name: CI/CD Pipeline on: push: branches: [ master, develop ] tags: [ 'v*' ] pull_request: branches: [ master ] env: CARGO_TERM_COLOR: always RUST_BACKTRACE: 1 jobs: fmt: name: Code Format runs-on: linux container: node:18 steps: - uses: actions/checkout@v2 with: fetch-depth: 0 - uses: dtolnay/rust-toolchain@stable with: components: rustfmt - name: Check formatting run: cargo fmt --all -- --check # TEMPORARILY DISABLED - re-enable after build jobs are stable # clippy: # name: Clippy Lints # runs-on: linux # container: node:18 # steps: # - uses: actions/checkout@v2 # with: # fetch-depth: 0 # - name: Install system dependencies # run: | # apt-get update # apt-get install -y libsystemd-dev pkg-config # - uses: dtolnay/rust-toolchain@stable # with: # components: clippy # - name: Cache cargo # uses: Swatinem/rust-cache@v2 # - name: Run clippy # run: cargo clippy --all-targets --all-features -- -D warnings # # test: # name: Unit Tests # runs-on: linux # container: node:18 # steps: # - uses: actions/checkout@v2 # with: # fetch-depth: 0 # - name: Install system dependencies # run: | # apt-get update # apt-get install -y libsystemd-dev pkg-config # - uses: dtolnay/rust-toolchain@stable # - name: Cache cargo # uses: Swatinem/rust-cache@v2 # - name: Run tests # run: cargo test --all-features # - name: Upload coverage # uses: codecov/codecov-action@v4 # if: always() # # audit: # name: Security Audit # runs-on: linux # container: node:18 # steps: # - uses: actions/checkout@v2 # with: # fetch-depth: 0 # - name: Install system dependencies # run: | # apt-get update # apt-get install -y libsystemd-dev pkg-config # - uses: dtolnay/rust-toolchain@stable # - name: Run cargo-audit # run: | # cargo install cargo-audit # cargo audit # Debian/Ubuntu Package Build build-deb: name: Build Debian Package runs-on: linux container: node:18 steps: - uses: actions/checkout@v4 with: fetch-depth: 0 - uses: dtolnay/rust-toolchain@stable - name: Install build dependencies run: | apt-get update apt-get install -y build-essential debhelper cargo rustc libsystemd-dev pkg-config - name: Build Debian package run: dpkg-buildpackage -us -uc -b - name: Copy .deb to workspace run: cp ../linux-patch-api_*.deb . - name: Upload to releases (on tag) if: startsWith(github.ref, 'refs/tags/') uses: softprops/action-gh-release@v1 with: files: linux-patch-api_*.deb # RHEL/CentOS/Fedora Package Build build-rpm: name: Build RPM Package runs-on: linux container: node:18 steps: - uses: actions/checkout@v4 with: fetch-depth: 0 - uses: dtolnay/rust-toolchain@stable - name: Install RPM build tools run: | apt-get update apt-get install -y rpm rpm-common gcc build-essential cargo rustc libsystemd-dev pkg-config - name: Build release binary run: cargo build --release - name: Build RPM package run: ./build-rpm.sh - name: Upload to releases (on tag) if: startsWith(github.ref, 'refs/tags/') uses: softprops/action-gh-release@v1 with: files: ~/rpmbuild/RPMS/x86_64/*.rpm # Alpine Package Build build-apk: name: Build Alpine Package runs-on: linux container: alpine/node:latest steps: - uses: actions/checkout@v4 with: fetch-depth: 0 - name: Install build dependencies run: | apk add --no-cache rust cargo musl-dev openssl-dev systemd-dev git abuild - name: Build APK package run: ./build-alpine.sh - name: Upload to releases (on tag) if: startsWith(github.ref, 'refs/tags/') uses: softprops/action-gh-release@v1 with: files: releases/*.apk # Arch Linux Package Build build-arch: name: Build Arch Package runs-on: linux container: archlinux:latest steps: - uses: actions/checkout@v4 with: fetch-depth: 0 - name: Install Node.js for GitHub Actions run: pacman -Sy --noconfirm nodejs npm - name: Install build dependencies run: | pacman -Syu --noconfirm rust cargo systemd git base-devel - name: Build release binary run: cargo build --release - name: Build Arch package run: ./build-arch.sh - name: Upload to releases (on tag) if: startsWith(github.ref, 'refs/tags/') uses: softprops/action-gh-release@v1 with: files: releases/*.pkg.tar.zst