diff options
| -rw-r--r-- | .github/workflows/add-pr-labels.yml (renamed from .github/workflows/pull-request-labels.yml) | 9 | ||||
| -rw-r--r-- | .github/workflows/auto-author-assign.yml | 9 | ||||
| -rw-r--r-- | .github/workflows/chceck-pr-message.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/check-pr-conflicts.yml | 13 | ||||
| -rw-r--r-- | .github/workflows/check-stale.yml | 9 | ||||
| -rw-r--r-- | .github/workflows/check-unused-imports.yml | 11 | ||||
| -rw-r--r-- | .github/workflows/codeql.yml | 13 | ||||
| -rw-r--r-- | .github/workflows/label-backport.yml | 8 | ||||
| -rw-r--r-- | .github/workflows/linit-j2.yml | 14 | ||||
| -rw-r--r-- | .github/workflows/mergifyio_backport.yml | 22 | ||||
| -rw-r--r-- | .github/workflows/pr-conflicts.yml | 18 | ||||
| -rw-r--r-- | .github/workflows/pull-request-management.yml | 25 | ||||
| -rw-r--r-- | .github/workflows/pull-request-message-check.yml | 23 | ||||
| -rw-r--r-- | .github/workflows/stale.yml | 22 | ||||
| -rw-r--r-- | .github/workflows/unused-imports.yml | 22 | ||||
| -rwxr-xr-x | scripts/check-pr-title-and-commit-messages.py | 51 | 
16 files changed, 74 insertions, 209 deletions
| diff --git a/.github/workflows/pull-request-labels.yml b/.github/workflows/add-pr-labels.yml index 43856beaa..78d619f4a 100644 --- a/.github/workflows/pull-request-labels.yml +++ b/.github/workflows/add-pr-labels.yml @@ -11,10 +11,5 @@ on:  jobs:    add-pr-label: -    name: Add PR Labels -    runs-on: ubuntu-latest -    permissions: -      contents: read -      pull-requests: write -    steps: -      - uses: actions/labeler@v5 +    uses: vyos/.github/.github/workflows/add-pr-labels.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/auto-author-assign.yml b/.github/workflows/auto-author-assign.yml index 0bfe972c0..1f69f4807 100644 --- a/.github/workflows/auto-author-assign.yml +++ b/.github/workflows/auto-author-assign.yml @@ -7,11 +7,6 @@ permissions:    pull-requests: write  jobs: -  # https://github.com/marketplace/actions/auto-author-assign    assign-author: -    runs-on: ubuntu-latest -    steps: -      - name: "Assign Author to PR" -        uses: toshimaru/auto-author-assign@v1.6.2 -        with: -          repo-token: ${{ secrets.GITHUB_TOKEN }} +    uses: vyos/.github/.github/workflows/assign-author.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/chceck-pr-message.yml b/.github/workflows/chceck-pr-message.yml new file mode 100644 index 000000000..95c5b69ce --- /dev/null +++ b/.github/workflows/chceck-pr-message.yml @@ -0,0 +1,14 @@ +--- +name: Check pull request message format + +on: +  pull_request: +    branches: +      - current +      - crux +      - equuleus + +jobs: +  check-pr-title: +    uses: vyos/.github/.github/workflows/check-pr-message.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/check-pr-conflicts.yml b/.github/workflows/check-pr-conflicts.yml new file mode 100644 index 000000000..62a37a7fa --- /dev/null +++ b/.github/workflows/check-pr-conflicts.yml @@ -0,0 +1,13 @@ + +name: "PR Conflicts checker" +on: +  pull_request_target: +    types: [synchronize] + +permissions: +  pull-requests: write + +jobs: +  check-pr-conflict-call: +    uses: vyos/.github/.github/workflows/check-pr-merge-conflict.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/check-stale.yml b/.github/workflows/check-stale.yml new file mode 100644 index 000000000..0b88acdb7 --- /dev/null +++ b/.github/workflows/check-stale.yml @@ -0,0 +1,9 @@ +name: "Issue and PR stale management" +on: +  schedule: +  - cron: "0 0 * * *" + +jobs: +  stale: +    uses: vyos/.github/.github/workflows/check-stale.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/check-unused-imports.yml b/.github/workflows/check-unused-imports.yml new file mode 100644 index 000000000..468543d6e --- /dev/null +++ b/.github/workflows/check-unused-imports.yml @@ -0,0 +1,11 @@ +name: Check for unused imports using Pylint +on: +  pull_request_target: +    branches: +      - current +      - sagitta + +jobs: +  Check-Unused-Imports: +    uses: vyos/.github/.github/workflows/check-unused-imports.