Skip to content

chore(deps): bump securego/gosec from 2.21.4 to 2.22.0 (#566) #931

chore(deps): bump securego/gosec from 2.21.4 to 2.22.0 (#566)

chore(deps): bump securego/gosec from 2.21.4 to 2.22.0 (#566) #931

name: Code Check and Acceptance Tests
on:
pull_request:
paths:
- '.github/workflows/code-check-and-tests.yaml'
- '**.go'
- 'go.mod'
- 'go.sum'
- 'Makefile'
- '.golangci.yml'
push:
branches:
- "main"
permissions:
contents: read
jobs:
# Ensure the project can build first
build:
name: Build
runs-on: ubuntu-20.04
timeout-minutes: 10
steps:
- name: Harden Runner
uses: step-security/[email protected]
with:
egress-policy: audit
- uses: actions/[email protected]
with:
fetch-depth: 0
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- name: get dependencies
run: |
go mod tidy
git diff --compact-summary --exit-code || \
(echo; echo "Unexpected difference after 'go mod tidy'. Run 'go mod tidy' command and commit."; exit 1)
- name: Build
run: |
make install
fmt:
name: go fmt
needs: [build]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: |
if [ "$(go fmt ./... | wc -l)" -gt 0 ]; then
echo "::error::'go fmt' found required formatting changes. Run 'make fmt' on your branch."
exit 1;
fi
vet:
name: go vet
needs: [build]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: go vet ./...
lint:
name: golangcli-lint
needs: [build]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- name: golangci-lint
uses: golangci/golangci-lint-action@v6
with:
args: --timeout=5m --config=/my/path/.golangci.yml
version: v1.58
generate:
name: go generate
needs: [build]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
# Use git add -N . to ensure that new files are listed in the git diff check
- run: |
go generate ./...
git add -N .
git diff --exit-code || \
(echo; echo "Unexpected difference after code generation. Run 'make generate' command and commit."; exit 1)
importfmt:
name: importfmt
needs: [build]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: make importfmtlint
tfproviderlint:
name: tfproviderlintx
needs: [fmt, vet, lint, generate, importfmt]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: make tfproviderlint
tflint:
name: tflint
needs: [fmt, vet, lint, generate, importfmt]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: make tflint
terrafmt:
name: terrafmt
needs: [fmt, vet, lint, generate, importfmt]
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- run: |
find ./internal/acctest -type f -name '*_test.go' \
| sort -u \
| xargs -I {} go run github.com/katbyte/terrafmt diff -f --check --fmtcompat {} ; if [ $$? -ne 0 ]; then \
echo ""; \
echo "terrafmt found bad formatting of HCL embedded in the test scripts. Please run "; \
echo "\"make terrafmtlint\" before submitting the code for review."; \
exit 1; \
fi
acceptance:
name: Acceptance Tests
needs: [fmt, vet, lint, generate, importfmt, tfproviderlint, tflint, terrafmt]
if: ${{ github.actor != 'dependabot[bot]' }}
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version-file: 'go.mod'
cache: true
- uses: hashicorp/setup-terraform@v2
with:
terraform_version: '1.5.*'
terraform_wrapper: false
- run:
mkdir -p $HOME/.pingidentity/ && echo "$CONFIG" >> $HOME/.pingidentity/config && grep -E "[a-zA-Z]" $HOME/.pingidentity/config || exit 1 && make testacccomplete && make removetestcontainer
env:
TF_ACC: '1'
CONFIG: ${{ secrets.Config }}