Add GitHub Pipelines (#1)

Jinderamarak · web-flow · commit 6a1e86b54382 · 2025-02-26T00:50:39.000+01:00
* ci: create workflows

* temp: test workflows

* ci: fix miri and reporter

* ci: fmt and clippy is already installed

* ci: fix outdated syntax

* ci: add caching to service app build

* ci: fix results permissions

* ci: fix outpus

* ci: dont reinstall cargo-expand

* ci: workdir instead of cd

* ci: bring back workflow conditions

* ci: move gitlab pipeline
diff --git a/.github/workflows/cargo-deny.yml b/.github/workflows/cargo-deny.yml
@@ -0,0 +1,23 @@
+name: Cargo Dependencies
+on:
+  pull_request:
+    branches: [$default-branch]
+    paths:
+      - "**/Cargo.lock"
+      - "**/Cargo.toml"
+      - "**/deny.toml"
+
+env:
+  CARGO_TERM_COLOR: always
+
+jobs:
+  cargo-deny:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Check Cargo Dependencies
+        uses: EmbarkStudios/cargo-deny-action@v2
+        with:
+          command: check
+          manifest-path: safe-stage/Cargo.toml
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,53 @@
+name: Build and Release Service Application
+
+on:
+  push:
+    tags:
+      - "v*.*.*"
+
+jobs:
+  service-app-release:
+    runs-on: windows-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Rust
+        run: rustup default stable
+
+      - name: Add cargo-expand
+        run: cargo install cargo-expand
+
+      - name: Build Safe Stage
+        run: |
+          cargo run -p bindings
+          cargo build --release -F ffi
+        working-directory: ./safe-stage
+
+      - name: Publish Service Application
+        run: |
+          dotnet publish
+        working-directory: ./service-app
+
+      - name: Archive Publish Directory
+        run: Compress-Archive -Path service-app/ServiceApp/bin/Release/net8.0-windows/publish -DestinationPath service-app_publish.zip
+
+      - name: Create GitHub Release
+        id: create_release
+        uses: actions/create-release@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          tag_name: ${{ github.ref_name }}
+          release_name: Release ${{ github.ref_name }}
+          draft: true
+          prerelease: false
+
+      - name: Upload Release Assets
+        uses: actions/upload-release-asset@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          upload_url: ${{ steps.create_release.outputs.upload_url }}
+          asset_path: service-app_publish.zip
+          asset_name: service-app_publish.zip
+          asset_content_type: application/zip
diff --git a/.github/workflows/safe-stage-miri.yml b/.github/workflows/safe-stage-miri.yml
@@ -0,0 +1,42 @@
+name: Check Safe Stage Safety
+on:
+  push:
+    branches: [$default-branch]
+    paths:
+      - "safe-stage/src/*"
+  pull_request:
+    branches: [$default-branch]
+    paths:
+      - "safe-stage/src/*"
+
+env:
+  CARGO_TERM_COLOR: always
+
+jobs:
+  safe-stage-miri:
+    runs-on: ubuntu-latest
+    permissions:
+      checks: write
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Install Rust with miri
+        uses: taiki-e/github-actions/install-rust@main
+        with:
+          toolchain: nightly
+          component: miri
+
+      - name: Add nextest
+        uses: taiki-e/install-action@nextest
+
+      - name: Run Tests with Miri
+        run: cargo miri nextest run --locked --config-file .nextest.toml -F ffi
+        working-directory: ./safe-stage
+
+      - name: Finalize Test Report
+        uses: dorny/test-reporter@v1
+        if: success() || failure()
+        with:
+          name: Results for miri tests
+          reporter: java-junit
+          path: safe-stage/target/nextest/default-miri/junit-report.xml
diff --git a/.github/workflows/safe-stage.yml b/.github/workflows/safe-stage.yml
@@ -0,0 +1,102 @@
+name: Check Safe Stage
+on:
+  push:
+    branches: [$default-branch]
+    paths:
+      - "safe-stage/*"
+  pull_request:
+    branches: [$default-branch]
+    paths:
+      - "safe-stage/*"
+
+env:
+  CARGO_TERM_COLOR: always
+
+jobs:
+  safe-stage-build:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        FEATURES: ["--all", "-F ffi"]
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/cache@v4
+        with:
+          path: |
+            ~/.cargo/bin/
+            ~/.cargo/registry/index/
+            ~/.cargo/registry/cache/
+            ~/.cargo/git/db/
+            ./safe-stage/target/
+          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
+
+      - name: Check Formatting
+        run: cargo fmt --all --check
+        working-directory: ./safe-stage
+
+      - name: Build with Features "${{ matrix.FEATURES }}"
+        run: cargo build --locked ${{ matrix.FEATURES }}
+        working-directory: ./safe-stage
+
+      - name: Run clippy with Features "${{ matrix.FEATURES }}"
+        run: cargo clippy --locked ${{ matrix.FEATURES }} -- -D warnings
+        working-directory: ./safe-stage
+
+  safe-stage-test:
+    runs-on: ubuntu-latest
+    permissions:
+      checks: write
+    strategy:
+      matrix:
+        PROFILE_FEATURES:
+          [
+            "ci-default;--all",
+            "ci-features-serde;--all -F serde",
+            "ci-features-linear;-p collisions --no-default-features -F rayon-bvh-linear",
+            "ci-features-ffi;-F ffi",
+          ]
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/cache@v4
+        with:
+          path: |
+            ~/.cargo/bin/
+            ~/.cargo/registry/index/
+            ~/.cargo/registry/cache/
+            ~/.cargo/git/db/
+            ./safe-stage/target/
+          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
+
+      - name: Add nextest
+        uses: taiki-e/install-action@nextest
+
+      - name: Extract Profile and Features
+        id: extraction
+        run: |
+          PROFILE_FEATURES="${{ matrix.PROFILE_FEATURES }}"
+
+          # Split the string at the semicolon
+          IFS=';' read -r PROFILE FEATURES <<< "$PROFILE_FEATURES"
+
+          echo "PROFILE=$PROFILE"
+          echo "FEATURES=$FEATURES"
+
+          # Set the outputs for use in subsequent steps
+          echo "profile=$PROFILE" >> "$GITHUB_OUTPUT"
+          echo "features=$FEATURES" >> "$GITHUB_OUTPUT"
+
+      - name: Run Documentation Tests with Profile "${{ steps.extraction.outputs.profile }}"
+        run: cargo test --locked --doc ${{ steps.extraction.outputs.features }}
+        working-directory: ./safe-stage
+
+      - name: Run Tests with Profile "${{ steps.extraction.outputs.profile }}"
+        run: cargo nextest run --locked --config-file .nextest.toml -P ${{ steps.extraction.outputs.profile }} ${{ steps.extraction.outputs.features }}
+        working-directory: ./safe-stage
+
+      - name: Finalize Test Report
+        uses: dorny/test-reporter@v1
+        if: success() || failure()
+        with:
+          name: Results for ${{ steps.extraction.outputs.profile }}
+          reporter: java-junit
+          path: safe-stage/target/nextest/${{ steps.extraction.outputs.profile }}/junit-report.xml
diff --git a/.github/workflows/service-app.yml b/.github/workflows/service-app.yml
@@ -0,0 +1,43 @@
+name: Build Service Application
+on:
+  push:
+    branches: [$default-branch]
+  pull_request:
+    branches: [$default-branch]
+
+env:
+  CARGO_TERM_COLOR: always
+
+jobs:
+  service-app-build:
+    runs-on: windows-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/cache@v4
+        id: cache-cargo
+        with:
+          path: |
+            ~/.cargo/bin/
+            ~/.cargo/registry/index/
+            ~/.cargo/registry/cache/
+            ~/.cargo/git/db/
+            ./safe-stage/target/
+          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
+
+      - name: Set up Rust
+        run: rustup default stable
+
+      - name: Add cargo-expand
+        if: steps.cache-cargo.outputs.cache-hit != 'true'
+        run: cargo install cargo-expand
+
+      - name: Build Safe Stage
+        run: |
+          cargo run -p bindings
+          cargo build --release -F ffi
+        working-directory: ./safe-stage
+
+      - name: Build Service Application
+        run: |
+          dotnet build
+        working-directory: ./service-app
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
@@ -12,9 +12,9 @@ stages:
   - test
 
