Refactor CI workflows to utilize Task for build and test steps, add SBOM generation workflow, and remove deprecated steps.
All checks were successful
Go Build Multi-Platform / build (amd64, darwin) (push) Successful in 26s
Go Build Multi-Platform / build (amd64, freebsd) (push) Successful in 33s
Go Build Multi-Platform / build (amd64, windows) (push) Successful in 30s
Go Build Multi-Platform / build (amd64, linux) (push) Successful in 32s
Go Build Multi-Platform / build (arm, freebsd) (push) Successful in 33s
Go Build Multi-Platform / build (arm, linux) (push) Successful in 31s
Go Build Multi-Platform / build (arm, windows) (push) Successful in 31s
Go Build Multi-Platform / build (arm64, darwin) (push) Successful in 29s
Go Build Multi-Platform / build (arm64, freebsd) (push) Successful in 41s
Go Build Multi-Platform / build (arm64, linux) (push) Successful in 33s
Go Build Multi-Platform / build (arm64, windows) (push) Successful in 34s
Go Build Multi-Platform / Create Release (push) Has been skipped
Go Test Multi-Platform / Test (ubuntu-latest, arm64) (push) Successful in 1m8s
Go Revive Lint / lint (push) Successful in 1m9s
Go Test Multi-Platform / Test (ubuntu-latest, amd64) (push) Successful in 1m44s
Run Gosec / tests (push) Successful in 1m14s
All checks were successful
Go Build Multi-Platform / build (amd64, darwin) (push) Successful in 26s
Go Build Multi-Platform / build (amd64, freebsd) (push) Successful in 33s
Go Build Multi-Platform / build (amd64, windows) (push) Successful in 30s
Go Build Multi-Platform / build (amd64, linux) (push) Successful in 32s
Go Build Multi-Platform / build (arm, freebsd) (push) Successful in 33s
Go Build Multi-Platform / build (arm, linux) (push) Successful in 31s
Go Build Multi-Platform / build (arm, windows) (push) Successful in 31s
Go Build Multi-Platform / build (arm64, darwin) (push) Successful in 29s
Go Build Multi-Platform / build (arm64, freebsd) (push) Successful in 41s
Go Build Multi-Platform / build (arm64, linux) (push) Successful in 33s
Go Build Multi-Platform / build (arm64, windows) (push) Successful in 34s
Go Build Multi-Platform / Create Release (push) Has been skipped
Go Test Multi-Platform / Test (ubuntu-latest, arm64) (push) Successful in 1m8s
Go Revive Lint / lint (push) Successful in 1m9s
Go Test Multi-Platform / Test (ubuntu-latest, amd64) (push) Successful in 1m44s
Run Gosec / tests (push) Successful in 1m14s
This commit is contained in:
@@ -34,18 +34,27 @@ jobs:
|
||||
with:
|
||||
go-version: '1.25'
|
||||
|
||||
- name: Setup Task
|
||||
uses: https://git.quad4.io/actions/setup-task@0ab1b2a65bc55236a3bc64cde78f80e20e8885c2 # v1
|
||||
with:
|
||||
version: '3.46.3'
|
||||
|
||||
- name: Build
|
||||
id: build_step
|
||||
env:
|
||||
GOOS: ${{ matrix.goos }}
|
||||
GOARCH: ${{ matrix.goarch }}
|
||||
GOARM: ${{ matrix.goarch == 'arm' && '6' || '' }}
|
||||
CGO_ENABLED: '0'
|
||||
run: |
|
||||
task build
|
||||
output_name="reticulum-go-${GOOS}-${GOARCH}"
|
||||
if [ "$GOOS" = "windows" ]; then
|
||||
output_name+=".exe"
|
||||
mv bin/reticulum-go "${output_name}"
|
||||
else
|
||||
mv bin/reticulum-go "${output_name}"
|
||||
fi
|
||||
go build -v -ldflags="-s -w" -o "${output_name}" ./cmd/reticulum-go
|
||||
echo "Built: ${output_name}"
|
||||
|
||||
- name: Calculate SHA256 Checksum
|
||||
@@ -54,36 +63,7 @@ jobs:
|
||||
if [ "${{ matrix.goos }}" = "windows" ]; then
|
||||
output_name+=".exe"
|
||||
fi
|
||||
sha256sum "${output_name}" > "${output_name}.sha256"
|
||||
echo "Calculated SHA256 for ${output_name}"
|
||||
|
||||
- name: Generate SBOM
|
||||
uses: https://git.quad4.io/actions/gh-gomod-generate-sbom@efc74245d6802c8cefd925620515442756c70d8f # v2
|
||||
with:
|
||||
version: v1
|
||||
args: mod -licenses -json -output bom.json
|
||||
|
||||
- name: Install Trivy
|
||||
run: |
|
||||
wget https://git.quad4.io/Quad4-Extra/assets/raw/commit/90fdcea1bb71d91df2de6ff2e3897f278413f300/bin/trivy_0.68.2_Linux-64bit.deb
|
||||
sudo dpkg -i trivy_0.68.2_Linux-64bit.deb
|
||||
|
||||
- name: Generate SPDX SBOM with Trivy
|
||||
run: |
|
||||
trivy fs --format spdx-json --output dependency-results.sbom.json . || exit 1
|
||||
if [ ! -f dependency-results.sbom.json ]; then
|
||||
echo "Error: SBOM file was not created!"
|
||||
exit 1
|
||||
fi
|
||||
echo "SBOM file created successfully:"
|
||||
ls -lh dependency-results.sbom.json
|
||||
|
||||
- name: Verify SBOM files exist
|
||||
run: |
|
||||
echo "Checking for SBOM files..."
|
||||
ls -lh bom.json dependency-results.sbom.json || true
|
||||
test -f bom.json && echo "bom.json exists" || echo "bom.json missing"
|
||||
test -f dependency-results.sbom.json && echo "dependency-results.sbom.json exists" || echo "dependency-results.sbom.json missing"
|
||||
BINARY_PATH="${output_name}" task checksum
|
||||
|
||||
- name: Upload Artifact
|
||||
uses: https://git.quad4.io/actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5 # v3.2.1
|
||||
@@ -91,16 +71,6 @@ jobs:
|
||||
name: reticulum-go-${{ matrix.goos }}-${{ matrix.goarch }}
|
||||
path: |
|
||||
reticulum-go-${{ matrix.goos }}-${{ matrix.goarch }}*
|
||||
bom.json
|
||||
dependency-results.sbom.json
|
||||
|
||||
- name: Upload SPDX SBOM Artifact
|
||||
if: matrix.goos == 'linux' && matrix.goarch == 'amd64'
|
||||
uses: https://git.quad4.io/actions/upload-artifact@ff15f0306b3f739f7b6fd43fb5d26cd321bd4de5 # v3.2.1
|
||||
with:
|
||||
name: spdx-sbom
|
||||
path: dependency-results.sbom.json
|
||||
retention-days: 90
|
||||
|
||||
release:
|
||||
name: Create Release
|
||||
|
||||
Reference in New Issue
Block a user