Commit graph

20 commits

Author SHA1 Message Date
nodiscc
4e653e1e97
tools/github actions: use makefile/sphinx instead of mkdocs to build HTML documentation 2023-10-05 15:01:43 +02:00
nodiscc
ea57088177
tools: github actions: build docker images on pull requests
- fixes https://github.com/shaarli/Shaarli/issues/1800
- do not push, only check that the image builds correctly
- tag the image as :pr-PR_NUMBER
2023-08-19 13:44:58 +02:00
nodiscc
3b5923b7e1
tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock)
- run scan on each push/pull request update
- can be run locally using make test_trivy_repo
- exit with error code 0/success when vulnerabilities are found,  as not to make the workflow fail, a separate periodic run that exits with code 1 should be added in parallel
- update trivy to v0.43.0
- https://github.com/aquasecurity/trivy/releases/tag/v0.43.0
- also consider TRIVY_EXIT_CODE when running trivy on the latest docker image
- ref. https://github.com/shaarli/Shaarli/issues/1531
2023-06-30 23:56:09 +02:00
nodiscc
0eee6a2ba1
gihub actions: fix value of TRIVY_TARGET_DOCKER_IMAGE
- fixes Error response from daemon: no such image: ghcr.io/***:trivy: No such image: ghcr.io/***:trivy
- introduced in https://github.com/shaarli/Shaarli/pull/1980 but the test target branch/tag was never reverted to 'latest'
2023-05-21 21:08:36 +02:00
nodiscc
22b4044986
tools/github actions: revert temporary changes used for trivy tests on fork/branch 2023-05-02 12:27:49 +02:00
nodiscc
d48e06f438
run trivy vulnerability scanner on the 'latest' docker image
- run trivy from makefile so that it can be run both locally and through github actions
- usage: make test_trivy TRIVY_TARGET_DOCKER_IMAGE=regist.ry/user/image:tag
- tested by downgrading the base image to alpine 3.15.7 and verifying that vulnerabilities are reported (https://github.com/nodiscc/Shaarli/actions/runs/4860040980/jobs/8663400103)
- TEMP/TESTING only push image to ghcr.io, run trivy on trivy branch/docker tag as well as master
- ref. https://github.com/shaarli/Shaarli/issues/1531
2023-05-02 12:24:50 +02:00
nodiscc
08d9347e9a
Merge pull request #1958 from ArthurHoaro/php-drop-7.3-and-less
Drop support for PHP 7.1, 7.2 and 7.3
2023-04-03 15:43:07 +00:00
ArthurHoaro
ef9d019ccd
Docker build: add ARM64 platform and bump Github action version (#1965) 2023-03-25 09:35:58 -04:00
nodiscc
fd4379992d
github actions: build OCI images that contin both amd64 and armv7
- ref. https://docs.docker.com/engine/reference/commandline/buildx_build/#platform
- ref. https://docs.docker.com/build/ci/github-actions/multi-platform/
- replaces https://github.com/shaarli/Shaarli/pull/1496
- make docker image name configurable through CI variables for easier testing
2023-03-21 18:10:37 +01:00
ArthurHoaro
0a47d89193 Drop support for PHP 7.1, 7.2 and 7.3
This commit doesn't yet enforce the new requirement since previous version will continue to work for a short while.
2023-03-18 14:27:41 -04:00
nodiscc
9195ce0378
Merge pull request #1950 from nodiscc/tests-php-8.2
github actions: add tests for PHP 8.2
2023-03-17 14:37:26 +00:00
nodiscc
e4ee672404
github actions: add tests for PHP 8.2
- ref. https://github.com/shaarli/Shaarli/pull/1928
2023-03-17 15:11:08 +01:00
nodiscc
169755c6a9
docker: latest: replace dev in shaarli_version.php with the latest commit hash
- fixes https://github.com/shaarli/Shaarli/issues/1676
- testing was successful using docker run --entrypoint /bin/cat nodiscc/shaarli:latest shaarli/shaarli_version.php (returns <?php /* c4a5ef5 */ ?>)
2023-03-17 15:04:38 +01:00
Denis Renning
4c76d4eea9
Github actions: update node (#1928)
* update Node dependent actions
* doc: update compatibility table

Co-authored-by: William Desportes <williamdes@wdes.fr>
Co-authored-by: nodiscc <nodiscc@gmail.com>
2023-03-17 01:22:20 +00:00
Hg
cc2ea94d06 ci: push container images to github registry in addition to dockerhub
it's good to have multiple container registries, in case one decides to not
be welcoming anymore to open-source projects
2023-03-16 21:30:43 +01:00
nodiscc
b9938cf084
tools: github actions: fix PHP 8.0 tests
- `--ignore-platform-req=php` is no longer needed
- fixes https://github.com/shaarli/Shaarli/issues/1933
2023-01-31 14:39:30 +01:00
nodiscc
93a826f0a4
tools/github actions: do not cancel all PHP jobs when a single one fails
- https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs#handling-failures
2022-09-24 18:07:54 +02:00
nodiscc
803f6a7e36 build: use the yarnpkg command instead of yarn
- yarnpkg is always aliased to the proper yarn binary on all distributions
- yarn command does not always point to yarn package managed (Debian)
2022-04-06 19:26:01 +02:00
nodiscc
eeaabc05a7
build and push docker images using github actions
- push images to https://hub.docker.com/r/shaarli/shaarli/tags using a personal access token (access tokens are not available for organizations)
- push an image tagged :latest for builds on master
- push an image with the same tag as the git tag for v*.*.* tags, and for the "release" branch
- update documentation (remove references to Travis/Drone CI
- deprecate stable and master Docker tags (ref. https://github.com/shaarli/Shaarli/issues/1453)
- add deprecation notices to CHANGELOG.md
2021-06-15 20:35:36 +02:00
ArthurHoaro
2ce2ef3708 Setup Github Actions for Shaarli
This is kind of a quick & dirty setup in order to fix our non-CI current status.
We can later decide to either improve it or fix Drone CI.

Related to #1754
2021-05-23 11:36:24 +02:00