Bump the build-dependencies group across 1 directory with 6 updates #31
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# SPDX-License-Identifier: Apache-2.0 | |
# Copyright Red Hat Inc. and Hibernate Authors | |
# The main CI of Hibernate Validator is https://ci.hibernate.org/job/hibernate-validator/. | |
# However, Hibernate Validator builds run on GitHub actions regularly | |
# to build on Windows | |
# and check that both the Linux and Windows workflows still work | |
# and can be used in GitHub forks. | |
# See https://docs.github.com/en/actions | |
# for more information about GitHub actions. | |
name: GH Actions CI | |
on: | |
push: | |
branches: | |
# Pattern order matters: the last matching inclusion/exclusion wins | |
- '**' | |
- '!4.*' | |
- '!5.*' | |
- '!6.*' | |
- '!7.*' | |
- '!8.*' | |
- '!dependabot/**' | |
tags: | |
- '**' | |
pull_request: | |
types: [opened, synchronize, reopened, ready_for_review] | |
branches: | |
# Pattern order matters: the last matching inclusion/exclusion wins | |
- '**' | |
- '!4.*' | |
- '!5.*' | |
- '!6.*' | |
- '!7.*' | |
- '!8.*' | |
# Ignore dependabot PRs that are not just about build dependencies; | |
# we'll reject such dependant PRs and send a PR ourselves. | |
- '!dependabot/**' | |
- 'dependabot/maven/build-dependencies-**' | |
concurrency: | |
group: "workflow = ${{ github.workflow }}, ref = ${{ github.event.ref }}, pr = ${{ github.event.pull_request.id }}" | |
cancel-in-progress: ${{ github.event_name == 'pull_request' || github.repository != 'hibernate/hibernate-validator' }} | |
defaults: | |
run: | |
shell: bash | |
env: | |
MAVEN_ARGS: "-e -B --settings .github/mvn-settings.xml --fail-at-end -Pci-build --no-transfer-progress" | |
TESTCONTAINERS_REUSE_ENABLE: true | |
jobs: | |
build: | |
name: ${{matrix.os.name}} | |
runs-on: ${{ matrix.os.runs-on }} | |
strategy: | |
fail-fast: false | |
matrix: | |
os: | |
- { | |
name: "Linux JDK 17", | |
runs-on: 'ubuntu-latest', | |
java: { | |
version: 17 | |
}, | |
maven: { | |
args: '' | |
} | |
} | |
- { | |
name: "Windows JDK 17", | |
runs-on: 'windows-latest', | |
java: { | |
version: 17 | |
}, | |
maven: { | |
args: '' | |
} | |
} | |
steps: | |
- name: Support longpaths on Windows | |
if: "startsWith(matrix.os.runs-on, 'windows')" | |
run: git config --global core.longpaths true | |
- uses: actions/checkout@v4 | |
with: | |
persist-credentials: false | |
- name: Set up Java ${{ matrix.os.java.version }} | |
uses: actions/setup-java@v4 | |
with: | |
java-version: ${{ matrix.os.java.version }} | |
distribution: temurin | |
# https://github.com/actions/cache/blob/main/examples.md#java---maven | |
- name: Cache local Maven repository | |
uses: actions/cache@v4 | |
with: | |
path: ~/.m2/repository | |
# use a different key than workflows running in trusted mode | |
key: ${{ github.event_name == 'push' && 'trusted' || 'untrusted' }}-${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }} | |
restore-keys: | | |
${{ github.event_name == 'push' && 'trusted' || 'untrusted' }}-${{ runner.os }}-maven- | |
- name: Set up Maven | |
run: ./mvnw -v | |
- name: Build code and run tests and basic checks (Standalone) | |
run: | | |
./mvnw $MAVEN_ARGS ${{ matrix.os.maven.args }} clean install \ | |
-Pjqassistant -Pdist -Prelocation | |
env: | |
DEVELOCITY_ACCESS_KEY: "${{ secrets.DEVELOCITY_ACCESS_KEY || '' }}" | |
# For jobs running on 'pull_request', upload build scan data. | |
# The actual publishing must be done in a separate job (see ci-report.yml). | |
# We don't write to the remote cache as that would be unsafe. | |
- name: Upload GitHub Actions artifact for the Develocity build scan | |
uses: actions/upload-artifact@v4 | |
if: "${{ github.event_name == 'pull_request' && !cancelled() }}" | |
with: | |
name: build-scan-data-standalone-${{ matrix.os.name }} | |
path: ~/.m2/.develocity/build-scan-data | |
- name: Run TCK tests in container mode | |
run: | | |
./mvnw $MAVEN_ARGS ${{ matrix.os.maven.args }} clean verify \ | |
-Pjqassistant -Pskip-checks \ | |
-am -pl :hibernate-validator-tck-runner \ | |
-Dincontainer -Dincontainer-prepared | |
env: | |
DEVELOCITY_ACCESS_KEY: "${{ secrets.DEVELOCITY_ACCESS_KEY || '' }}" | |
- name: Upload GitHub Actions artifact for the Develocity build scan | |
uses: actions/upload-artifact@v4 | |
if: "${{ github.event_name == 'pull_request' && !cancelled() }}" | |
with: | |
name: build-scan-data-incontainer-${{ matrix.os.name }} | |
path: ~/.m2/.develocity/build-scan-data | |
- name: Omit produced artifacts from build cache | |
run: rm -r ~/.m2/repository/org/hibernate/validator |