diff options
Diffstat (limited to '.github/workflows')
| -rw-r--r-- | .github/workflows/add-pr-labels.yml | 16 | ||||
| -rw-r--r-- | .github/workflows/add-rebase-label.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/auto-author-assign.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/check-pr-conflicts.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/check-pr-message.yml | 17 | ||||
| -rw-r--r-- | .github/workflows/check-stale.yml | 13 | ||||
| -rw-r--r-- | .github/workflows/check-unused-imports.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/codeql.yml | 30 | ||||
| -rw-r--r-- | .github/workflows/label-backport.yml | 12 | ||||
| -rw-r--r-- | .github/workflows/lint-with-ruff.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/sonarcloud.yml | 28 |
11 files changed, 186 insertions, 0 deletions
diff --git a/.github/workflows/add-pr-labels.yml b/.github/workflows/add-pr-labels.yml new file mode 100644 index 0000000..4a706ad --- /dev/null +++ b/.github/workflows/add-pr-labels.yml @@ -0,0 +1,16 @@ +--- +name: Add pull request labels + +on: + pull_request_target: + branches: + - current + +permissions: + pull-requests: write + contents: read + +jobs: + add-pr-label: + uses: accel-ppp/.github/.github/workflows/add-pr-labels.yml@current + secrets: inherit diff --git a/.github/workflows/add-rebase-label.yml b/.github/workflows/add-rebase-label.yml new file mode 100644 index 0000000..d5769b7 --- /dev/null +++ b/.github/workflows/add-rebase-label.yml @@ -0,0 +1,14 @@ +name: Add rebase label + +on: + pull_request_target: + types: [synchronize, opened, reopened, labeled, unlabeled] + +permissions: + pull-requests: write + contents: read + +jobs: + add-rebase-label: + uses: accel-ppp/.github/.github/workflows/add-rebase-label.yml@current + secrets: inherit diff --git a/.github/workflows/auto-author-assign.yml b/.github/workflows/auto-author-assign.yml new file mode 100644 index 0000000..28fe32f --- /dev/null +++ b/.github/workflows/auto-author-assign.yml @@ -0,0 +1,14 @@ +name: "PR Triage" +on: + pull_request_target: + types: [opened, reopened, ready_for_review, locked] + + +permissions: + pull-requests: write + contents: read + +jobs: + assign-author: + uses: accel-ppp/.github/.github/workflows/assign-author.yml@current + secrets: inherit diff --git a/.github/workflows/check-pr-conflicts.yml b/.github/workflows/check-pr-conflicts.yml new file mode 100644 index 0000000..1dad0b3 --- /dev/null +++ b/.github/workflows/check-pr-conflicts.yml @@ -0,0 +1,14 @@ + +name: "PR Conflicts checker" +on: + pull_request_target: + types: [synchronize] + +permissions: + pull-requests: write + contents: read + +jobs: + check-pr-conflict-call: + uses: accel-ppp/.github/.github/workflows/check-pr-merge-conflict.yml@current + secrets: inherit diff --git a/.github/workflows/check-pr-message.yml b/.github/workflows/check-pr-message.yml new file mode 100644 index 0000000..5a44a59 --- /dev/null +++ b/.github/workflows/check-pr-message.yml @@ -0,0 +1,17 @@ +--- +name: Check pull request message format + +on: + pull_request_target: + branches: + - current + types: [opened, synchronize, edited] + +permissions: + pull-requests: write + contents: read + +jobs: + check-pr-title: + uses: accel-ppp/.github/.github/workflows/check-pr-message.yml@current + secrets: inherit diff --git a/.github/workflows/check-stale.yml b/.github/workflows/check-stale.yml new file mode 100644 index 0000000..4df55ae --- /dev/null +++ b/.github/workflows/check-stale.yml @@ -0,0 +1,13 @@ +name: "Issue and PR stale management" +on: + schedule: + - cron: "0 0 * * *" + +permissions: + pull-requests: write + contents: read + +jobs: + stale: + uses: accel-ppp/.github/.github/workflows/check-stale.yml@current + secrets: inherit diff --git a/.github/workflows/check-unused-imports.yml b/.github/workflows/check-unused-imports.yml new file mode 100644 index 0000000..5fd7d49 --- /dev/null +++ b/.github/workflows/check-unused-imports.yml @@ -0,0 +1,14 @@ +name: Check for unused imports using Pylint +on: + pull_request_target: + branches: + - current + +permissions: + pull-requests: write + contents: read + +jobs: + check-unused-imports: + uses: accel-ppp/.github/.github/workflows/check-unused-imports.yml@current + secrets: inherit diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 0000000..0895f42 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,30 @@ +name: "Perform CodeQL Analysis" + +on: + push: + branches: [ "current" ] + paths: + - '**' + - '!.github/**' + - '!**/*.md' + pull_request: + # The branches below must be a subset of the branches above + branches: [ "current" ] + paths: + - '**' + - '!.github/**' + - '!**/*.md' + schedule: + - cron: '22 10 * * 0' + +permissions: + actions: read + contents: read + security-events: write + +jobs: + codeql-analysis-call: + uses: accel-ppp/.github/.github/workflows/codeql-analysis.yml@current + secrets: inherit + with: + languages: "['python']" diff --git a/.github/workflows/label-backport.yml b/.github/workflows/label-backport.yml new file mode 100644 index 0000000..8b11879 --- /dev/null +++ b/.github/workflows/label-backport.yml @@ -0,0 +1,12 @@ +name: Mergifyio backport + +on: [issue_comment] + +permissions: + pull-requests: write + contents: read + +jobs: + mergifyio-backport: + uses: accel-ppp/.github/.github/workflows/label-backport.yml@current + secrets: inherit diff --git a/.github/workflows/lint-with-ruff.yml b/.github/workflows/lint-with-ruff.yml new file mode 100644 index 0000000..44069c6 --- /dev/null +++ b/.github/workflows/lint-with-ruff.yml @@ -0,0 +1,14 @@ +name: Lint py code with ruff +on: + pull_request_target: + branches: + - current + +permissions: + pull-requests: write + contents: read + +jobs: + ruff-lint: + uses: accel-ppp/.github/.github/workflows/lint-with-ruff.yml@current + secrets: inherit diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml new file mode 100644 index 0000000..a8eaca7 --- /dev/null +++ b/.github/workflows/sonarcloud.yml @@ -0,0 +1,28 @@ +name: Sonar Checks +on: + push: + branches: + - current + paths: + - '**' + - '!.github/**' + - '!**/*.md' + pull_request_target: + types: [opened, synchronize, reopened] + paths: + - '**' + - '!.github/**' + - '!**/*.md' +jobs: + sonar-cloud: + name: SonarCloud + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v3 + with: + fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis + - name: SonarCloud Scan + uses: SonarSource/sonarcloud-github-action@master + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any + SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} |