-
Notifications
You must be signed in to change notification settings - Fork 0
175 lines (156 loc) · 4.38 KB
/
test.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
name: Action Tests
on:
workflow_dispatch:
pull_request:
branches:
- main
push:
branches:
- main
jobs:
test-version:
name: Test version
runs-on: ${{ matrix.os }}-latest
strategy:
fail-fast: false
matrix:
os: [macos, ubuntu, windows]
version: [latest, v0.7.1, 9de7397da9f1c00dad5213519366002376b8d5ed]
permissions:
contents: read
steps:
- name: Checkout repo
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Setup regctl
id: regctl
uses: ./
with:
regctl-release: ${{ matrix.version }}
cache: false
- name: Test regctl
shell: bash
env:
MATRIX_VERSION: ${{ matrix.version }}
VERSION: ${{ steps.regctl.outputs.version }}
run: |
if ! which regctl ; then
echo "::error::regctl not found in PATH"
exit 1
fi
echo "EXPECTED=$MATRIX_VERSION"
echo "VERSION=$VERSION"
[ "$MATRIX_VERSION" != "latest" ] && VERSION=$MATRIX_VERSION
if ! regctl version | grep "$VERSION" ; then
echo "::error::regctl $VERSION does not appear to be installed"
exit 1
fi
test-bad-version:
name: Test bad version
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
version:
- v0.0.0
- foobar
- 7e1e47d
- ffffffffffffffffffffffffffffffffffffffff
permissions:
contents: read
steps:
- name: Checkout repo
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Setup regctl
id: regctl
uses: ./
continue-on-error: true
with:
regctl-release: ${{ matrix.version }}
- name: Test slsa-verifier
shell: bash
env:
FAILURE: ${{ steps.regctl.outcome == 'failure' }}
run: |
if which regctl ; then
echo "::error::regctl was found in PATH"
exit 1
fi
if [ "$FAILURE" != "true" ]; then
echo "::error::Expected Action to fail but didn't"
exit 1
fi
test-invalid-version:
name: Test invalid version
runs-on: ${{ matrix.os }}-latest
strategy:
fail-fast: false
matrix:
os: [macos, windows]
version:
- v0.0.1
permissions:
contents: read
steps:
- name: Checkout repo
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Setup regctl
id: regctl
uses: ./
continue-on-error: true
with:
regctl-release: ${{ matrix.version }}
- name: Test slsa-verifier
shell: bash
env:
FAILURE: ${{ steps.regctl.outcome == 'failure' }}
run: |
if which regctl ; then
echo "::error::regctl was found in PATH"
exit 1
fi
if [ "$FAILURE" != "true" ]; then
echo "::error::Expected Action to fail but didn't"
exit 1
fi
test-cache:
name: Test cache & cosign
runs-on: ${{ matrix.os }}-latest
strategy:
fail-fast: false
matrix:
os: [macos, ubuntu, windows]
cache: [true, false]
verify: [true, false]
permissions:
contents: read
steps:
- name: Checkout repo
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Install Cosign
if: matrix.verify
uses: sigstore/cosign-installer@dc72c7d5c4d10cd6bcb8cf6e3fd625a9e5e537da # v3.7.0
- name: Setup regctl (cache)
if: matrix.cache == true
uses: ./
- name: Setup regctl
id: regctl
uses: ./
with:
cache: ${{ matrix.cache }}
verify: ${{ matrix.verify }}
- name: Test regctl
shell: bash
env:
CACHE_HIT: ${{ steps.regctl.outputs.cache-hit }}
MATRIX_CACHE: ${{ matrix.cache }}
run: |
if ! which regctl ; then
echo "::error::regctl not found in PATH"
exit 1
fi
echo "EXPECTED=$MATRIX_CACHE"
echo "CACHE_HIT=$CACHE_HIT"
if [ "$MATRIX_CACHE" != "$CACHE_HIT" ]; then
echo "::error::Cache hit is not what was expected"
exit 1
fi