You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
flux2/.github/workflows
Sunny 94c9b13fbd tests/int: Add separate resource cleanup step
Introduce a destroy-only mode in the test runner to run terraform
destroy for the respective cloud provider configurations. This can be
used to destroy cloud resources without going through the whole
provision-test process.

Add a new step in github actions workflow to run the test binary in
destoy-only mode at the very end irrespective of the result of the
previous steps. This ensures that the infrastructure is always
destroyed, even if the CI job is cancelled.

Signed-off-by: Sunny <darkowlzz@protonmail.com>
1 year ago
..
README.md ci: Refactor GitHub workflows 2 years ago
action.yaml build(deps): bump the ci group with 1 update 1 year ago
backport.yaml build(deps): bump the ci group with 3 updates 1 year ago
e2e-arm64.yaml Run conformance tests for Kubernetes v1.29.0 1 year ago
e2e-azure.yaml tests/int: Add separate resource cleanup step 1 year ago
e2e-bootstrap.yaml build(deps): bump the ci group with 4 updates 1 year ago
e2e-gcp.yaml tests/int: Add separate resource cleanup step 1 year ago
e2e.yaml build(deps): bump the ci group with 4 updates 1 year ago
ossf.yaml build(deps): bump the ci group with 3 updates 1 year ago
release.yaml build(deps): bump the ci group with 2 updates 1 year ago
scan.yaml build(deps): bump the ci group with 4 updates 1 year ago
sync-labels.yaml build(deps): bump the ci group with 1 update 1 year ago
update.yaml build(deps): bump the ci group with 4 updates 1 year ago

README.md

Flux GitHub Workflows

End-to-end Testing

The e2e workflows run a series of tests to ensure that the Flux CLI and the GitOps Toolkit controllers work well all together. The tests are written in Go, Bash, Make and Terraform.

Workflow Jobs Runner Role
e2e.yaml e2e-amd64-kubernetes GitHub Ubuntu integration testing with Kubernetes Kind
e2e-arm64.yaml e2e-arm64-kubernetes Equinix Ubuntu integration testing with Kubernetes Kind
e2e-bootstrap.yaml e2e-boostrap-github GitHub Ubuntu integration testing with GitHub API
e2e-azure.yaml e2e-amd64-aks GitHub Ubuntu integration testing with Azure API
scan.yaml scan-fossa GitHub Ubuntu license scanning
scan.yaml scan-snyk GitHub Ubuntu vulnerability scanning
scan.yaml scan-codeql GitHub Ubuntu vulnerability scanning

Components Update

The components update workflow scans the GitOps Toolkit controller repositories for new releases, amd when it finds a new controller version, the workflow performs the following steps:

  • Updates the controller API package version in go.mod.
  • Patches the controller CRDs version in the manifests/crds overlay.
  • Patches the controller Deployment version in manifests/bases overlay.
  • Opens a Pull Request against the main branch.
  • Triggers the e2e test suite to run for the opened PR.
Workflow Jobs Runner Role
update.yaml update-components GitHub Ubuntu update the GitOps Toolkit APIs and controllers

Release

The release workflow is triggered by a semver Git tag and performs the following steps:

  • Generates the Flux install manifests (YAML).
  • Generates the OpenAPI validation schemas for the GitOps Toolkit CRDs (JSON).
  • Generates a Software Bill of Materials (SPDX JSON).
  • Builds the Flux CLI binaries and the multi-arch container images.
  • Pushes the container images to GitHub Container Registry and DockerHub.
  • Signs the sbom, the binaries checksum and the container images with Cosign and GitHub OIDC.
  • Uploads the sbom, binaries, checksums and install manifests to GitHub Releases.
  • Pushes the install manifests as OCI artifacts to GitHub Container Registry and DockerHub.
  • Signs the OCI artifacts with Cosign and GitHub OIDC.
Workflow Jobs Runner Role
release.yaml release-flux-cli GitHub Ubuntu build, push and sign the CLI release artifacts
release.yaml release-flux-manifests GitHub Ubuntu build, push and sign the Flux install manifests