1- name : CI
1+ name : Pre-merge Checks
22on :
3- push :
4- workflow_dispatch :
3+ pull_request :
4+ types : [opened, synchronize, reopened, ready_for_review]
55
66concurrency :
77 group : ci-${{ github.ref }}
88 cancel-in-progress : true
99
10+
1011jobs :
11- build-with-coverage :
12+ run-ci :
13+ # runs-on: ubuntu-latest
14+ runs-on : ubuntu-latest
15+ defaults :
16+ run :
17+ shell : bash
18+ if : ${{ !github.event.pull_request.draft && github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' }}
19+ steps :
20+ # If the condition above is not met, aka, the PR is not in draft status, then this step is skipped.
21+ # Because this step is part of the critical path, omission of this step will result in remaining CI steps not gettinge executed.
22+ # As of 8/8/2022 there is now way to enforce this beahvior in GitHub Actions CI.
23+ - run : exit 0
24+
25+ build-with-latest-hapi-release :
1226 runs-on : ubuntu-latest
27+ needs : [run-ci]
28+ permissions :
29+ contents : read
30+ id-token : write
1331 steps :
32+ - name : Import Vault Credentials
33+ id : import-secrets
34+ uses : spectrocloud/palette-sdk-typescript/.github/actions/vault-credentials@main
35+
1436 - name : Checkout
1537 uses : actions/checkout@v4
38+ with :
39+ token : ${{ steps.import-secrets.outputs.VAULT_GITHUB_TOKEN }}
1640
1741 - name : Setup Node.js environment
1842@@ -21,17 +45,11 @@ jobs:
2145 cache : " npm"
2246
2347 - name : Setup Copywrite
24- uses : hashicorp/setup-copywrite
48+ uses : hashicorp/setup-copywrite@v1.1.3
2549
2650 - name : Install dependencies
2751 run : make install-dependencies
2852
29- - name : Configure git for private modules
30- env :
31- TOKEN : ${{ secrets.SPECTRO_TOKEN }}
32- USER : ${{ secrets.SPECTRO_USER }}
33- run : git config --global url."https://${USER}:${TOKEN}@github.com".insteadOf "https://github.com"
34-
3553 - name : Ensure Reviewable
3654 run : make check-diff
3755
0 commit comments