Skip to content
Snippets Groups Projects
Select Git revision
  • main default protected
  • renovate/nixos-nix-2.x
  • renovate/axum-monorepo
  • morguldir/rocky
  • github/fork/JadedBlueEyes/images
  • github/fork/JadedBlueEyes/federation-allow-list
  • renovate/itertools-0.x
  • renovate/sentry-rust-monorepo
  • renovate/lock-file-maintenance
  • renovate/axum-client-ip-0.x
  • renovate/tokio-tracing-monorepo
  • renovate/opentelemetry-rust-monorepo
  • renovate/hyper-util-0.x
  • renovate/nix-community-cache-nix-action-5.x
  • morguldir/snake-sync
  • strawberry/maybe-knocking
  • strawberry/pr-660-presence-fix
  • github/fork/JadedBlueEyes/dockerhub-description
  • strawberry/morgs-snake-sync-jason-main
  • github/fork/bumpsoo/main
  • v0.5.0-rc2
  • v0.5.0-rc
  • v0.4.7-rc
  • v0.4.6
  • v0.4.6-rc
  • v0.4.5
  • v0.4.5-rc
  • v0.4.4
  • v0.4.3
  • v0.4.2
  • v0.4.1
  • v0.3.4
  • v0.3.3
  • v0.3.2
  • v0.3.1
  • v0.3.0
36 results
Blame Permalink
ci.yml 17.79 KiB 
name: CI and Artifacts

on:
    pull_request:
    push:
        # documentation workflow deals with this or is not relevant for this workflow
        paths-ignore:
          - '*.md'
          - 'conduwuit-example.toml'
          - 'book.toml'
          - '.gitlab-ci.yml'
          - '.gitignore'
          - 'renovate.json'
          - 'docs/**'
          - 'debian/**'
          - 'docker/**'
        branches:
            - main
        tags:
          - '*'
    # Allows you to run this workflow manually from the Actions tab
    workflow_dispatch:

concurrency:
    group: ${{ github.head_ref || github.ref_name }}
    cancel-in-progress: true

env:
    # Required to make some things output color
    TERM: ansi
    # Publishing to my nix binary cache
    ATTIC_TOKEN: ${{ secrets.ATTIC_TOKEN }}
    # Just in case incremental is still being set to true, speeds up CI
    CARGO_INCREMENTAL: 0
    # Custom nix binary cache if fork is being used
    ATTIC_ENDPOINT: ${{ vars.ATTIC_ENDPOINT }}
    ATTIC_PUBLIC_KEY: ${{ vars.ATTIC_PUBLIC_KEY }}
    # Use the all-features devshell instead of default, to ensure that features
    # match between nix and cargo
    DIRENV_DEVSHELL: all-features
    # Get error output from nix that we can actually use
    NIX_CONFIG: show-trace = true

permissions:
    packages: write
    contents: read

jobs:
    tests:
        name: Test
        runs-on: ubuntu-latest
        steps:
            - name: Sync repository
              uses: actions/checkout@v4

            - name: Tag comparison check
              if: startsWith(github.ref, 'refs/tags/v')
              run: |
                  # Tag mismatch with latest repo tag check to prevent potential downgrades
                  LATEST_TAG=$(git describe --tags `git rev-list --tags --max-count=1`)

                  if [ $LATEST_TAG != ${{ github.ref_name }} ]; then
                    echo '# WARNING: Attempting to run this workflow for a tag that is not the latest repo tag. Aborting.'
                    echo '# WARNING: Attempting to run this workflow for a tag that is not the latest repo tag. Aborting.' >> $GITHUB_STEP_SUMMARY
                    exit 1
                  fi

            - name: Install Nix
              uses: DeterminateSystems/nix-installer-action@main