From 9de4662deed4af45be2dcf597d02aaff1eaad4c8 Mon Sep 17 00:00:00 2001
From: Jean-Michel Picod <jmichel@google.com>
Date: Tue, 25 Feb 2020 14:12:37 +0100
Subject: [PATCH] Add more checks
- python code formatting is tested with yapf
- cron workflow to run cargo audit
- Don't run on latest
---
.github/workflows/cargo_audit.yml | 24 ++++++++++++++++++++
.github/workflows/cargo_check.yml | 2 +-
.github/workflows/cargo_fmt.yml | 2 +-
.github/workflows/mdlint.yml | 3 ++-
.github/workflows/{pylint.yml => python.yml} | 19 ++++++++++++++--
5 files changed, 45 insertions(+), 5 deletions(-)
create mode 100644 .github/workflows/cargo_audit.yml
rename .github/workflows/{pylint.yml => python.yml} (53%)
diff --git a/.github/workflows/cargo_audit.yml b/.github/workflows/cargo_audit.yml
new file mode 100644
index 0000000..94b00f6
--- /dev/null
+++ b/.github/workflows/cargo_audit.yml
@@ -0,0 +1,24 @@
+name: Security audit
+on:
+ schedule:
+ - cron: '0 0 * * *'
+jobs:
+ audit:
+ runs-on: ubuntu-18.04
+ steps:
+ - uses: actions/checkout@v2
+ - uses: actions-rs/toolchain@v1
+ with:
+ toolchain: nightly
+ target: thumbv7em-none-eabi
+ override: true
+ - uses: actions/setup-python@v1
+ with:
+ python-version: 3.7
+ - name: Install Python dependencies
+ run: python -m pip install --upgrade pip setuptools wheel
+ - name: Set up OpenSK
+ run: ./setup.sh
+ - uses: actions-rs/audit-check@v1
+ with:
+ token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/cargo_check.yml b/.github/workflows/cargo_check.yml
index e509a42..9697b37 100644
--- a/.github/workflows/cargo_check.yml
+++ b/.github/workflows/cargo_check.yml
@@ -14,7 +14,7 @@ on:
jobs:
cargo_check:
- runs-on: ubuntu-latest
+ runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: actions-rs/toolchain@v1
diff --git a/.github/workflows/cargo_fmt.yml b/.github/workflows/cargo_fmt.yml
index 177989f..324b475 100644
--- a/.github/workflows/cargo_fmt.yml
+++ b/.github/workflows/cargo_fmt.yml
@@ -14,7 +14,7 @@ on:
jobs:
cargo_format:
- runs-on: ubuntu-latest
+ runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- uses: actions-rs/toolchain@v1
diff --git a/.github/workflows/mdlint.yml b/.github/workflows/mdlint.yml
index 1c8a4d5..c697e0c 100644
--- a/.github/workflows/mdlint.yml
+++ b/.github/workflows/mdlint.yml
@@ -10,11 +10,12 @@ on:
jobs:
mdlint:
- runs-on: ubuntu-latest
+ runs-on: ubuntu-18.04
steps:
- uses: actions/checkout@v2
- name: markdownlint-cli
uses: nosborn/github-action-markdown-cli@v1.1.1
with:
files: '**/*.md'
+ ignore_files: "third_party/*"
config_file: ".markdownlint.json"
diff --git a/.github/workflows/pylint.yml b/.github/workflows/python.yml
similarity index 53%
rename from .github/workflows/pylint.yml
rename to .github/workflows/python.yml
index 08c1f04..dc739b8 100644
--- a/.github/workflows/pylint.yml
+++ b/.github/workflows/python.yml
@@ -9,7 +9,7 @@ on:
types: [opened, synchronize, reopened]
jobs:
pylint:
- runs-on: ubuntu-latest
+ runs-on: ubuntu-18.04
strategy:
matrix:
python-version: [3.6, 3.7, 3.8]
@@ -26,4 +26,19 @@ jobs:
- name: Test code with pylint
run: |
pip install pylint
- pylint --rcfile=.pylintrc `find . -maxdepth 1 -type f -name '*.py'`
+ pylint --rcfile=.pylintrc --score=n `find . ! -path "./third_party/*" -type f -name '*.py'`
+
+ yapf:
+ runs-on: ubuntu-18.04
+ steps:
+ - uses: actions/checkout@v2
+ - name: Set up Python 3.7
+ uses: actions/setup-python@v1
+ with:
+ python-version: 3.7
+ - name: Install dependencies
+ run: |
+ python -m pip install --upgrade pip setuptools wheel
+ pip install yapf
+ - name: Test code formatting with yapf
+ run: yapf --style=chromium --recursive --exclude third_party --diff .
--
GitLab