diff --git a/.github/workflows/nightly.yml b/.github/workflows/nightly.yml new file mode 100644 index 0000000..80b2156 --- /dev/null +++ b/.github/workflows/nightly.yml @@ -0,0 +1,11 @@ +name: Nightly Build + +on: + workflow_dispatch: + schedule: + - cron: '0 10 * * *' # Run every day at 10AM UTC + +jobs: + call-nightly-workflow: + uses: lacework/oss-actions/.github/workflows/tf-nightly.yml@main + secrets: inherit diff --git a/.github/workflows/prepare-release.yml b/.github/workflows/prepare-release.yml new file mode 100644 index 0000000..223515a --- /dev/null +++ b/.github/workflows/prepare-release.yml @@ -0,0 +1,8 @@ +name: Prepare Release + +on: workflow_dispatch + +jobs: + call-nightly-workflow: + uses: lacework/oss-actions/.github/workflows/tf-prepare-release.yml@main + secrets: inherit diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml new file mode 100644 index 0000000..1dfdd5d --- /dev/null +++ b/.github/workflows/release.yml @@ -0,0 +1,12 @@ +name: Release + +on: + workflow_dispatch: + push: + tags: + - 'v*' + +jobs: + call-nightly-workflow: + uses: lacework/oss-actions/.github/workflows/tf-release.yml@main + secrets: inherit diff --git a/.github/workflows/test-compat-pr-comment.yml b/.github/workflows/test-compat-pr-comment.yml new file mode 100644 index 0000000..5202b0e --- /dev/null +++ b/.github/workflows/test-compat-pr-comment.yml @@ -0,0 +1,29 @@ +name: Test Compatibility On Comment + +on: + workflow_dispatch: + issue_comment: + types: [created, edited] + +jobs: + check-commenting-user: + runs-on: ubuntu-latest + if: ${{ contains(github.event.comment.html_url, '/pull/') && contains(github.event.comment.body, 'make it so') }} + steps: + - uses: actions/github-script@v7 + with: + script: | + const creator = context.payload.sender.login + const result = await github.rest.teams.getMembershipForUserInOrg({ + org: context.repo.owner, + team_slug: 'growth-team', + username: creator + }) + if (result.state != "active" ) { + core.setFailed('Commenter is not a member of the growth team.') + } + + call-test-compat: + needs: check-commenting-user + uses: lacework/oss-actions/.github/workflows/tf-test-compatibility.yml@main + secrets: inherit diff --git a/.github/workflows/test-compatibility.yml b/.github/workflows/test-compatibility.yml new file mode 100644 index 0000000..ae40a30 --- /dev/null +++ b/.github/workflows/test-compatibility.yml @@ -0,0 +1,13 @@ +name: Test Compatibility + +on: + workflow_dispatch: + pull_request: + push: + branches: + - main + +jobs: + call-test-compat: + uses: lacework/oss-actions/.github/workflows/tf-test-compatibility.yml@main + secrets: inherit diff --git a/.github/workflows/verify-release.yml b/.github/workflows/verify-release.yml new file mode 100644 index 0000000..e390fcc --- /dev/null +++ b/.github/workflows/verify-release.yml @@ -0,0 +1,12 @@ +name: Verify Release + +on: + workflow_dispatch: + push: + branches: + - release + +jobs: + call-nightly-workflow: + uses: lacework/oss-actions/.github/workflows/tf-verify.yml@main + secrets: inherit diff --git a/scripts/ci_tests.sh b/scripts/ci_tests.sh index 09a7080..c5975c5 100755 --- a/scripts/ci_tests.sh +++ b/scripts/ci_tests.sh @@ -15,7 +15,7 @@ TEST_CASES=( examples/complete-cloudtrail examples/complete-cloudtrail-access-logs-with-object-level-logging examples/cloudtrail-existing-kms-key - examples/consolidated-cloudtrail-multiple-lacework-tenants + examples/consolidated-cloudtrail-multiple-lacework-tenants examples/consolidated-cloudtrail examples/existing-cloudtrail-end-to-end-encryption examples/existing-cloudtrail-s3-encryption