-
Notifications
You must be signed in to change notification settings - Fork 1
142 lines (129 loc) · 3.86 KB
/
build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
name: Build sQReen Reader
on:
push:
branches: [main]
jobs:
build:
runs-on: ubuntu-latest
strategy:
matrix:
node-version: [15.x]
# See supported Node.js release schedule at https://nodejs.org/en/about/releases/
steps:
- uses: actions/checkout@v2
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run lint
- run: npm test
test:
runs-on: macos-latest
strategy:
matrix:
node-version: [15.x]
# See supported Node.js release schedule at https://nodejs.org/en/about/releases/
needs: [build]
steps:
- uses: actions/checkout@v2
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run wdio
scan:
runs-on: ubuntu-latest
needs: [build]
strategy:
matrix:
language: [javascript]
node-version: [15.x]
# See supported Node.js release schedule at https://nodejs.org/en/about/releases/
steps:
- uses: actions/checkout@v2
- name: Initialize CodeQL
uses: github/codeql-action/init@v1
with:
languages: ${{ matrix.language }}
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- name: SonarCloud Scan
run: |
npm ci
npm test
- uses: SonarSource/sonarcloud-github-action@master
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
- name: Check Sonar Status
run: |
status=$(curl https://sonarcloud.io/api/qualitygates/project_status?projectKey=sqreen-reader_sqreen-reader)
echo $status | jq '.'
status=$(echo $status | jq '.projectStatus.status')
test '"OK"' = $status
- name: Run Snyk to check for vulnerabilities
uses: snyk/actions/node@master
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v1
with:
category: "code_scan"
publish-mac:
runs-on: macos-latest
strategy:
matrix:
node-version: [15.x]
needs: [build, scan, test]
steps:
- uses: actions/checkout@v2
- uses: apple-actions/import-codesign-certs@v1
with:
p12-file-base64: ${{ secrets.MAC_CODESIGN_CERT }}
p12-password: ${{ secrets.MAC_CODESIGN_SECRET }}
- name: publish packages
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run dist
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
APPLEID: ${{ secrets.APPLE_ID }}
APPLEIDPASS: ${{ secrets.APPLE_ID_APP_PASS }}
publish-windows:
runs-on: windows-latest
strategy:
matrix:
node-version: [15.x]
needs: [build, scan, test]
steps:
- uses: actions/checkout@v2
- name: publish packages
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run dist
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
publish-linux:
runs-on: ubuntu-latest
strategy:
matrix:
node-version: [15.x]
needs: [build, scan, test]
steps:
- uses: actions/checkout@v2
- name: publish packages
uses: actions/setup-node@v2
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run dist
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}