Skip to content

OSOE-351: Offer security checks in Lombiq.UITestingToolbox #5496

OSOE-351: Offer security checks in Lombiq.UITestingToolbox

OSOE-351: Offer security checks in Lombiq.UITestingToolbox #5496

name: Build and Test
# Runs for PRs opened for any branch, and pushes to the dev branch.
on:
pull_request:
push:
branches:
- dev
jobs:
build-and-test-larger-runners:
if: github.ref_name != github.event.repository.default_branch
name: Build and Test - root solution (larger runners)
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev
with:
machine-types: "['buildjet-4vcpu-ubuntu-2204']"
timeout-minutes: 20
set-up-sql-server: "true"
set-up-azurite: "true"
ui-test-parallelism: 0
build-create-binary-log: "true"
blame-hang-timeout: "5m"
build-enable-nuget-caching: "true"
build-enable-npm-caching: "true"
build-and-test-standard-runners:
# Since dev builds are not awaited by anyone, they can run on the slower free runners.
if: github.ref_name == github.event.repository.default_branch
name: Build and Test - root solution (standard runners)
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev
with:
timeout-minutes: 40
set-up-sql-server: "true"
set-up-azurite: "true"
build-create-binary-log: "true"
blame-hang-timeout: "5m"
build-and-test-nuget-test:
name: Build and Test - NuGetTest solution
uses: Lombiq/GitHub-Actions/.github/workflows/build-and-test-orchard-core.yml@dev
with:
build-directory: NuGetTest
timeout-minutes: 15
blame-hang-timeout: "5m"
spelling:
name: Spelling
uses: Lombiq/GitHub-Actions/.github/workflows/spelling.yml@dev
with:
additional-dictionaries: |
cspell:csharp/csharp.txt
cspell:css/dict/css.txt
cspell:fullstack/dict/fullstack.txt
cspell:html-symbol-entities/entities.txt
cspell:html/dict/html.txt
cspell:html/src/svg.txt
cspell:node/dict/node.txt
cspell:npm/dict/npm.txt
lombiq-lgha:dictionaries/Liquid.txt
lombiq-lgha:dictionaries/Xml.txt
lombiq-lgha:dictionaries/Lombiq.people.txt
powershell-static-code-analysis:
name: PowerShell Static Code Analysis
uses: Lombiq/PowerShell-Analyzers/.github/workflows/static-code-analysis.yml@dev
with:
machine-types: "['ubuntu-22.04']"
post-pull-request-checks-automation:
name: Post Pull Request Checks Automation
needs: [build-and-test-larger-runners, build-and-test-nuget-test, spelling, powershell-static-code-analysis]
if: github.event.pull_request != ''
uses: Lombiq/GitHub-Actions/.github/workflows/post-pull-request-checks-automation.yml@dev
secrets:
JIRA_BASE_URL: ${{ secrets.DEFAULT_JIRA_BASE_URL }}
JIRA_USER_EMAIL: ${{ secrets.DEFAULT_JIRA_USER_EMAIL }}
JIRA_API_TOKEN: ${{ secrets.DEFAULT_JIRA_API_TOKEN }}
MERGE_TOKEN: ${{ secrets.LOMBIQBOT_GITHUB_PERSONAL_ACCESS_TOKEN }}
add-windows-build-warning-label:
name: Add Windows Build Warning Label
runs-on: ubuntu-22.04
timeout-minutes: 2
needs: [build-and-test-larger-runners, build-and-test-nuget-test, powershell-static-code-analysis]
steps:
- name: Add Windows Build Warning Label
# v2.0.0
uses: buildsville/add-remove-label@eeae411a9be2e173f2420e1644514edbecc4e835
with:
# The token is necessary to be able to add the label even if the workflow is triggered by a pull request coming
# from a fork.
token: ${{ secrets.LOMBIQBOT_GITHUB_PERSONAL_ACCESS_TOKEN }}
labels: requires-windows-build
type: add