Arnike/duty-teller
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 14 Wiki Activity

Add CI and Docker workflows for automated testing and deployment
Some checks failed
CI / lint-and-test (push) Failing after 26s
Details

Browse Source 
- Introduced a CI workflow in `ci.yml` to automate linting, testing, and security checks using Ruff and Bandit.
- Added a Docker build and release workflow in `docker-build.yml` to automate image building and pushing to the Gitea Container Registry upon version tag pushes.
- Configured steps for checking out code, setting up Python, installing dependencies, and generating release notes.
- Enhanced project automation and deployment processes, improving overall development efficiency.
This commit is contained in:
Nikolay Tatarinov
2026-02-18 13:13:25 +03:00
parent ec58739852
commit 68c4f42a21
2 changed files with 129 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
.gitea/workflows/ci.yml Normal file
View File

@@ -0,0 +1,41 @@
name: CI
on:
push:
branches: [main, develop]
pull_request:
branches: [main, develop]
jobs:
lint-and-test:
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: https://gitea.com/actions/checkout@v4
- name: Set up Python 3.12
uses: https://gitea.com/actions/setup-python@v5
with:
python-version: "3.12"
- name: Install dependencies
run: |
pip install -r requirements.txt -r requirements-dev.txt
- name: Install lint and security tools
run: |
pip install ruff bandit
- name: Lint with Ruff
run: |
ruff check src tests
- name: Run tests
env:
PYTHONPATH: src
run: |
pytest tests/ -v
- name: Security check with Bandit
run: |
bandit -r src -ll

88
.gitea/workflows/docker-build.yml Normal file
View File

@@ -0,0 +1,88 @@
name: Docker Build and Release
on:
push:
tags: ["v*"]
permissions:
contents: read
packages: write
jobs:
build-and-push:
runs-on: ubuntu-latest
outputs:
tag: ${{ steps.meta.outputs.tag }}
steps:
- name: Checkout
uses: https://gitea.com/actions/checkout@v4
with:
fetch-depth: 0
- name: Set image meta
id: meta
run: |
TAG="${GITHUB_REF#refs/tags/}"
echo "tag=$TAG" >> $GITHUB_OUTPUT
- name: Set registry host
id: registry
run: |
host="${GITHUB_SERVER_URL#https://}"
host="${host#http://}"
echo "host=$host" >> $GITHUB_OUTPUT
- name: Check REGISTRY_TOKEN
run: |
if [ -z "${{ secrets.REGISTRY_TOKEN }}" ]; then
echo "::error::REGISTRY_TOKEN secret is not set. Add it in repository or organization settings."
exit 1
fi
- name: Login to Gitea Container Registry
run: |
host="${{ steps.registry.outputs.host }}"
echo "${{ secrets.REGISTRY_TOKEN }}" | docker login "$host" -u "${{ github.actor }}" --password-stdin
- name: Build and push Docker image
run: |
host="${{ steps.registry.outputs.host }}"
repository=$(echo "${{ github.repository }}" | tr '[:upper:]' '[:lower:]')
IMAGE="$host/$repository"
TAG="${{ steps.meta.outputs.tag }}"
docker build -t "$IMAGE:$TAG" -t "$IMAGE:latest" .
docker push "$IMAGE:$TAG"
docker push "$IMAGE:latest"
release:
runs-on: ubuntu-latest
needs: build-and-push
permissions:
contents: write
steps:
- name: Checkout
uses: https://gitea.com/actions/checkout@v4
with:
fetch-depth: 0
- name: Generate release notes
id: notes
run: |
TAG="${{ needs.build-and-push.outputs.tag }}"
PREV=""
for t in $(git tag -l --sort=-v:refname "v*"); do
[ "$t" = "$TAG" ] && continue
PREV="$t"
break
done
if [ -n "$PREV" ]; then
git log "$PREV..$TAG" --pretty=format:"- %s (%h)" --no-merges > release_notes.md
else
(git log -1 --pretty=format:"- %s (%h)" 2>/dev/null || echo "Initial release") > release_notes.md
fi
- name: Create Release
uses: https://gitea.com/actions/gitea-release-action@v1
with:
tag_name: ${{ needs.build-and-push.outputs.tag }}
body_path: release_notes.md