Merge pull request #184 from gloddy-dev/feature/setting-ci

Setting : CI 구축 (RE)

.github/codeql/codeql-config.yml

@@ -0,0 +1,9 @@
+name: 'Ahmatda web CodeQL config'
+
+paths:
+ - '*'
+paths-ignore:
+ - '**/*.test.ts'
+ - '**/*.test.tsx'
+ - '**/*.spec.ts'
+ - '**/*.spec.tsx'

.github/workflows/ci.yml

@@ -0,0 +1,167 @@
+name: CI
+
+on:
+ pull_request:
+ branches: [develop, feature/*]
+ types: [opened, reopened, edited]
+ push:
+ branches: [develop]
+
+env:
+ CACHED_DEPENDENCY_PATHS: ${{ github.workspace }}/.yarn/unplugged
+ CACHED_BUILD_PATHS: ${{ github.workspace }}/.next
+ BUILD_CACHE_KEY: ${{ github.sha }}
+ DEFAULT_NODE_VERSION: '16'
+ SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
+
+jobs:
+ job_install_dependencies:
+ name: Install Dependencies
+ runs-on: ubuntu-latest
+ timeout-minutes: 15
+ steps:
+ - name: Check out current commit (${{ github.sha }})
+ uses: actions/checkout@v2
+ - name: Set up Node
+ uses: actions/setup-node@v2
+ with:
+ node-version: ${{ env.DEFAULT_NODE_VERSION }}
+
+ - name: Compute dependency cache key
+ id: compute_lockfile_hash
+ run: echo "::set-output name=hash::${{ hashFiles('yarn.lock') }}"
+
+ - name: Check dependency cache
+ uses: actions/cache@v3
+ id: cache_dependencies
+ with:
+ path: ${{ env.CACHED_DEPENDENCY_PATHS }}
+ key: ${{ steps.compute_lockfile_hash.outputs.hash }}
+
+ - name: Install dependencies
+ if: steps.cache_dependencies.outputs.cache-hit == ''
+ run: yarn install --immutable
+ outputs:
+ dependency_cache_key: ${{ steps.compute_lockfile_hash.outputs.hash }}
+
+ job_build:
+ name: Build
+ needs: [job_install_dependencies]
+ runs-on: ubuntu-latest
+ timeout-minutes: 15
+ steps:
+ - name: Check out current commit (${{ github.sha }})
+ uses: actions/checkout@v2
+ - name: Set up Node
+ uses: actions/setup-node@v2
+ with:
+ node-version: ${{ env.DEFAULT_NODE_VERSION }}
+
+ - name: Check dependency cache
+ uses: actions/cache@v3
+ with:
+ path: ${{ env.CACHED_DEPENDENCY_PATHS }}
+ key: ${{ needs.job_install_dependencies.outputs.dependency_cache_key }}
+ - name: Check build cache
+ uses: actions/cache@v3
+ id: cache_built_packages
+ with:
+ path: ${{ env.CACHED_BUILD_PATHS }}
+ key: ${{ env.BUILD_CACHE_KEY }}
+
+ - name: Build
+ if: steps.cache_built_packages.outputs.cache-hit == ''
+ run: |
+ SENTRY_AUTH_TOKEN=$SENTRY_AUTH_TOKEN
+ yarn build
+
+ outputs:
+ dependency_cache_key: ${{ needs.job_install_dependencies.outputs.dependency_cache_key }}
+
+ job_continuous_integration:
+ runs-on: ubuntu-latest
+ name: Check test & lint
+ needs: [job_install_dependencies]
+ steps:
+ - name: Check out current commit (${{ github.sha }})
+ uses: actions/checkout@v2
+ - name: Set up Node
+ uses: actions/setup-node@v2
+ with:
+ node-version: ${{ env.DEFAULT_NODE_VERSION }}
+
+ - name: Check dependency cache
+ uses: actions/cache@v3
+ with:
+ path: ${{ env.CACHED_DEPENDENCY_PATHS }}
+ key: ${{ needs.job_install_dependencies.outputs.dependency_cache_key }}
+
+ - name: Check Lint
+ if: github.event_name != 'push'
+ run: yarn lint
+
+ - name: Check Unit Test
+ if: github.event_name != 'push'
+ run: yarn test
+
+ - name : Run Prettier
+ if: github.event_name != 'push'
+ run: yarn format
+
+ job_codecov_test_coverage:
+ name: Set codecov unit test coverage
+ runs-on: ubuntu-latest
+ needs: [job_install_dependencies]
+ steps:
+ - name: Check out current commit (${{ github.sha }})
+ uses: actions/checkout@v2
+ - name: Set up Node
+ uses: actions/setup-node@v2
+ with:
+ node-version: ${{ env.DEFAULT_NODE_VERSION }}
+
+ - name: Check dependency cache
+ uses: actions/cache@v3
+ with:
+ path: ${{ env.CACHED_DEPENDENCY_PATHS }}
+ key: ${{ needs.job_install_dependencies.outputs.dependency_cache_key }}
+
+ - name: Create Unit Test Coverage
+ run: yarn test:coverage
+
+ - name: Set unit test coverage
+ uses: codecov/codecov-action@v3
+ with:
+ token: ${{ secrets.CODECOV_TOKEN }}
+ fail_ci_if_error: true
+
+ job_nextjs_bundle_analysis:
+ name: Nextjs bundle analysis
+ runs-on: ubuntu-latest
+ needs: [job_build]
+ steps:
+ - name: Check out current commit (${{ github.sha }})
+ uses: actions/checkout@v2
+ - name: Set up Node
+ uses: actions/setup-node@v2
+ with:
+ node-version: ${{ env.DEFAULT_NODE_VERSION }}
+
+ - name: Check dependency cache
+ uses: actions/cache@v3
+ with:
+ path: ${{ env.CACHED_DEPENDENCY_PATHS }}
+ key: ${{ needs.job_build.outputs.dependency_cache_key }}
+ - name: Check build cache
+ uses: actions/cache@v3
+ with:
+ path: ${{ env.CACHED_BUILD_PATHS }}
+ key: ${{ env.BUILD_CACHE_KEY }}
+
+ - name: Analyze bundle sizes
+ uses: transferwise/actions-next-bundle-analyzer@master
+ with:
+ workflow-id: ci.yml
+ base-branch: main
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/codeql.yml

@@ -0,0 +1,40 @@
+name: 'CodeQL'
+
+on:
+ push:
+ branches: [develop]
+ pull_request:
+ branches: [develop, feature/*]
+ types: [opened, reopened, edited]
+
+jobs:
+ analyze:
+ name: Analyze
+ runs-on: ubuntu-latest
+ permissions:
+ actions: read
+ contents: read
+ security-events: write
+
+ strategy:
+ fail-fast: false
+ matrix:
+ language: ['javascript']
+
+ steps:
+ - name: Checkout repository
+ uses: actions/checkout@v3
+
+ - name: Initialize CodeQL
+ uses: github/codeql-action/init@v2
+ with:
+ languages: ${{ matrix.language }}
+ config-file: ./.github/codeql/codeql-config.yml
+
+ - name: Autobuild
+ uses: github/codeql-action/autobuild@v2
+
+ - name: Perform CodeQL Analysis
+ uses: github/codeql-action/analyze@v2
+ with:
+ category: '/language:${{matrix.language}}'

.gitignore

@@ -19,3 +19,6 @@
 .DS_Store
 .env
 coverage
+
+# sentry
+.sentryclirc