Skip to content

zizmor fixes (round 1) #21

zizmor fixes (round 1)

zizmor fixes (round 1) #21

Workflow file for this run

name: CI
on: pull_request
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
jobs:
matrix:
name: Build test matrix
runs-on: ubuntu-24.04
steps:
- name: Checkout
uses: actions/checkout@v4
with:
persist-credentials: false
ref: ${{ github.event.pull_request.head.sha }}
- name: Setup Python
uses: actions/setup-python@v5
with:
python-version: '3.13'
cache: 'pip'
cache-dependency-path: 'requirements/*.txt'
- name: Run tox
id: matrix
run: |
pip install $(grep -E "^(tox|tox-uv)==" requirements/local.txt)
echo "tox_matrix=$(tox -l | fgrep -v coverage | python .github/matrix.py)" >> $GITHUB_OUTPUT
outputs:
tox_matrix: ${{ steps.matrix.outputs.tox_matrix }}
test:
name: Test -- ${{ matrix.tox_env }}
runs-on: ubuntu-24.04
needs: matrix
strategy:
matrix:
include: ${{ fromJson(needs.matrix.outputs.tox_matrix) }}
fail-fast: false
steps:
- name: Checkout
uses: actions/checkout@v4
with:
persist-credentials: false
ref: ${{ github.event.pull_request.head.sha }}
- name: Setup Python
uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python }}
cache: 'pip'
cache-dependency-path: 'requirements/*.txt'
- name: Run tests
env:
PGHOST: localhost
PGUSER: postgres
PGPASSWORD: password
TOX_OVERRIDE: "testenv.passenv=PG*"
PYTHON_VERSION: ${{ matrix.python }}
run: |
pip install $(grep -E "^(tox|tox-uv)==" requirements/local.txt)
tox -e ${{ matrix.tox_env }}
services:
postgres:
image: postgres:17-alpine
env:
POSTGRES_PASSWORD: password
ports:
- 5432:5432
options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5