refactor(bazel): complete removal of old @npm// and rules_nodejs usag… #430
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Performance Tracking | |
| on: | |
| push: | |
| branches: | |
| - main | |
| permissions: | |
| contents: 'read' | |
| id-token: 'write' | |
| defaults: | |
| run: | |
| shell: bash | |
| jobs: | |
| list: | |
| timeout-minutes: 5 | |
| runs-on: ubuntu-latest | |
| outputs: | |
| workflows: ${{ steps.workflows.outputs.workflows }} | |
| steps: | |
| # Because the checkout and setup node action is contained in the dev-infra repo, we must | |
| # checkout the repo to be able to run the action we have created. Other repos will skip | |
| # this step. | |
| - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - uses: ./github-actions/npm/checkout-and-setup-node | |
| - uses: ./github-actions/bazel/setup | |
| - run: yarn install --immutable | |
| - id: workflows | |
| run: echo "workflows=$(yarn ng-dev perf workflows --list)" >> "$GITHUB_OUTPUT" | |
| workflow: | |
| timeout-minutes: 30 | |
| runs-on: ubuntu-latest | |
| needs: list | |
| strategy: | |
| matrix: | |
| workflow: ${{ fromJSON(needs.list.outputs.workflows) }} | |
| steps: | |
| # Because the checkout and setup node action is contained in the dev-infra repo, we must | |
| # checkout the repo to be able to run the action we have created. Other repos will skip | |
| # this step. | |
| - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - uses: ./github-actions/npm/checkout-and-setup-node | |
| - uses: ./github-actions/bazel/setup | |
| - run: yarn install --immutable | |
| # We utilize the google-github-actions/auth action to allow us to get an active credential using workflow | |
| # identity federation. This allows us to request short lived credentials on demand, rather than storing | |
| # credentials in secrets long term. More information can be found at: | |
| # https://docs.github.com/en/actions/security-for-github-actions/security-hardening-your-deployments/configuring-openid-connect-in-google-cloud-platform | |
| - uses: 'google-github-actions/auth@v2' | |
| with: | |
| project_id: 'internal-200822' | |
| workload_identity_provider: 'projects/823469418460/locations/global/workloadIdentityPools/measurables-tracking/providers/angular' | |
| service_account: '[email protected]' | |
| - run: yarn ng-dev perf workflows --name ${{ matrix.workflow }} --commit-sha ${{github.sha}} |