-
Notifications
You must be signed in to change notification settings - Fork 30
139 lines (116 loc) · 3.92 KB
/
build.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
name: Prisma Cloud CLI Build Workflow
on:
push:
pull_request:
branches:
- main
jobs:
qa:
runs-on: ubuntu-latest
strategy:
matrix:
python-version: ["3.8", "3.9", "3.10"]
steps:
- uses: actions/checkout@v2
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v2
with:
python-version: ${{ matrix.python-version }}
- name: Install dependencies
run: |
python -m pip install --upgrade pip
if [ -f requirements.txt ]; then pip install -r requirements.txt; fi
- name: Install pylint
run: |
pip install pylint
- name: Analysing the code with pylint
run: |
pylint $(git ls-files '*.py')
- name: Install flake8
run: |
pip install flake8
- name: Analysing the code with flake8
run: |
# stop the build if there are Python syntax errors or undefined names
flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
# execute overall flake8 scan
flake8 . --count --statistics
test:
needs: qa
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Set up Python
uses: actions/setup-python@v2
with:
python-version: "3.8"
- name: Install dependencies
run: |
python -m pip install --upgrade pip
pip install build
pip install pylint
pip install -r requirements.txt
- name: Build package
run: python -m build
- name: Install package
run: pip install .
- name: Accept Support Message
run: |
mkdir ~/.prismacloud
touch ~/.prismacloud/.community_supported_accepted
- name: Check connectivity
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment check
- name: Check CWPP version # (previously exit code 1, should pass now)
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment check
- name: Check usage
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment usage > /dev/null
- name: Check defenders summary
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment defenders summary > /dev/null
- name: Check login events
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment logs audit --type login > /dev/null
- name: Check tags
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment tags > /dev/null
- name: Check cloud names
env:
PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
run: |
pc --config environment cloud names > /dev/null
# - name: Check alert list
# env:
# PC_URL: ${{ secrets.PC_SAAS_API_ENDPOINT }}
# PC_IDENTITY: ${{ secrets.PC_ACCESS_KEY }}
# PC_SECRET: ${{ secrets.PC_SECRET_KEY }}
# run: |
# pc --config environment alert list --unit hour --amount 1 > /dev/null