-
-
Notifications
You must be signed in to change notification settings - Fork 299
83 lines (78 loc) · 2.83 KB
/
main.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
name: CI
on:
push:
branches: [master]
workflow_dispatch:
schedule:
- cron: "0 7 * * *"
permissions:
contents: write
issues: read
#pull-requests: write # to be able to comment on released pull requests
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
with:
persist-credentials: false # This is important if you have branch protection rules!
- name: Semantic Release
uses: cycjimmy/semantic-release-action@v4
with:
branch: 'master'
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Get Semantic Release Version
id: get-version
run: echo "::set-output name=version::$(grep -oP '\[\d+\.\d+\.\d+\]' CHANGELOG.md | tr -d '[]')"
- name: show version
run: |
echo "Semantic Release Version: ${{ steps.get-version.outputs.version }}"
- name: setup qemu for multi-arch build
uses: docker/setup-qemu-action@v2
with:
platforms: amd64,arm64
- name: setup buildx
uses: docker/setup-buildx-action@v2
- name: Log in to Docker Hub
uses: docker/login-action@v2
with:
#registry: registry.hub.docker.com
username: wurstbrot
password: ${{ secrets.HUB_TOKEN }}
- name: create and push dsomm image
uses: docker/build-push-action@v3
with:
push: true
platforms: linux/amd64,linux/arm64
tags: wurstbrot/dsomm:${{ steps.get-version.outputs.version }},wurstbrot/dsomm:latest
# Commit all changed files back to the repository
- uses: planetscale/ghcommit-action@v0.1.6
with:
commit_message: "🤖 fmt"
repo: ${{ github.repository }}
branch: ${{ github.head_ref || github.ref_name }}
env:
GITHUB_TOKEN: ${{secrets.ACCESS_TOKEN}}
heroku:
if: github.repository == 'devsecopsmaturitymodel/DevSecOps-MaturityModel' && github.event_name == 'push' && github.ref == 'refs/heads/master'
runs-on: ubuntu-latest
steps:
- name: "Check out Git repository"
uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac #v4.0.0
- name: "Set Heroku app & branch for ${{ github.ref }}"
run: |
echo $GITHUB_REF
if [ "$GITHUB_REF" == "refs/heads/master" ]; then
echo "HEROKU_APP=" >> $GITHUB_ENV
echo "HEROKU_BRANCH=master" >> $GITHUB_ENV
fi
echo "HEROKU_BRANCH=master" >> $GITHUB_ENV
- name: "Deploy ${{ github.ref }} to Heroku"
uses: akhileshns/heroku-deploy@9fd0f9faae4aa93a38d6f5e25b9128589f1371b0 #v3.12.14
with:
heroku_api_key: ${{ secrets.HEROKU_API_KEY }}
heroku_app_name: "dsomm"
heroku_email: timo.pagel@owasp.org
branch: ${{ env.HEROKU_BRANCH }}
usedocker: true