Update github/codeql-action action to v3.29.7 #232

Workflow file for this run

	name: ci

	on:
	push:
	branches: [ main ]
	paths-ignore:
	- '**.md'
	pull_request:
	branches: [ main ]
	workflow_dispatch:

	env:
	DOTNET_CLI_TELEMETRY_OPTOUT: true
	DOTNET_NOLOGO: true
	DOTNET_SYSTEM_CONSOLE_ALLOW_ANSI_COLOR_REDIRECTION: 1
	NUGET_XMLDOC_MODE: skip
	TERM: xterm

	permissions: {}

	jobs:
	build-test:
	name: ${{ matrix.os-name }}
	runs-on: ${{ matrix.runner }}

	outputs:
	dotnet-sdk-version: ${{ steps.setup-dotnet.outputs.dotnet-version }}

	permissions:
	attestations: write
	contents: write
	id-token: write

	strategy:
	fail-fast: false
	matrix:
	include:
	- os-name: macos
	runner: macos-latest
	- os-name: linux
	runner: ubuntu-latest
	- os-name: windows
	runner: windows-latest

	steps:

	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	fetch-depth: 0
	filter: 'tree:0'
	show-progress: false

	- name: Setup .NET SDK
	uses: actions/setup-dotnet@67a3573c9a986a3f9c594539f4ab511d57bb3ce9 # v4.3.1
	id: setup-dotnet

	- name: Build
	run: dotnet build --configuration Release

	- name: Test
	run: dotnet test --configuration Release --logger:"GitHubActions;report-warnings=false"

	- name: Generate SBOM
	uses: anchore/sbom-action@7b36ad622f042cab6f59a75c2ac24ccb256e9b45 # v0.20.4
	if: runner.os == 'Windows'
	with:
	artifact-name: grafana-opentelemetry-dotnet.spdx.json
	output-file: ./artifacts/grafana-opentelemetry-dotnet.spdx.json
	path: ./artifacts/bin
	upload-release-assets: true

	- name: Attest artifacts
	uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
	if: \|
	runner.os == 'Windows' &&
	github.event.repository.fork == false &&
	(github.ref_name == github.event.repository.default_branch \|\| startsWith(github.ref, 'refs/tags/'))
	with:
	subject-path: \|
	./artifacts/bin/Grafana.OpenTelemetry/release/Grafana.OpenTelemetry*.dll
	./artifacts/package/release/*

	- name: Publish NuGet packages
	uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
	with:
	name: packages-${{ matrix.os-name }}
	path: ./artifacts/package/release
	if-no-files-found: error

	validate-packages:
	needs: build-test
	runs-on: ubuntu-latest
	steps:

	- name: Download packages
	uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
	with:
	name: packages-windows

	- name: Setup .NET SDK
	uses: actions/setup-dotnet@67a3573c9a986a3f9c594539f4ab511d57bb3ce9 # v4.3.1
	with:
	dotnet-version: ${{ needs.build-test.outputs.dotnet-sdk-version }}

	- name: Validate NuGet packages
	shell: pwsh
	run: \|
	dotnet tool install --global dotnet-validate --version 0.0.1-preview.304 --allow-roll-forward
	$packages = Get-ChildItem -Filter "*.nupkg" \| ForEach-Object { $_.FullName }
	$invalidPackages = 0
	foreach ($package in $packages) {
	dotnet validate package local $package
	if ($LASTEXITCODE -ne 0) {
	$invalidPackages++
	}
	}
	if ($invalidPackages -gt 0) {
	Write-Output "::error::$invalidPackages NuGet package(s) failed validation."
	exit 1
	}

	publish-nuget:
	needs: [ build-test, validate-packages ]
	runs-on: ubuntu-latest
	if: \|
	github.event.repository.fork == false &&
	startsWith(github.ref, 'refs/tags/')

	environment:
	name: NuGet.org
	url: https://www.nuget.org/profiles/Grafana

	permissions:
	contents: read
	id-token: write

	steps:

	- name: Download packages
	uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
	with:
	name: packages-windows

	- name: Setup .NET SDK
	uses: actions/setup-dotnet@67a3573c9a986a3f9c594539f4ab511d57bb3ce9 # v4.3.1
	with:
	dotnet-version: ${{ needs.build-test.outputs.dotnet-sdk-version }}

	- uses: grafana/shared-workflows/actions/get-vault-secrets@9f37f656e063f0ad0b0bfc38d49894b57d363936 # get-vault-secrets/v1.2.1
	id: get-token
	with:
	export_env: false
	repo_secrets: \|
	token=nuget:token

	- name: Push NuGet packages to NuGet.org
	shell: bash
	env:
	API_KEY: ${{ fromJSON(steps.get-token.outputs.secrets).token }}
	SOURCE: 'https://api.nuget.org/v3/index.json'
	run: dotnet nuget push "*.nupkg" --api-key "${API_KEY}" --skip-duplicate --source "${SOURCE}"

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update github/codeql-action action to v3.29.7 #232

Workflow file

Update github/codeql-action action to v3.29.7 #232

Uh oh!

Jobs

Run details

Workflow file for this run