DockerCLI/.github/workflows/test.yml

name: test

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

on:
  workflow_dispatch:
  push:
    branches:
      - 'master'
      - '[0-9]+.[0-9]+'
    tags:
      - 'v*'
  pull_request:

jobs:
  ctn:
    runs-on: ubuntu-20.04
    steps:
      -
        name: Checkout
        uses: actions/checkout@v3
      -
        name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      -
        name: Test
        uses: docker/bake-action@v3
        with:
          targets: test-coverage
      -
        name: Send to Codecov
        uses: codecov/codecov-action@v3
        with:
          file: ./build/coverage/coverage.txt

  host:
    runs-on: ${{ matrix.os }}
    env:
      GOPATH: ${{ github.workspace }}
      GOBIN: ${{ github.workspace }}/bin
      GO111MODULE: auto
    strategy:
      fail-fast: false
      matrix:
        os:
          - macos-11
#          - windows-2022 # FIXME: some tests are failing on the Windows runner, as well as on Appveyor since June 24, 2018: https://ci.appveyor.com/project/docker/cli/history
    steps:
      -
        name: Prepare git
        if: matrix.os == 'windows-latest'
        run: |
          git config --system core.autocrlf false
          git config --system core.eol lf
      -
        name: Checkout
        uses: actions/checkout@v3
        with:
          path: ${{ env.GOPATH }}/src/github.com/docker/cli
      -
        name: Set up Go
        uses: actions/setup-go@v4
        with:
          go-version: 1.20.4
      -
        name: Test
        run: |
          go test -coverprofile=/tmp/coverage.txt $(go list ./... | grep -vE '/vendor/|/e2e/')
          go tool cover -func=/tmp/coverage.txt
        working-directory: ${{ env.GOPATH }}/src/github.com/docker/cli
        shell: bash
      -
        name: Send to Codecov
        uses: codecov/codecov-action@v3
        with:
          file: /tmp/coverage.txt
          working-directory: ${{ env.GOPATH }}/src/github.com/docker/cli
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`name: test`

ci: add concurrency check Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-18 14:03:28 -04:00			`concurrency:`
			`group: ${{ github.workflow }}-${{ github.ref }}`
			`cancel-in-progress: true`

ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`on:`
			`workflow_dispatch:`
			`push:`
			`branches:`
			`- 'master'`
ci: fix branch filter pattern Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2023-02-09 12:03:11 -05:00			`- '[0-9]+.[0-9]+'`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`tags:`
			`- 'v*'`
			`pull_request:`

			`jobs:`
			`ctn:`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`runs-on: ubuntu-20.04`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`steps:`
			`-`
			`name: Checkout`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`uses: actions/checkout@v3`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`-`
			`name: Set up Docker Buildx`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`uses: docker/setup-buildx-action@v2`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`-`
			`name: Test`
build(deps): bump docker/bake-action from 2 to 3 Bumps [docker/bake-action](https://github.com/docker/bake-action) from 2 to 3. - [Release notes](https://github.com/docker/bake-action/releases) - [Commits](https://github.com/docker/bake-action/compare/v2...v3) --- updated-dependencies: - dependency-name: docker/bake-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> 2023-04-18 05:03:03 -04:00			`uses: docker/bake-action@v3`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`with:`
			`targets: test-coverage`
			`-`
			`name: Send to Codecov`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`uses: codecov/codecov-action@v3`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`with:`
			`file: ./build/coverage/coverage.txt`

			`host:`
			`runs-on: ${{ matrix.os }}`
			`env:`
			`GOPATH: ${{ github.workspace }}`
			`GOBIN: ${{ github.workspace }}/bin`
			`GO111MODULE: auto`
			`strategy:`
			`fail-fast: false`
			`matrix:`
			`os:`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`- macos-11`
			`# - windows-2022 # FIXME: some tests are failing on the Windows runner, as well as on Appveyor since June 24, 2018: https://ci.appveyor.com/project/docker/cli/history`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`steps:`
			`-`
			`name: Prepare git`
			`if: matrix.os == 'windows-latest'`
			`run: \|`
			`git config --system core.autocrlf false`
			`git config --system core.eol lf`
			`-`
			`name: Checkout`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`uses: actions/checkout@v3`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`with:`
			`path: ${{ env.GOPATH }}/src/github.com/docker/cli`
			`-`
			`name: Set up Go`
build(deps): bump actions/setup-go from 3 to 4 Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> 2023-03-16 05:07:41 -04:00			`uses: actions/setup-go@v4`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`with:`
update go to go1.20.4 go1.20.4 (released 2023-05-02) includes three security fixes to the html/template package, as well as bug fixes to the compiler, the runtime, and the crypto/subtle, crypto/tls, net/http, and syscall packages. See the Go 1.20.4 milestone on our issue tracker for details: https://github.com/golang/go/issues?q=milestone%3AGo1.20.4+label%3ACherryPickApproved release notes: https://go.dev/doc/devel/release#go1.20.4 full diff: https://github.com/golang/go/compare/go1.20.3...go1.20.4 from the announcement: > These minor releases include 3 security fixes following the security policy: > > - html/template: improper sanitization of CSS values > > Angle brackets (`<>`) were not considered dangerous characters when inserted > into CSS contexts. Templates containing multiple actions separated by a '/' > character could result in unexpectedly closing the CSS context and allowing > for injection of unexpected HMTL, if executed with untrusted input. > > Thanks to Juho Nurminen of Mattermost for reporting this issue. > > This is CVE-2023-24539 and Go issue https://go.dev/issue/59720. > > - html/template: improper handling of JavaScript whitespace > > Not all valid JavaScript whitespace characters were considered to be > whitespace. Templates containing whitespace characters outside of the character > set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain > actions may not be properly sanitized during execution. > > Thanks to Juho Nurminen of Mattermost for reporting this issue. > > This is CVE-2023-24540 and Go issue https://go.dev/issue/59721. > > - html/template: improper handling of empty HTML attributes > > Templates containing actions in unquoted HTML attributes (e.g. "attr={{.}}") > executed with empty input could result in output that would have unexpected > results when parsed due to HTML normalization rules. This may allow injection > of arbitrary attributes into tags. > > Thanks to Juho Nurminen of Mattermost for reporting this issue. > > This is CVE-2023-29400 and Go issue https://go.dev/issue/59722. Signed-off-by: Sebastiaan van Stijn <github@gone.nl> 2023-05-03 14:59:02 -04:00			`go-version: 1.20.4`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`-`
			`name: Test`
			`run: \|`
			`go test -coverprofile=/tmp/coverage.txt $(go list ./... \| grep -vE '/vendor/\|/e2e/')`
			`go tool cover -func=/tmp/coverage.txt`
			`working-directory: ${{ env.GOPATH }}/src/github.com/docker/cli`
			`shell: bash`
			`-`
			`name: Send to Codecov`
ci: update github actions Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2022-08-20 09:55:20 -04:00			`uses: codecov/codecov-action@v3`
ci: github actions test workflow Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com> 2021-12-07 08:50:16 -05:00			`with:`
			`file: /tmp/coverage.txt`
			`working-directory: ${{ env.GOPATH }}/src/github.com/docker/cli`