This directory contains the GitHub Actions workflows used in the Madara project. This README explains how the workflows are organized, how to use them, and how to test them locally.
- workflows/: Contains all the GitHub Actions workflow files (
.yml) that define CI/CD processes - actions/: Contains reusable custom actions shared across workflows
- config/: Contains configuration files like
env.ymlused across workflows - ISSUE_TEMPLATE/: Contains templates for GitHub issues
- PULL_REQUEST_TEMPLATE.md: Template for pull requests
The workflow system is built with a modular approach:
- Trigger Workflows: Files like
pull-request-main-ci.ymlthat trigger when events occur (PR creation, push to branches, etc.) - Task Workflows: Reusable workflow files prefixed with
task-*that perform specific tasks - Schedule Workflows: Files prefixed with
schedule-*that run on a defined schedule
The trigger workflows typically call multiple task workflows as needed.
Using this convention: event-category-functionality.yml
- event:
push,push-main,schedule,pull-request,task(specific to reusable components)... - category:
ci,release,build,lint,security,test,... - functionality:
code-style,docker,backup,frontend, .... anything that describe what it does
Custom actions in the actions/ directory are used across workflows to standardize common tasks:
Located in .github/actions/load-env/, this action loads environment variables from the config files. It:
- Reads variables from
.github/config/env.yml - Sets these as environment variables for all workflow steps
- Handles prioritization of existing environment variables (system environment overrides those in env.yml. This allows easy testing with
act)
Located in .github/actions/rust-setup/, this action sets up the Rust environment with:
- Appropriate Rust version installation based on env vars
- Cache configuration for dependencies
- Other Rust tools installation
- Builds SNOS if needed
The environment configuration is centralized in .github/config/env.yml. This contains various environment variables used across workflows:
env:
BUILD_RUST_VERSION: 1.85
BUILD_SCARB_VERSION: 2.8.2
BUILD_PYTHON_VERSION: 3.9
BUILD_ACTION_CACHE_PREFIX: "madara"
BUILD_FOUNDRY_VERSION: nightly
BUILD_RUST_CACHE_KEY: "release"
TESTING_RUST_VERSION: nightly-2024-09-05
TESTING_RUST_CACHE_KEY: "testing"
DEV_RUST_CACHE_KEY: "dev"
CLIPPY_RUST_CACHE_KEY: "clippy"These variables define:
- Versions for build and testing tools
- Cache keys for various environments
- Prefixes and other configuration values
Having different cache for build environments allows to reduce the total cache size while still increasing speed of builds.
Act is a tool that allows you to run GitHub Actions workflows locally. This is useful for testing and debugging workflows without having to push changes to GitHub.
Warning
Currently act doesn't work well with multiple level of dockerization - workflows which are using uses: task-... as jobs (ex: pull-request-... or push-...) won't work.
However all the task-... workflows should work properly.
-s GITHUB_TOKEN="$(gh auth token)"to setup the token--artifact-server-path ./tmp/artifacts/to maintain artifacts used across tasks-P karnot-arc-runner-set=catthehacker/ubuntu:rust-22.04allows task usingruns-on: karnot-arc-runner-setto execute using act's ubuntu image with rust preinstalled
# Run the main build task (takes ~10min on good computer)
act -W .github/workflows/task-build-madara.yml -s GITHUB_TOKEN="$(gh auth token)" --artifact-server-path ./tmp/artifacts/ workflow_call -P karnot-arc-runner-set=catthehacker/ubuntu:rust-22.04
# Output about the binaries hashes:
# | madara-binary-hash: c2098b181b6d5d54fcb4a23df9df933d0b842fd615b00b7f2ef5e5783686b7b4
# | orchestrator-binary-hash: ce354e4078a0a9ff2303e50255415f54edde012151edbd650e42187e91a8f0c1
# | cairo-artifacts-hash: 07660f3d160f65ee5c66ea05bfd3f5ccc35ed1b4589bffc2230f2c798f0a5c15
# Run the javascript tests (using --input to pass the binaries)
act -W .github/workflows/task-test-js.yml -s GITHUB_TOKEN="$(gh auth token)" --artifact-server-path ./tmp/artifacts/ workflow_call --input madara-binary-hash="c2098b181b6d5d54fcb4a23df9df933d0b842fd615b00b7f2ef5e5783686b7b4" --input cairo-artifacts-hash="07660f3d160f65ee5c66ea05bfd3f5ccc35ed1b4589bffc2230f2c798f0a5c15"
# Run Orchestrator Coverage (using -s for passing secrets)
act -W .github/workflows/task-coverage-orchestrator.yml -s GITHUB_TOKEN="$(gh auth token)" --artifact-server-path ./tmp/artifacts/ workflow_call -P karnot-arc-runner-set=catthehacker/ubuntu:rust-22.04 -s ETHEREUM_SEPOLIA_BLAST_RPC="https://sepolia.blast.io" -s RPC_FOR_SNOS="..."
# Independantly build the production docker image used in the release process
docker build -f docker/madara-production.Dockerfile . --build-arg="PYTHON_VERSION=3.9" --build-arg="SCARB_VERSION=2.8.2" --build-arg=FOUNDRY_VERSION=nightlyIf you encounter issues:
- Check if Act is using the correct Docker images
- Ensure all required secrets are provided
- Check for path-specific issues between different environments
- Look at act DEBUG logs
act -v
- Create a
.actrcfile in the repository root to store common flags - Use the
-nflag to do a dry run and see what would be executed - For complex workflows, test individual jobs separately
![@dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=64&v=4){kind=small}
