refactor(ci): remove unused TAILSCALE_AUTHKEY secret from `code-cov…
#4
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Sonar Cloud Analysis | ||
| on: | ||
| workflow_call: | ||
| inputs: | ||
| service-name: | ||
| required: true | ||
| type: string | ||
| description: "The name of the project that will appear in the reporting, must be in kebab-case format" | ||
| runner-size: | ||
| required: false | ||
| type: string | ||
| description: "Runner to use for the job (normal, or large)" | ||
| default: "normal" | ||
| java-version: | ||
| required: false | ||
| type: string | ||
| description: "Java version to use" | ||
| default: "21" | ||
| gradle-module: | ||
| required: false | ||
| type: string | ||
| description: "Name of the gradle module being tested - only needed if you want to test one module in a multi-module project" | ||
| kover-report-path: | ||
| required: false | ||
| type: string | ||
| description: "Path to the Kover report XML file" | ||
| default: "build/reports/kover/report.xml" | ||
| catalog-info-path: | ||
| required: false | ||
| type: string | ||
| description: "Path to the catalog-info.yaml file" | ||
| default: "catalog-info.yaml" | ||
| test-timeout-minutes: | ||
| required: false | ||
| type: number | ||
| description: "Timeout for the test job in minutes" | ||
| default: 30 | ||
| secrets: | ||
| GHL_USERNAME: | ||
| required: true | ||
| description: "Github Username (Gradle plugin)" | ||
| GHL_PASSWORD: | ||
| required: true | ||
| description: "Github Password (Gradle plugin)" | ||
| GITHUB_TOKEN: | ||
|
Check failure on line 45 in .github/workflows/code-coverage-kotlin.yaml
|
||
| required: false | ||
| description: "GitHub token for pushing metrics" | ||
| jobs: | ||
| test-and-coverage: | ||
| runs-on: ${{ inputs.runner-size }} | ||
| timeout-minutes: ${{ inputs.test-timeout-minutes }} | ||
| steps: | ||
| - name: Checkout code | ||
| uses: actions/checkout@v4 | ||
| - name: Validate service-name format | ||
| run: | | ||
| if ! echo "${{ inputs.service-name }}" | grep -qE '^[a-z0-9]+(-[a-z0-9]+)*$'; then | ||
| echo "Error: service-name '${{ inputs.service-name }}' is not in kebab-case format" | ||
| echo "Expected format: lowercase letters and numbers separated by hyphens (e.g., 'my-service-name')" | ||
| exit 1 | ||
| fi | ||
| echo "✓ service-name '${{ inputs.service-name }}' is valid" | ||
| - name: Connect to Tailscale | ||
| uses: tailscale/github-action@v3 | ||
| with: | ||
| authkey: ${{ secrets.TAILSCALE_AUTHKEY }} | ||
| hostname: "GithubActions" | ||
| args: "--login-server https://headscale.monta.com --accept-routes" | ||
| - name: Set up JDK | ||
| uses: actions/setup-java@v4 | ||
| with: | ||
| java-version: ${{ inputs.java-version }} | ||
| distribution: "corretto" | ||
| cache: "gradle" | ||
| - name: Run tests with Kover | ||
| env: | ||
| GHL_USERNAME: ${{ secrets.GHL_USERNAME }} | ||
| GHL_PASSWORD: ${{ secrets.GHL_PASSWORD }} | ||
| SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} | ||
| uses: ./.github/actions/gradle-multi-module/ | ||
| with: | ||
| gradle-module: ${{ inputs.gradle-module }} | ||
| gradle-tasks: "koverXmlReport" | ||
| - name: Push coverage to Prometheus | ||
| uses: monta-app/push-kover-prometheus-action@main | ||
| with: | ||
| push-gateway-url: "https://pushgateway.vpn.staging.monta.app" | ||
| service-name: ${{ inputs.service-name }} | ||
| kover-report-path: ${{ inputs.kover-report-path }} | ||
| catalog-info-path: ${{ inputs.catalog-info-path }} | ||
| env: | ||
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||