hassio-addons/addon-debian-base
1
0
Fork 0
mirror of https://github.com/hassio-addons/addon-debian-base.git synced 2025-05-06 20:21:24 +00:00
Code Issues Projects Releases Packages Wiki Activity

Apply updated repository structure & CI workflow (#48)

Browse source
This commit is contained in:
Franck Nijhof 2021-04-19 14:46:42 +02:00 committed by GitHub
parent 734c08bf8b
commit 4991bef82e
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
6 changed files with 1902 additions and 25 deletions
Download patch file Download diff file Expand all files Collapse all files

19
.editorconfig
View file

@ -1,19 +0,0 @@
root = true
[*]
charset = utf-8
end_of_line = lf
indent_style = space
insert_final_newline = true
trim_trailing_whitespace = true
ident_size = 4
[*.md]
ident_size = 2
trim_trailing_whitespace = false
[*.json]
ident_size = 2
[{.gitignore,.gitkeep,.editorconfig}]
ident_size = 2

0
CODE_OF_CONDUCT.md → .github/CODE_OF_CONDUCT.md vendored
View file

0
CONTRIBUTING.md → .github/CONTRIBUTING.md vendored
View file

1839
.github/SECURITY.md vendored Normal file
View file

File diff suppressed because it is too large Load diff

48
.github/workflows/deploy.yaml vendored
View file

@ -62,6 +62,10 @@ jobs:
matrix: matrix:
architecture: ${{ fromJson(needs.information.outputs.architectures) }} architecture: ${{ fromJson(needs.information.outputs.architectures) }}
steps: steps:
- name: 🔂 Wait for other runs to complete
uses: softprops/turnstyle@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: ⤵️ Check out code from GitHub - name: ⤵️ Check out code from GitHub
uses: actions/checkout@v2.3.4 uses: actions/checkout@v2.3.4
- name: 🏗 Set up build cache - name: 🏗 Set up build cache
@ -69,7 +73,9 @@ jobs:
uses: actions/cache@v2.1.5 uses: actions/cache@v2.1.5
with: with:
path: /tmp/.docker-cache path: /tmp/.docker-cache
key: docker-${{ github.ref }}-${{ matrix.architecture }}-${{ github.sha }} key:
docker-${{ github.ref }}-${{ matrix.architecture }}-${{ github.sha
}}
restore-keys: | restore-keys: |
docker-${{ github.ref }}-${{ matrix.architecture }} docker-${{ github.ref }}-${{ matrix.architecture }}
- name: 🏗 Set up QEMU - name: 🏗 Set up QEMU
@ -81,13 +87,16 @@ jobs:
"https://github.com/hassio-addons/qemu-user-static/releases/download/v5.0.0/qemu-aarch64-static.tar.gz" | \ "https://github.com/hassio-addons/qemu-user-static/releases/download/v5.0.0/qemu-aarch64-static.tar.gz" | \
tar zxvf - -C "${{ needs.information.outputs.target }}/rootfs/usr/bin/" tar zxvf - -C "${{ needs.information.outputs.target }}/rootfs/usr/bin/"
- name: 🏗 Set up QEMU User Static for armhf/armv7 - name: 🏗 Set up QEMU User Static for armhf/armv7
if: ${{ matrix.architecture == 'armhf' || matrix.architecture == 'armv7' }} if: ${{ matrix.architecture == 'armhf' || matrix.architecture == 'armv7'
}}
run: | run: |
curl -L -s \ curl -L -s \
"https://github.com/hassio-addons/qemu-user-static/releases/download/v5.0.0/qemu-arm-static.tar.gz" | \ "https://github.com/hassio-addons/qemu-user-static/releases/download/v5.0.0/qemu-arm-static.tar.gz" | \
tar zxvf - -C "${{ needs.information.outputs.target }}/rootfs/usr/bin/" tar zxvf - -C "${{ needs.information.outputs.target }}/rootfs/usr/bin/"
- name: 🏗 Set up Docker Buildx - name: 🏗 Set up Docker Buildx
uses: docker/setup-buildx-action@v1.1.2 uses: docker/setup-buildx-action@v1.1.2
- name: 🏗 Set up CodeNotary
run: bash <(curl https://getvcn.codenotary.com -L)
- name: Compose build flags - name: Compose build flags
id: flags id: flags
run: | run: |
@ -113,12 +122,12 @@ jobs:
uses: docker/login-action@v1.8.0 uses: docker/login-action@v1.8.0
with: with:
registry: ghcr.io registry: ghcr.io
username: ${{ secrets.GHCR_USERNAME }} username: ${{ github.repository_owner }}
password: ${{ secrets.GHCR_PASSWORD }} password: ${{ secrets.GITHUB_TOKEN }}
- name: 🚀 Build and push - name: 🚀 Build
uses: docker/build-push-action@v2.4.0 uses: docker/build-push-action@v2.4.0
with: with:
push: true load: true
# yamllint disable rule:line-length # yamllint disable rule:line-length
tags: | tags: |
ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.environment }} ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.environment }}
@ -138,3 +147,30 @@ jobs:
BUILD_REF=${{ github.sha }} BUILD_REF=${{ github.sha }}
BUILD_REPOSITORY=${{ github.repository }} BUILD_REPOSITORY=${{ github.repository }}
BUILD_VERSION=${{ needs.information.outputs.version }} BUILD_VERSION=${{ needs.information.outputs.version }}
- name: 🔏 Notarize
# yamllint disable rule:line-length
run: |
if vcn authenticate \
--output json \
"docker://ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.version }}" \
| jq \
--exit-status \
'.verification.status != 0';
then
vcn login
vcn notarize \
--public \
"docker://ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.version }}"
fi
env:
VCN_USER: ${{ secrets.VCN_USER }}
VCN_PASSWORD: ${{ secrets.VCN_PASSWORD }}
VCN_NOTARIZATION_PASSWORD: ${{ secrets.VCN_NOTARIZATION_PASSWORD }}
VCN_OTP_EMPTY: true
- name: 🚀 Push
# yamllint disable rule:line-length
run: |
docker push \
"ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.environment }}"
docker push \
"ghcr.io/hassio-addons/${{ needs.information.outputs.slug }}/${{ matrix.architecture }}:${{ needs.information.outputs.version }}"

21
.github/workflows/pr-labels.yaml vendored Normal file
View file

@ -0,0 +1,21 @@
---
name: PR Labels
# yamllint disable-line rule:truthy
on:
pull_request:
types: [opened, labeled, unlabeled, synchronize]
jobs:
pr_labels:
name: Verify
runs-on: ubuntu-latest
steps:
- name: 🏷 Verify PR has a valid label
uses: jesusvasquez333/verify-pr-label-action@v1.4.0
with:
github-token: "${{ secrets.GITHUB_TOKEN }}"
valid-labels: >-
breaking-change, bugfix, documentation, enhancement, refactor,
performance, new-feature, maintenance, ci, dependencies
disable-reviews: true