Skip to content
CD - Operator Release

Release Operator v0.7.3 #10

Sign in to view logs

Release Operator v0.7.3

Release Operator v0.7.3 #10

Workflow file for this run

.github/workflows/cd-operator-release.yaml at e3e6944
# Copyright 2023 The Atlas Operator Authors.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
name: CD - Operator Release
run-name: Release Operator ${{ github.event.inputs.version }}
on:
workflow_dispatch:
inputs:
version:
description: 'Chart version (e.g. v0.1.2)'
type: string
required: true
jobs:
helm-test:
name: Test
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Create k8s Kind Cluster
uses: helm/kind-action@v1
- name: Install Skaffold
run: |
curl -Lo skaffold https://storage.googleapis.com/skaffold/releases/v2.3.1/skaffold-linux-amd64 && \
sudo install skaffold /usr/local/bin/
- name: Setup Helm
uses: azure/setup-helm@v4
- name: Run e2e tests with Operator
run: |
make test-e2e \
ATLAS_TOKEN=${{ secrets.ATLAS_TOKEN }} \
KIND_CLUSTER=chart-testing \
TEST_RUN='(schema|migration)-mysql'
env:
SKAFFOLD_PROFILE: helm
- name: test env vars
run: |
helm template atlas-operator charts/atlas-operator \
--set-json=extraEnvs='[{"name":"NORMAL_ENV","value":"value"}]' | grep NORMAL_ENV
docker-build:
name: Build
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- name: Login to DockerHub
uses: docker/login-action@v1
with:
username: ${{ secrets.DOCKERHUB_USERNAME }}
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Fetch Atlas version
id: atlas
run: |
# All distributions are built from the same version
# so we only need to fetch it once.
echo "version=$(curl -s https://release.ariga.io/atlas/atlas-linux-amd64-latest.version)" >> $GITHUB_OUTPUT
- name: Docker meta
id: meta
uses: docker/metadata-action@v4
with:
images: ${{ secrets.DOCKERHUB_USERNAME }}/atlas-operator
tags: |
type=semver,pattern={{version}},value=${{ github.event.inputs.version }}
labels: |
io.ariga.atlas.version=${{ steps.atlas.outputs.version }}
org.opencontainers.image.title=atlas-operator
org.opencontainers.image.description=Atlas Operator
org.opencontainers.image.url=https://atlasgo.io
org.opencontainers.image.vendor=Ariga
org.opencontainers.image.source=https://github.com/ariga/atlas-operator/blob/master/Dockerfile
- name: Build and push
uses: docker/build-push-action@v4
with:
context: .
build-args: |
ATLAS_VERSION=${{ steps.atlas.outputs.version }}
OPERATOR_VERSION=${{ github.event.inputs.version }}
file: ./Dockerfile
platforms: linux/amd64,linux/arm64
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
push: true
- name: Run Trivy vulnerability scanner
uses: aquasecurity/trivy-action@7b7aa264d83dc58691451798b4d117d53d21edfe
with:
image-ref: ${{ fromJSON(steps.meta.outputs.json).tags[0] }}
format: 'template'
template: '@/contrib/sarif.tpl'
output: 'trivy-results.sarif'
severity: 'CRITICAL,HIGH,MEDIUM'
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: 'trivy-results.sarif'
helm-push:
name: Push to ghcr.io
needs: [docker-build, helm-test]
runs-on: ubuntu-latest
defaults:
run:
working-directory: charts/
steps:
- uses: actions/checkout@v4
- uses: azure/setup-helm@v4
- name: Validate semver syntax
run: echo "${{ github.event.inputs.version }}" | grep -e "^v[[:digit:]]\{1,3\}.[[:digit:]]\{1,3\}.[[:digit:]]\{1,3\}$"
- name: Get Semantic Version
id: semver
run: |
VERSION=$(echo ${{ github.event.inputs.version }} | sed 's/^v//')
echo "::set-output name=version::$VERSION"
- name: Update Chart Version
working-directory: charts/atlas-operator/
run: |
sed -i "s/^version: .*/version: ${{ steps.semver.outputs.version }}/" Chart.yaml
sed -i "s/^appVersion: .*/appVersion: ${{ steps.semver.outputs.version }}/" Chart.yaml
echo "Updated Chart.yaml:"
grep -E '^(version|appVersion):' Chart.yaml
- name: Commit changes
run: |
git config --global user.email "[email protected]"
git config --global user.name "Github Action"
BRANCH=$(git rev-parse --abbrev-ref HEAD)
if ! git diff --quiet; then
git add atlas-operator/Chart.yaml
git commit -m "charts/atlas-operator: update Chart version to ${{ github.event.inputs.version }}"
git push origin $BRANCH
else
echo "No changes to commit"
fi
- name: Helm package
run: helm package atlas-operator
- name: login to gcr using helm
run: |
echo ${{ secrets.GITHUB_TOKEN }} | helm registry login ghcr.io/ariga/atlas-operator --username ${{ github.repository_owner }} --password-stdin
- name: helm push
run: |
helm push atlas-operator-${{ steps.semver.outputs.version }}.tgz oci://ghcr.io/ariga/charts
- name: Create release
run: |
gh release create ${{ github.event.inputs.version }} atlas-operator-${{ steps.semver.outputs.version }}.tgz -t ${{ github.event.inputs.version }} -n "Release ${{ github.event.inputs.version }}"