_IMAGE }}@sha256:%s ' *)" | |
| - name: Inspect image | |
| run: | | |
| docker buildx imagetools inspect ${{ env.CONTAINER_IMAGE }}:${{ steps.meta.outputs.version }} |