Adjust update_coverage GH Action to work with Merge Queue (#4806)
* Try merging with the queue * Provide github token * Fix syntax * Get GITHUB_TOKEN from vault * Add the PR label * Wait for the new PR to merge * Fix working dir * Inline the script * Checkout master * Install python for slack notifications * Fix logging * install rspec-tools * Log actual PR-merge status * Final adjustments * Set check interval to 20 seconds * Test failure * Fix pr close command * Revert "Test failure" This reverts commit c3c2b845feaa047a62ef19fb34c805bf3ef7a23f. * Update .github/workflows/update_coverage.yml --------- Co-authored-by: Fred Tingaud <95592999+frederic-tingaud-sonarsource@users.noreply.github.com>
This commit is contained in:
Arseniy Zaostrovnykh
GitHub
parent
a8ad04a813
commit
f18135cc24
82
.github/workflows/update_coverage.yml
vendored
82
.github/workflows/update_coverage.yml
vendored
@ -10,7 +10,6 @@ jobs:
|
|||||||
permissions:
|
permissions:
|
||||||
id-token: write # required by SonarSource/vault-action-wrapper
|
id-token: write # required by SonarSource/vault-action-wrapper
|
||||||
contents: write
|
contents: write
|
||||||
checks: read # required by fountainhead/action-wait-for-check
|
|
||||||
actions: write # required by andymckay/cancel-action
|
actions: write # required by andymckay/cancel-action
|
||||||
env:
|
env:
|
||||||
TMP_BRANCH: temporary/coverage_update
|
TMP_BRANCH: temporary/coverage_update
|
||||||
@ -30,6 +29,7 @@ jobs:
|
|||||||
fetch-depth: 0
|
fetch-depth: 0
|
||||||
path: 'rspec'
|
path: 'rspec'
|
||||||
token: ${{ fromJSON(steps.secrets.outputs.vault).coverage_github_token }}
|
token: ${{ fromJSON(steps.secrets.outputs.vault).coverage_github_token }}
|
||||||
|
ref: 'master'
|
||||||
|
|
||||||
- uses: actions/setup-python@v4
|
- uses: actions/setup-python@v4
|
||||||
with:
|
with:
|
||||||
@ -73,40 +73,62 @@ jobs:
|
|||||||
git commit -m "update coverage information"
|
git commit -m "update coverage information"
|
||||||
git push --force-with-lease origin $TMP_BRANCH
|
git push --force-with-lease origin $TMP_BRANCH
|
||||||
|
|
||||||
- name: 'Wait for CI to succeed'
|
- name: 'Create a PR'
|
||||||
if: steps.gen-coverage.outputs.new_coverage == 'true'
|
id: create-github-pr
|
||||||
uses: fountainhead/action-wait-for-check@v1.0.0
|
working-directory: 'rspec'
|
||||||
id: wait-for-build
|
env:
|
||||||
with:
|
GH_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).coverage_github_token }}
|
||||||
token: ${{ secrets.GITHUB_TOKEN }}
|
run: |
|
||||||
checkName: all_required_checks
|
PR_URL=$(gh pr create --head ${{ env.TMP_BRANCH }} --title "Update coverage information" --body "" --label "rspec system")
|
||||||
ref: ${{ env.TMP_BRANCH }}
|
gh pr merge $PR_URL
|
||||||
timeoutSeconds: 2400
|
|
||||||
intervalSeconds: 30
|
|
||||||
|
|
||||||
- name: 'Push the updated coverage to master'
|
- name: 'Wait until the PR is merged'
|
||||||
if: |
|
id: wait-for-pr-to-merge
|
||||||
steps.gen-coverage.outputs.new_coverage == 'true' &&
|
env:
|
||||||
steps.wait-for-build.outputs.conclusion == 'success' &&
|
GH_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).coverage_github_token }}
|
||||||
(github.event_name != 'workflow_dispatch' || github.ref == format('refs/heads/{0}', github.event.repository.default_branch))
|
|
||||||
working-directory: 'rspec'
|
working-directory: 'rspec'
|
||||||
run: |
|
run: |
|
||||||
git checkout master
|
set -ueo pipefail
|
||||||
git merge $TMP_BRANCH
|
|
||||||
git push origin master
|
|
||||||
|
|
||||||
- name: 'Delete the temporary branch'
|
# Implicitly referring to the PR corresponding to current branch
|
||||||
if: always() && steps.create-temp-branch.conclusion == 'success'
|
|
||||||
uses: dawidd6/action-delete-branch@v3
|
|
||||||
with:
|
|
||||||
github_token: ${{ secrets.GITHUB_TOKEN }}
|
|
||||||
branches: ${{ env.TMP_BRANCH}}
|
|
||||||
|
|
||||||
- name: 'Fail if the change breaks CI'
|
# Set timeout (20 minutes in seconds)
|
||||||
if: |
|
TIMEOUT=1200 # seconds
|
||||||
steps.gen-coverage.outputs.new_coverage == 'true' &&
|
START_TIME=$(date +%s)
|
||||||
steps.wait-for-build.outputs.conclusion != 'success'
|
INTERVAL=20 # seconds
|
||||||
run: exit 1
|
|
||||||
|
while true; do
|
||||||
|
# Check if the PR is merged
|
||||||
|
PR_STATE=$(gh pr view --json state,mergedAt -q '.state')
|
||||||
|
MERGED_AT=$(gh pr view --json state,mergedAt -q '.mergedAt')
|
||||||
|
|
||||||
|
if [[ "${PR_STATE}" == "MERGED" ]]; then
|
||||||
|
echo "PR merged at: $MERGED_AT"
|
||||||
|
exit 0
|
||||||
|
fi
|
||||||
|
echo "PR state is ${PR_STATE}"
|
||||||
|
|
||||||
|
# Check for timeout
|
||||||
|
CURRENT_TIME=$(date +%s)
|
||||||
|
ELAPSED_TIME=$((CURRENT_TIME - START_TIME))
|
||||||
|
|
||||||
|
if [[ "${ELAPSED_TIME}" -gt "${TIMEOUT}" ]]; then
|
||||||
|
echo "Timeout waiting for PR to merge."
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
|
||||||
|
# Wait for $INTERVAL seconds before checking again
|
||||||
|
sleep "$INTERVAL"
|
||||||
|
done
|
||||||
|
|
||||||
|
- name: 'Close PR and delete branch upon failure to merge'
|
||||||
|
if: ${{ failure() }}
|
||||||
|
env:
|
||||||
|
GH_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).coverage_github_token }}
|
||||||
|
working-directory: 'rspec'
|
||||||
|
run: |
|
||||||
|
PR_URL=$(gh pr view --json url --jq '.url')
|
||||||
|
gh pr close "$PR_URL" --delete-branch
|
||||||
|
|
||||||
- name: 'Notify on slack about the failure'
|
- name: 'Notify on slack about the failure'
|
||||||
if: ${{ failure() }}
|
if: ${{ failure() }}
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user