OSOE-351: Offer security checks in Lombiq.UITestingToolbox #5496
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build and Test | |
# Runs for PRs opened for any branch, and pushes to the dev branch. | |
on: | |
pull_request: | |
push: | |
branches: | |
- dev | |
jobs: | |
build-and-test-larger-runners: | |
if: github.ref_name != github.event.repository.default_branch | |
name: Build and Test - root solution (larger runners) | |
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev | |
with: | |
machine-types: "['buildjet-4vcpu-ubuntu-2204']" | |
timeout-minutes: 20 | |
set-up-sql-server: "true" | |
set-up-azurite: "true" | |
ui-test-parallelism: 0 | |
build-create-binary-log: "true" | |
blame-hang-timeout: "5m" | |
build-enable-nuget-caching: "true" | |
build-enable-npm-caching: "true" | |
build-and-test-standard-runners: | |
# Since dev builds are not awaited by anyone, they can run on the slower free runners. | |
if: github.ref_name == github.event.repository.default_branch | |
name: Build and Test - root solution (standard runners) | |
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev | |
with: | |
timeout-minutes: 40 | |
set-up-sql-server: "true" | |
set-up-azurite: "true" | |
build-create-binary-log: "true" | |
blame-hang-timeout: "5m" | |
build-and-test-nuget-test: | |
name: Build and Test - NuGetTest solution | |
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev | |
with: | |
build-directory: NuGetTest | |
timeout-minutes: 15 | |
blame-hang-timeout: "5m" | |
spelling: | |
name: Spelling | |
uses: Lombiq/GitHub-Actions/.github/workflows/spelling.yml@dev | |
with: | |
additional-dictionaries: | | |
cspell:csharp/csharp.txt | |
cspell:css/dict/css.txt | |
cspell:fullstack/dict/fullstack.txt | |
cspell:html-symbol-entities/entities.txt | |
cspell:html/dict/html.txt | |
cspell:html/src/svg.txt | |
cspell:node/dict/node.txt | |
cspell:npm/dict/npm.txt | |
lombiq-lgha:dictionaries/Liquid.txt | |
lombiq-lgha:dictionaries/Xml.txt | |
lombiq-lgha:dictionaries/Lombiq.people.txt | |
powershell-static-code-analysis: | |
name: PowerShell Static Code Analysis | |
uses: Lombiq/PowerShell-Analyzers/.github/workflows/static-code-analysis.yml@dev | |
with: | |
machine-types: "['ubuntu-22.04']" | |
post-pull-request-checks-automation: | |
name: Post Pull Request Checks Automation | |
needs: [build-and-test-larger-runners, build-and-test-nuget-test, spelling, powershell-static-code-analysis] | |
if: github.event.pull_request != '' | |
uses: Lombiq/GitHub-Actions/.github/workflows/post-pull-request-checks-automation.yml@dev | |
secrets: | |
JIRA_BASE_URL: ${{ secrets.DEFAULT_JIRA_BASE_URL }} | |
JIRA_USER_EMAIL: ${{ secrets.DEFAULT_JIRA_USER_EMAIL }} | |
JIRA_API_TOKEN: ${{ secrets.DEFAULT_JIRA_API_TOKEN }} | |
MERGE_TOKEN: ${{ secrets.LOMBIQBOT_GITHUB_PERSONAL_ACCESS_TOKEN }} | |
add-windows-build-warning-label: | |
name: Add Windows Build Warning Label | |
runs-on: ubuntu-22.04 | |
timeout-minutes: 2 | |
needs: [build-and-test-larger-runners, build-and-test-nuget-test, powershell-static-code-analysis] | |
steps: | |
- name: Add Windows Build Warning Label | |
# v2.0.0 | |
uses: buildsville/add-remove-label@eeae411a9be2e173f2420e1644514edbecc4e835 | |
with: | |
# The token is necessary to be able to add the label even if the workflow is triggered by a pull request coming | |
# from a fork. | |
token: ${{ secrets.LOMBIQBOT_GITHUB_PERSONAL_ACCESS_TOKEN }} | |
labels: requires-windows-build | |
type: add |