updated jobs #177
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Accuknox-Job Workflow | |
| on: | |
| push: | |
| tags: | |
| - "v[0-9]+.[0-9]+.[0-9]+" | |
| - "v[0-9]+.[0-9]+.[0-9]+-*" | |
| pull_request_target: | |
| branches: | |
| - "*" | |
| jobs: | |
| tag-validate: | |
| runs-on: ubuntu-latest | |
| if: startsWith(github.ref, 'refs/tags/v') | |
| steps: | |
| - uses: rubenesp87/[email protected] | |
| with: | |
| version: ${{ github.ref_name }} | |
| helm_chart_validation: | |
| runs-on: ubuntu-latest | |
| needs: [tag-validate] | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v2 | |
| - name: Install Helm | |
| run: | | |
| curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | |
| chmod 700 get_helm.sh | |
| ./get_helm.sh | |
| - name: Validate Helm charts | |
| run: | | |
| helm lint accuknox-jobs | |
| helm template accuknox-jobs --dry-run > /dev/null | |
| helm_push_to_ecr: | |
| runs-on: ubuntu-latest | |
| needs: [helm_chart_validation,tag-validate] | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v2 | |
| - name: Set up AWS Credentials | |
| uses: aws-actions/configure-aws-credentials@v2 | |
| with: | |
| aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }} | |
| aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | |
| aws-region: us-east-1 | |
| - name: Install Helm | |
| run: | | |
| curl -fsSL -o get_helm.sh https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | |
| chmod 700 get_helm.sh | |
| ./get_helm.sh | |
| - name: Login to AWS ECR | |
| run: | | |
| aws ecr-public get-login-password --region us-east-1 | helm registry login --username AWS --password-stdin ${{ secrets.REPO }} | |
| - name: Chart versioning | |
| if: ( github.event_name != 'pull_request' && github.event_name != 'pull_request_target' ) | |
| shell: bash | |
| id: chart-version | |
| run: | | |
| sed -i "s/^version:.*$/version: ${{ github.ref_name }}/" accuknox-jobs/Chart.yaml | |
| sed -i "s/^appVersion:.*$/appVersion: ${{ github.ref_name }}/" accuknox-jobs/Chart.yaml | |
| - name: Package and Push Helm Charts | |
| run: | | |
| helm package accuknox-jobs | |
| HELM_PACKAGE=$(ls accuknox-jobs-*.tgz) | |
| helm push $HELM_PACKAGE oci://${{ secrets.REPO }} | |