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9e2e4bf0f..f6472784d 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -1,14 +1,3 @@ -# For most projects, this workflow file will not need changing; you simply need -# to commit it to your repository. -# -# You may wish to alter this file to override the set of languages analyzed, -# or to provide custom queries or build logic. -# -# ******** NOTE ******** -# We have attempted to detect the languages in your repository. Please check -# the `language` matrix defined below to confirm you have the correct set of -# supported CodeQL languages. -#  name: "Perform CodeQL Analysis"  on: @@ -27,7 +16,7 @@ permissions:  jobs:    codeql-analysis-call: -    uses: vyos/vyos-github-actions/.github/workflows/codeql-analysis.yml@current +    uses: vyos/.github/.github/workflows/codeql-analysis.yml@feature/T6349-reusable-workflows      secrets: inherit      with:        languages: "['python']" diff --git a/.github/workflows/label-backport.yml b/.github/workflows/label-backport.yml new file mode 100644 index 000000000..581363eb1 --- /dev/null +++ b/.github/workflows/label-backport.yml @@ -0,0 +1,8 @@ +name: Mergifyio backport + +on: [issue_comment] + +jobs: +  mergifyio_backport: +    uses: vyos/.github/.github/workflows/label-backport.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/linit-j2.yml b/.github/workflows/linit-j2.yml new file mode 100644 index 000000000..093fe7ffe --- /dev/null +++ b/.github/workflows/linit-j2.yml @@ -0,0 +1,14 @@ +--- +name: J2 Lint + +on: +  pull_request: +    branches: +      - current +      - crux +      - equuleus + +jobs: +  j2lint: +    uses: vyos/.github/.github/workflows/lint-j2.yml@feature/T6349-reusable-workflows +    secrets: inherit diff --git a/.github/workflows/mergifyio_backport.yml b/.github/workflows/mergifyio_backport.yml deleted file mode 100644 index d9f863d9a..000000000 --- a/.github/workflows/mergifyio_backport.yml +++ /dev/null @@ -1,22 +0,0 @@ -name: Mergifyio backport - -on: [issue_comment] - -jobs: -  mergifyio_backport: -    if: github.repository == 'vyos/vyos-1x' -    runs-on: ubuntu-latest -    steps: -      - uses: actions/checkout@v2 - -      - uses: actions-ecosystem/action-regex-match@v2 -        id: regex-match -        with: -          text: ${{ github.event.comment.body }} -          regex: '@[Mm][Ee][Rr][Gg][Ii][Ff][Yy][Ii][Oo] backport ' - -      - uses: actions-ecosystem/action-add-labels@v1 -        if: ${{ steps.regex-match.outputs.match != '' }} -        with: -          github_token: ${{ secrets.GITHUB_TOKEN }} -          labels: backport diff --git a/.github/workflows/pr-conflicts.yml b/.github/workflows/pr-conflicts.yml deleted file mode 100644 index 2fd0bb42d..000000000 --- a/.github/workflows/pr-conflicts.yml +++ /dev/null @@ -1,18 +0,0 @@ -name: "PR Conflicts checker" -on: -  pull_request_target: -    types: [synchronize] - -jobs: -  Conflict_Check: -    name: 'Check PR status: conflicts and resolution' -    runs-on: ubuntu-latest -    steps: -      - name: check if PRs are dirty -        uses: eps1lon/actions-label-merge-conflict@v3 -        with: -          dirtyLabel: "state: conflict" -          removeOnDirtyLabel: "state: conflict resolved" -          repoToken: "${{ secrets.GITHUB_TOKEN }}" -          commentOnDirty: "This pull request has conflicts, please resolve those before we can evaluate the pull request." -          commentOnClean: "Conflicts have been resolved. A maintainer will review the pull request shortly." diff --git a/.github/workflows/pull-request-management.yml b/.github/workflows/pull-request-management.yml deleted file mode 100644 index 3a855c107..000000000 --- a/.github/workflows/pull-request-management.yml +++ /dev/null @@ -1,25 +0,0 @@ ---- -name: Build Pull Request Package - -on: -  pull_request: -    branches: -      - current -      - crux -      - equuleus - -jobs: -  j2lint: -    name: Validate j2 files -    runs-on: ubuntu-20.04 -    steps: -      - uses: actions/checkout@v2 -        timeout-minutes: 2 -      - name: Setup J2Lint -        timeout-minutes: 2 -        run: | -          sudo pip install git+https://github.com/aristanetworks/j2lint.git@341b5d5db86e095b622f09770cb6367a1583620e -      - name: Run J2lint -        timeout-minutes: 2 -        run: | -          j2lint $GITHUB_WORKSPACE/data diff --git a/.github/workflows/pull-request-message-check.yml b/.github/workflows/pull-request-message-check.yml deleted file mode 100644 index 8c206a5ab..000000000 --- a/.github/workflows/pull-request-message-check.yml +++ /dev/null @@ -1,23 +0,0 @@ ---- -name: Check pull request message format - -on: -  pull_request: -    branches: -      - current -      - crux -      - equuleus - -jobs: -  check-pr-title: -    name: Check pull request title -    runs-on: ubuntu-20.04 -    steps: -      - uses: actions/checkout@v2 -        timeout-minutes: 2 -      - name: Install the requests library -        run: pip3 install requests -      - name: Check the PR title -        timeout-minutes: 2 -        run: | -          ./scripts/check-pr-title-and-commit-messages.py '${{ github.event.pull_request.url }}' diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml deleted file mode 100644 index d21d151f7..000000000 --- a/.github/workflows/stale.yml +++ /dev/null @@ -1,22 +0,0 @@ -name: "Issue and PR stale management" -on: -  schedule: -  - cron: "0 0 * * *" - -jobs: -  stale: -    runs-on: ubuntu-latest -    if: github.repository == 'vyos/vyos-1x' -    steps: -      # Issue stale management -    - uses: actions/stale@v6 -      with: -        repo-token: ${{ secrets.GITHUB_TOKEN }} -        days-before-stale: 90 -        days-before-close: -1 -        stale-issue-message: 'This issue is stale because it has been open 90 days with no activity. The issue will be reviewed by a maintainer and may be closed' -        stale-issue-label: 'state: stale' -        exempt-issue-labels: 'state: accepted, state: in-progress' -        stale-pr-message: 'This PR is stale because it has been open 30 days with no activity. The PR will be reviewed by a maintainer and may be closed' -        stale-pr-label: 'state: stale' -        exempt-pr-labels: 'state: accepted, state: in-progress' diff --git a/.github/workflows/unused-imports.yml b/.github/workflows/unused-imports.yml deleted file mode 100644 index da57bd270..000000000 --- a/.github/workflows/unused-imports.yml +++ /dev/null @@ -1,22 +0,0 @@ -name: Check for unused imports using Pylint -on: -  pull_request_target: -    branches: -      - current -      - sagitta - -jobs: -  Check-Unused-Imports: -    runs-on: ubuntu-latest -    steps: -      - uses: actions/checkout@v3 -      - name: Set up Python -        uses: actions/setup-python@v3 -        with: -          python-version: 3.11 -      - name: Install dependencies -        run: | -          python -m pip install --upgrade pip -          pip install pylint -      - name: Analysing the code with pylint -        run:  make unused-imports diff --git a/scripts/check-pr-title-and-commit-messages.py b/scripts/check-pr-title-and-commit-messages.py deleted file mode 100755 index 001f6cf82..000000000 --- a/scripts/check-pr-title-and-commit-messages.py +++ /dev/null @@ -1,51 +0,0 @@ -#!/usr/bin/env python3 - -import re -import sys -import time - -import requests - -# Use the same regex for PR title and commit messages for now -title_regex = r'^(([a-zA-Z\-_.]+:\s)?)T\d+:\s+[^\s]+.*' -commit_regex = title_regex - -def check_pr_title(title): -    if not re.match(title_regex, title): -        print("PR title '{}' does not match the required format!".format(title)) -        print("Valid title example: T99999: make IPsec secure") -        sys.exit(1) - -def check_commit_message(title): -    if not re.match(commit_regex, title): -        print("Commit title '{}' does not match the required format!".format(title)) -        print("Valid title example: T99999: make IPsec secure") -        sys.exit(1) - -if __name__ == '__main__': -    if len(sys.argv) < 2: -        print("Please specify pull request URL!") -        sys.exit(1) - -    # There seems to be a race condition that causes this scripts to receive -    # an incomplete PR object that is missing certain fields, -    # which causes temporary CI failures that require re-running the script -    # -    # It's probably better to add a small delay to prevent that -    time.sleep(5) - -    # Get the pull request object -    pr = requests.get(sys.argv[1]).json() -    if "title" not in pr: -        print("The PR object does not have a title field!") -        print("Did not receive a valid pull request object, please check the URL!") -        sys.exit(1) - -    check_pr_title(pr["title"]) - -    # Get the list of commits -    commits = requests.get(pr["commits_url"]).json() -    for c in commits: -        # Retrieve every individual commit and check its title -        co = requests.get(c["url"]).json() -        check_commit_message(co["commit"]["message"]) | 
