chore(deps): update ansible/ansible-lint action to v26 #495

Workflow file for this run

	name: Main CI

	on:
	pull_request:
	branches:
	- "main"
	push:
	branches:
	- "main"

	permissions:
	contents: write
	pull-requests: write

	jobs:
	all-status-check:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	needs:
	- yaml-lint
	- shell-lint
	- action-lint
	- ansible-lint
	- terraform-validate
	- sops-secrets-check
	- kics-check
	if: ${{ always() }}
	steps:
	- uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
	- name: Check all-status-check
	run: \|
	diff \
	<(yq ".jobs \| del(.all-status-check) \| keys.[]" .github/workflows/ci.yml) \
	<(yq ".jobs.all-status-check.needs.[]" .github/workflows/ci.yml)
	- name: Fail if any needed job failed
	env:
	JOBS: ${{ toJson(needs) }}
	run: \|
	for result in $(jq -r '.[].result' <<<"$JOBS"); do
	if [[ ! "$result" =~ ^(success\|skipped)$ ]]; then
	exit 1
	fi
	done

	yaml-lint:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- uses: actions/checkout@v6
	- uses: reviewdog/action-yamllint@f01d8a48fd8d89f89895499fca2cff09f9e9e8c0 # v1.21.0
	with:
	level: warning
	yamllint_flags: "-c .yamllint ."
	fail_on_error: true

	shell-lint:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- uses: actions/checkout@v6
	- uses: reviewdog/action-shellcheck@4c07458293ac342d477251099501a718ae5ef86e # v1.32.0
	with:
	level: warning
	fail_on_error: true
	- uses: reviewdog/action-shfmt@d8f080930b9be5847b4f97e9f4122b81a82aaeac # v1.0.4
	with:
	level: warning
	fail_on_error: true

	action-lint:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- uses: actions/checkout@v6
	- uses: reviewdog/action-actionlint@83e4ed25b168066ad8f62f5afbb29ebd8641d982 # v1.69.1
	with:
	level: warning
	fail_on_error: true

	ansible-lint:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- uses: actions/checkout@v6
	- name: Run ansible-lint
	uses: ansible/ansible-lint@a9f8a4e21be85461fdc3d0f492a89e365bf4fd72 # v26.1.0
	with:
	working_directory: "scripts/ansible"
	requirements_file: "requirements.yml"

	terraform-validate:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	defaults:
	run:
	working-directory: terraform
	steps:
	- uses: actions/checkout@v6
	- name: Setup Terraform
	uses: hashicorp/setup-terraform@b9cd54a3c349d3f38e8881555d616ced269862dd # v3.1.2
	- name: Install tflint
	run: \|
	curl -s https://raw.githubusercontent.com/terraform-linters/tflint/master/install_linux.sh \| bash
	- name: Terraform Format Check
	run: terraform fmt -check -recursive
	- name: Terraform Init
	run: terraform init -backend=false
	- name: Terraform Validate
	run: terraform validate
	- name: Run tflint
	run: tflint --init && tflint

	sops-secrets-check:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- name: Checkout code
	uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
	- name: Run sops secrets check
	run: make sops-ci

	kics-check:
	runs-on: ubuntu-latest
	timeout-minutes: 10
	steps:
	- uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6
	- uses: checkmarx/kics-github-action@00def9108246ec656aea725db2167522d26a99d2 # v2.1.19
	with:
	path: .

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update ansible/ansible-lint action to v26 #495

Workflow file

chore(deps): update ansible/ansible-lint action to v26 #495

Uh oh!

Workflow file for this run