-
Notifications
You must be signed in to change notification settings - Fork 48
68 lines (66 loc) · 1.99 KB
/
security.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
name: Lucky CLI Security CI
on:
pull_request:
branches: "*"
jobs:
specs:
strategy:
fail-fast: false
matrix:
shard_override_file:
- shard.override.yml
crystal_version:
- latest
experimental:
- false
runs-on: ubuntu-latest
continue-on-error: ${{ matrix.experimental }}
services:
postgres:
image: postgres:13
env:
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
ports:
- 5432:5432
# needed because the postgres container does not provide a healthcheck
options: >-
--health-cmd pg_isready
--health-interval 10s
--health-timeout 5s
--health-retries 5
steps:
- uses: actions/checkout@v4
- name: Install Crystal
uses: crystal-lang/install-crystal@v1
with:
crystal: ${{ matrix.crystal_version }}
- name: Cache node modules
uses: actions/cache@v3
env:
cache-name: cache-node-modules
with:
path: ~/.npm # npm cache files are stored in `~/.npm` on Linux/macOS
key: ${{ runner.os }}-build-${{ env.cache-name }}-${{ hashFiles('**/package-lock.json') }}
restore-keys: |
${{ runner.os }}-build-${{ env.cache-name }}-
${{ runner.os }}-build-
${{ runner.os }}-
- name: Install Nexploit Repeater
run: |
sudo npm install -g @neuralegion/nexploit-cli --unsafe-perm=true
- name: Run setup script
run: ./script/setup
- name: Install Lucky CLI
run: |
crystal build src/lucky.cr
pwd >> $GITHUB_PATH
- name: Run tests
run: |
export SHARDS_OVERRIDE="$(pwd)/${{ matrix.shard_override_file }}"
crystal spec
env:
LUCKY_ENV: test
BRIGHT_TOKEN: ${{ secrets.BRIGHT_API_KEY }}
BRIGHT_PROJECT_ID: ${{ secrets.BRIGHT_PROJECT_ID }}
RUN_SEC_TESTER_SPECS: 1