Cherry-pick PR #382 to release-v1.2 #1688
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Build, Lint, and Test | |
env: | |
EXPORT_RESULT: true | |
on: | |
push: | |
branches: | |
- main | |
- 'release-*' | |
pull_request: | |
jobs: | |
build-container: | |
runs-on: ubuntu-latest | |
steps: | |
- run: echo "🎉 The job was automatically triggered by a ${{ github.event_name }} event." | |
- run: echo "🔎 The name of your branch is ${{ github.ref }} and your repository is ${{ github.repository }}." | |
- name: Checkout | |
uses: actions/checkout@v3 | |
- name: Setup Go | |
uses: actions/setup-go@v4 | |
with: | |
go-version: "1.21" | |
- name: Test build | |
run: make manifests generate fmt vet build | |
- name: Run unit tests | |
run: make unit-test | |
- name: Run coverage report | |
run: make coverage | |
- name: Codecov | |
uses: codecov/codecov-action@v3.1.4 | |
- name: Run Trivy vulnerability scanner | |
uses: aquasecurity/trivy-action@0.11.2 | |
with: | |
scan-type: "fs" | |
ignore-unfixed: true | |
format: "table" | |
exit-code: "1" | |
vuln-type: "os,library" | |
severity: "CRITICAL,HIGH" |