Skip to content

Use restricted pod security standard (#6) #42

Use restricted pod security standard (#6)

Use restricted pod security standard (#6) #42

Workflow file for this run

name: CI
on:
pull_request:
branches:
- "*"
push:
branches:
- master
workflow_dispatch:
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.ref }}
cancel-in-progress: true
jobs:
build:
name: Build
runs-on: ubuntu-20.04
steps:
- name: Set up Go 1.22
uses: actions/setup-go@v1
with:
go-version: '1.22'
id: go
- name: Check out code into the Go module directory
uses: actions/checkout@v1
- name: Prepare Host
run: |
# install yq
curl -fsSL -o yqq https://github.com/mikefarah/yq/releases/download/3.3.0/yq_linux_amd64
chmod +x yqq
sudo mv yqq /usr/local/bin/yqq
pip3 install yq
# install kubectl
curl -LO https://storage.googleapis.com/kubernetes-release/release/v1.21.1/bin/linux/amd64/kubectl
chmod +x ./kubectl
sudo mv ./kubectl /usr/local/bin/kubectl
- name: Run checks
run: |
./hack/scripts/update-chart-dependencies.sh
make ci
kubernetes:
name: Kubernetes
runs-on: ubuntu-20.04
needs: build
strategy:
matrix:
k8s: [v1.25.16, v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
steps:
- uses: actions/checkout@v1
- name: Install yq
run: |
curl -fsSL -o yqq https://github.com/mikefarah/yq/releases/download/3.3.0/yq_linux_amd64
chmod +x yqq
sudo mv yqq /usr/local/bin/yqq
- name: Create Kubernetes ${{ matrix.k8s }} cluster
id: kind
uses: engineerd/[email protected]
with:
version: v0.17.0
image: kindest/node:${{ matrix.k8s }}
- name: Prepare cluster for testing
id: local-path
env:
USERNAME: 1gtm
REGISTRY_SECRET: regcred
run: |
echo "waiting for nodes to be ready ..."
kubectl wait --for=condition=Ready nodes --all --timeout=5m
kubectl get nodes
echo
echo "install helm 3"
pushd /usr/local/bin && sudo curl -fsSLO https://github.com/x-helm/helm/releases/latest/download/helm && sudo chmod +x helm && popd
- name: Test charts
run: |
export KUBECONFIG="${HOME}/.kube/config"
./hack/scripts/ct.sh