yuanbiao
/
emqx
1
0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ci: give coveralls permission to post comments to PRs

This commit is contained in:
Ivan Dyachkov 2024-05-06 19:00:39 +02:00
parent 4ab5740952
commit 67c17b2ac9
2 changed files with 25 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
.github/workflows/_pr_entrypoint.yaml vendored
View File

@ -14,9 +14,6 @@ on:
env: env:
IS_CI: "yes" IS_CI: "yes"
permissions:
contents: read
jobs: jobs:
sanity-checks: sanity-checks:
runs-on: ubuntu-22.04 runs-on: ubuntu-22.04
@ -32,6 +29,9 @@ jobs:
otp_vsn: "26.2.1-2" otp_vsn: "26.2.1-2"
elixir_vsn: "1.15.7" elixir_vsn: "1.15.7"
permissions:
contents: read
steps: steps:
- uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
with: with:
@ -127,6 +127,9 @@ jobs:
- emqx - emqx
- emqx-enterprise - emqx-enterprise
permissions:
contents: read
steps: steps:
- uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
with: with:

29
.github/workflows/run_test_cases.yaml vendored
View File

@ -20,9 +20,6 @@ on:
required: true required: true
type: string type: string
permissions:
contents: read
env: env:
IS_CI: "yes" IS_CI: "yes"
@ -40,6 +37,9 @@ jobs:
shell: bash shell: bash
container: "ghcr.io/emqx/emqx-builder/${{ matrix.builder }}:${{ matrix.elixir }}-${{ matrix.otp }}-ubuntu22.04" container: "ghcr.io/emqx/emqx-builder/${{ matrix.builder }}:${{ matrix.elixir }}-${{ matrix.otp }}-ubuntu22.04"
permissions:
contents: read
steps: steps:
- uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4 - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
with: with:
@ -82,6 +82,9 @@ jobs:
run: run:
shell: bash shell: bash
permissions:
contents: read
steps: steps:
- uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4 - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
with: with:
@ -137,6 +140,9 @@ jobs:
run: run:
shell: bash shell: bash
permissions:
contents: read
steps: steps:
- uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4 - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
with: with:
@ -195,6 +201,10 @@ jobs:
matrix: matrix:
profile: profile:
- emqx-enterprise - emqx-enterprise
permissions:
contents: read
steps: steps:
- uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4 - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
with: with:
@ -232,11 +242,10 @@ jobs:
if: github.repository == 'emqx/emqx' if: github.repository == 'emqx/emqx'
needs: make_cover needs: make_cover
runs-on: ubuntu-22.04 runs-on: ubuntu-22.04
permissions:
pull-requests: write
steps: steps:
- name: Coveralls Finished - name: Coveralls finished
env: uses: coverallsapp/github-action@3dfc5567390f6fa9267c0ee9c251e4c8c3f18949 # v2.2.3
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with:
run: | parallel-finished: true
curl -v -k https://coveralls.io/webhook \
--header "Content-Type: application/json" \
--data "{\"repo_name\":\"$GITHUB_REPOSITORY\",\"repo_token\":\"$GITHUB_TOKEN\",\"payload\":{\"build_num\":$GITHUB_RUN_ID,\"status\":\"done\"}}" || true