 include:
-  - ci/templates.yml
-  - ci/bindings.yml
-  - ci/caching.yml
-  - ci/repo.yml
-  - ci/safe-stage.yml
-  - ci/service-app.yml
+  - .gitlab/templates.yml
+  - .gitlab/bindings.yml
+  - .gitlab/caching.yml
+  - .gitlab/repo.yml
+  - .gitlab/safe-stage.yml
+  - .gitlab/service-app.yml
diff --git a/.gitlab/bindings.yml b/.gitlab/bindings.yml
@@ -1,5 +1,5 @@
 include:
-  - ci/templates.yml
+  - .gitlab/templates.yml
 
 .rust-template-cache: &rust-template-cache
   key:
diff --git a/.gitlab/caching.yml b/.gitlab/caching.yml
@@ -1,5 +1,5 @@
 include:
-  - ci/templates.yml
+  - .gitlab/templates.yml
 
 cargo:cache:
   extends: .rust-template
diff --git a/.gitlab/repo.yml b/.gitlab/repo.yml
@@ -1,5 +1,5 @@
 include:
-  - ci/templates.yml
+  - .gitlab/templates.yml
 
 repo:check:cargo:
   extends: .rust-template
diff --git a/.gitlab/safe-stage.yml b/.gitlab/safe-stage.yml
@@ -1,5 +1,5 @@
 include:
-  - ci/templates.yml
+  - .gitlab/templates.yml
 
 .safe-stage-template:
   extends: .rust-template
diff --git a/.gitlab/service-app.yml b/.gitlab/service-app.yml
diff --git a/.gitlab/templates.yml b/.gitlab/templates.yml
