Skip to content

build(deps): bump actions/dependency-review-action from 4 to 5 #6

build(deps): bump actions/dependency-review-action from 4 to 5

build(deps): bump actions/dependency-review-action from 4 to 5 #6

Workflow file for this run

name: CI
on:
push:
branches: [ "main" ]
pull_request:
branches: [ "main" ]
jobs:
test:
name: Test and Lint
runs-on: ubuntu-latest
strategy:
matrix:
python-version: ["3.10", "3.11", "3.12", "3.13"]
steps:
- name: Checkout Code
uses: actions/checkout@v4
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python-version }}
cache: "pip"
- name: Install Dependencies
run: |
python -m pip install --upgrade pip
pip install -e .[dev]
- name: Run Ruff Linter
run: ruff check .
- name: Run Ruff Format Check
run: ruff format --check .
- name: Run Mypy Type Checker
run: |
cd src
mypy wintersolve
- name: Run Tests with Coverage
run: pytest --cov=wintersolve --cov-report=xml
- name: Upload Coverage
uses: codecov/codecov-action@v4
with:
files: ./coverage.xml
fail_ci_if_error: false
security:
name: Security Scan
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: "3.12"
cache: "pip"
- name: Install Dependencies
run: |
python -m pip install --upgrade pip
pip install -e .[security]
- name: Run Bandit Security Scan
run: bandit -r src/wintersolve -f json -o bandit-report.json || true
- name: Upload Bandit Report
uses: actions/upload-artifact@v4
with:
name: bandit-report
path: bandit-report.json
build:
name: Build Package
runs-on: ubuntu-latest
steps:
- name: Checkout Code
uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: "3.12"
- name: Install Build Dependencies
run: |
python -m pip install --upgrade pip
pip install build twine
- name: Build Package
run: python -m build
- name: Check Distribution
run: python -m twine check dist/*
- name: Upload Distribution Artifacts
uses: actions/upload-artifact@v4
with:
name: dist
path: dist/