From 6219e1bb10de1a4bc82fd5132c217d07279886fd Mon Sep 17 00:00:00 2001
From: kumvijaya <kuvmijaya@gmail.com>
Date: Thu, 4 Jul 2024 00:17:08 +0530
Subject: T6540: added workflows (current)

(cherry picked from commit fac4dab4386d83c4348ce223c74c142d429d9cf2)
(cherry picked from commit fb8907734d7fbca55c5942109344e4497c813967)
---
 .github/workflows/add-pr-labels.yml      | 15 +++++++++++++++
 .github/workflows/auto-author-assign.yml | 14 ++++++++++++++
 .github/workflows/chceck-pr-message.yml  | 17 +++++++++++++++++
 .github/workflows/check-pr-conflicts.yml | 13 +++++++++++++
 .github/workflows/check-stale.yml        | 13 +++++++++++++
 .github/workflows/codeql.yml             | 24 ++++++++++++++++++++++++
 .github/workflows/sonarcloud.yml         | 22 ++++++++++++++++++++++
 7 files changed, 118 insertions(+)
 create mode 100644 .github/workflows/add-pr-labels.yml
 create mode 100644 .github/workflows/auto-author-assign.yml
 create mode 100644 .github/workflows/chceck-pr-message.yml
 create mode 100644 .github/workflows/check-pr-conflicts.yml
 create mode 100644 .github/workflows/check-stale.yml
 create mode 100644 .github/workflows/codeql.yml
 create mode 100644 .github/workflows/sonarcloud.yml

(limited to '.github/workflows')

diff --git a/.github/workflows/add-pr-labels.yml b/.github/workflows/add-pr-labels.yml
new file mode 100644
index 0000000..75847c6
--- /dev/null
+++ b/.github/workflows/add-pr-labels.yml
@@ -0,0 +1,15 @@
+name: Add pull request labels
+
+on:
+  pull_request_target:
+    branches:
+      - equuleus
+
+permissions:
+  pull-requests: write
+  contents: read
+
+jobs:
+  add-pr-label:
+    uses: vyos/.github/.github/workflows/add-pr-labels.yml@equuleus
+    secrets: inherit
diff --git a/.github/workflows/auto-author-assign.yml b/.github/workflows/auto-author-assign.yml
new file mode 100644
index 0000000..aeedd0a
--- /dev/null
+++ b/.github/workflows/auto-author-assign.yml
@@ -0,0 +1,14 @@
+name: "PR Triage"
+on:
+  pull_request_target:
+    types: [opened, reopened, ready_for_review, locked]
+
+
+permissions:
+  pull-requests: write
+  contents: read
+
+jobs:
+  assign-author:
+    uses: vyos/.github/.github/workflows/assign-author.yml@equuleus
+    secrets: inherit
diff --git a/.github/workflows/chceck-pr-message.yml b/.github/workflows/chceck-pr-message.yml
new file mode 100644
index 0000000..2f8f975
--- /dev/null
+++ b/.github/workflows/chceck-pr-message.yml
@@ -0,0 +1,17 @@
+---
+  name: Check pull request message format
+
+  on:
+    pull_request_target:
+      branches:
+        - equuleus
+      types: [opened, synchronize, edited]
+
+  permissions:
+    pull-requests: write
+    contents: read
+
+  jobs:
+    check-pr-title:
+      uses: vyos/.github/.github/workflows/check-pr-message.yml@equuleus
+      secrets: inherit
diff --git a/.github/workflows/check-pr-conflicts.yml b/.github/workflows/check-pr-conflicts.yml
new file mode 100644
index 0000000..a8dcecd
--- /dev/null
+++ b/.github/workflows/check-pr-conflicts.yml
@@ -0,0 +1,13 @@
+name: "PR Conflicts checker"
+on:
+  pull_request_target:
+    types: [synchronize]
+
+permissions:
+  pull-requests: write
+  contents: read
+
+jobs:
+  check-pr-conflict-call:
+    uses: vyos/.github/.github/workflows/check-pr-merge-conflict.yml@equuleus
+    secrets: inherit
diff --git a/.github/workflows/check-stale.yml b/.github/workflows/check-stale.yml
new file mode 100644
index 0000000..66659f4
--- /dev/null
+++ b/.github/workflows/check-stale.yml
@@ -0,0 +1,13 @@
+name: "Issue and PR stale management"
+on:
+  schedule:
+  - cron: "0 0 * * *"
+
+permissions:
+  pull-requests: write
+  contents: read
+
+jobs:
+  stale:
+    uses: vyos/.github/.github/workflows/check-stale.yml@equuleus
+    secrets: inherit
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
new file mode 100644
index 0000000..4842f9e
--- /dev/null
+++ b/.github/workflows/codeql.yml
@@ -0,0 +1,24 @@
+name: "Perform CodeQL Analysis"
+
+on:
+  push:
+    branches:
+      - equuleus
+  pull_request_target:
+    # The branches below must be a subset of the branches above
+    branches:
+      - equuleus
+  schedule:
+    - cron: '22 10 * * 0'
+
+permissions:
+  actions: read
+  contents: read
+  security-events: write
+
+jobs:
+  codeql-analysis-call:
+    uses: vyos/.github/.github/workflows/codeql-analysis.yml@equuleus
+    secrets: inherit
+    with:
+      languages: "['c']"
diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
new file mode 100644
index 0000000..895c4d7
--- /dev/null
+++ b/.github/workflows/sonarcloud.yml
@@ -0,0 +1,22 @@
+name: Sonar Checks
+on:
+  push:
+    branches:
+      - equuleus
+
+  pull_request_target:
+    types: [opened, synchronize, reopened]
+
+jobs:
+  sonar-cloud:
+    name: SonarCloud
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Shallow clones should be disabled for a better relevancy of analysis
+      - name: SonarCloud Scan
+        uses: SonarSource/sonarcloud-github-action@master
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}  # Needed to get PR information, if any
+          SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-- 
cgit v1.2.3