-
Notifications
You must be signed in to change notification settings - Fork 6
97 lines (96 loc) · 3.64 KB
/
run-updatecli.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
name: updatecli
on:
pull_request:
workflow_dispatch:
schedule:
# Run once a week
- cron: '0 2 * * 1' # Every monday at 2am UTC
permissions:
id-token: write
contents: write
pull-requests: write
jobs:
updatecli:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v3
- name: 'Az CLI login'
uses: azure/login@v1
with:
client-id: c1e0233b-c18f-4a04-b458-bd60fbecb7cf # DTS SDS AKS version checker
tenant-id: 531ff96d-0ae9-462a-8d2d-bec7c0b42082 # HMCTS.NET
allow-no-subscriptions: true
- name: Install Updatecli in the runner
uses: updatecli/updatecli-action@v2
with:
version: v0.49.2
- uses: tibdex/github-app-token@v1
id: generate-token
with:
app_id: ${{ secrets.DEPENDENCY_UPDATER_APP_ID }}
private_key: ${{ secrets.DEPENDENCY_UPDATER_APP_PRIVATE_KEY }}
- name: Install YQ
uses: mikefarah/yq@master
- name: Run Updatecli in Dry Run mode
run: |
yq -r '.environments | to_entries | map(select(.value.enabled == true)) | .[].key' updatecli/values.github-action.yaml | while read i
do
CURRENT_ITER_ENVIRONMENT="$i" updatecli diff --config ./updatecli/updatecli.d --values ./updatecli/values.github-action.yaml
done
env:
UPDATECLI_GITHUB_TOKEN: ${{ steps.generate-token.outputs.token }}
- name: Run Updatecli in Apply mode
if: github.ref == 'refs/heads/master'
run: |
yq -r '.environments | to_entries | map(select(.value.enabled == true)) | .[].key' updatecli/values.github-action.yaml | while read i
do
CURRENT_ITER_ENVIRONMENT="$i" updatecli apply --config ./updatecli/updatecli.d --values ./updatecli/values.github-action.yaml
done
env:
UPDATECLI_GITHUB_TOKEN: ${{ steps.generate-token.outputs.token }}
### Pluto Run if there is a label ' Pluto-required'
pluto-run:
runs-on: ubuntu-latest
if: contains(github.event.pull_request.labels.*.name, 'pluto-required')
steps:
- name: Checkout
uses: actions/checkout@v3
- name: 'Az CLI login'
uses: azure/login@v1
with:
client-id: b430ef1e-4e79-4e92-a152-8e5b5bc195d4 # DTS CFT AKS version checker
tenant-id: 531ff96d-0ae9-462a-8d2d-bec7c0b42082 # HMCTS.NET
allow-no-subscriptions: true
- uses: tibdex/github-app-token@v1
id: pluto-token
with:
app_id: ${{ secrets.DEPENDENCY_UPDATER_APP_ID }}
private_key: ${{ secrets.DEPENDENCY_UPDATER_APP_PRIVATE_KEY }}
- name: Install Pluto
uses: FairwindsOps/pluto/github-action@master
- name: Run Pluto
run: |
yq -r '.environments | to_entries | map(select(.value.enabled == true)) | .[].key' updatecli/values.github-action.yaml | while read i
do
CURRENT_ITER_ENVIRONMENT="$i" bash ./updatecli/get-deprecation.sh >> output.txt
done
env:
UPDATECLI_GITHUB_TOKEN: ${{ steps.pluto-token.outputs.token }}
- name: cat output
uses: pCYSl5EDgo/cat@master
id: coverage
with:
path: ./output.txt
- name: Find Pull Request
uses: juliangruber/find-pull-request-action@v1
id: find-pull-request
with:
branch: updatecli_aks_version_${environment}
- name: Comment PR
uses: thollander/actions-comment-pull-request@v2
with:
message: |
# Pluto Report
${{steps.coverage.outputs.text}}
pr_number: ${{steps.find-pull-request.outputs.number}}