ci-github-nodejs/.github/workflows/__shared-ci.yml at main · hoverkraft-tech/ci-github-nodejs · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
name: Internal - Common Continuous Integration tasks

on:
  workflow_call:

permissions: {}

jobs:
  linter:
    uses: hoverkraft-tech/ci-github-common/.github/workflows/linter.yml@4bb7594b1bf3696c54b2bbae970376056853f8ea # 0.36.0
    permissions:
      contents: read
      statuses: write
      actions: read
      security-events: write
    with:
      # FIXME: Remove this once JS deps will be updated to versions that do not trigger Trivy vulnerabilities
      linter-env: |
        VALIDATE_TRIVY=false

  test-action-dependencies-cache:
    name: Test action "dependencies-cache"
    needs: linter
    uses: ./.github/workflows/__test-action-dependencies-cache.yml
    permissions:
      contents: read

  test-action-get-package-manager:
    name: Test action "get-package-manager"
    needs: linter
    uses: ./.github/workflows/__test-action-get-package-manager.yml
    permissions:
      contents: read

  test-action-has-installed-dependencies:
    name: Test action "has-installed-dependencies"
    needs: linter
    uses: ./.github/workflows/__test-action-has-installed-dependencies.yml
    permissions:
      contents: read

  test-action-package:
    name: Test action "package"
    needs: linter
    uses: ./.github/workflows/__test-action-package.yml
    permissions:
      contents: read

  test-action-setup-node:
    name: Test action "setup-node"
    needs: linter
    uses: ./.github/workflows/__test-action-setup-node.yml
    permissions:
      contents: read

  test-workflow-continuous-integration:
    name: Test workflow "continuous-integration"
    needs: linter
    uses: ./.github/workflows/__test-workflow-continuous-integration.yml
    permissions:
      contents: read
      packages: write
      pull-requests: write
      id-token: write
      issues: read
      security-events: write

  test-workflow-release:
    name: Test workflow "release"
    needs: linter
    uses: ./.github/workflows/__test-workflow-release.yml
    permissions:
      contents: read
      packages: write
      id-token: write