CI #543

Workflow file for this run

	# Redis Stream Client Go - CI/CD Pipeline
	# Comprehensive testing, linting, security scanning, and quality checks

	name: CI

	on:
	push:
	branches: [ "main" ]
	pull_request:
	branches: [ "main" ]
	schedule:
	# Run security scans daily at 2 AM UTC
	- cron: '0 2 * * *'

	# Declare default permissions as read only.
	permissions: read-all


	jobs:
	# Code quality and linting
	lint:
	name: Lint and Format Check
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Cache Go modules
	uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
	with:
	path: ~/go/pkg/mod
	key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
	restore-keys: \|
	${{ runner.os }}-go-

	- name: Download dependencies
	run: go mod download

	- name: Verify dependencies
	run: go mod verify

	- name: Check formatting
	run: \|
	if [ "$(gofmt -s -l . \| wc -l)" -gt 0 ]; then
	echo "Code is not formatted properly:"
	gofmt -s -l .
	exit 1
	fi

	- name: Run go vet
	run: go vet ./...

	- name: Run golangci-lint
	uses: golangci/golangci-lint-action@55c2c1448f86e01eaae002a5a3a9624417608d84 # v6.5.2
	with:
	install-mode: goinstall
	version: latest
	args: --timeout=5m

	# Security scanning
	security:
	name: Security Scan
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Run Go Security Check
	run: \|
	echo "Security scanning with go vet..."
	go vet ./...
	echo "Note: Advanced security scanning with gosec can be added when needed"

	# Dependency vulnerability scanning
	dependency-scan:
	name: Dependency Vulnerability Scan
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Run govulncheck
	uses: golang/govulncheck-action@b625fbe08f3bccbe446d94fbf87fcc875a4f50ee # v1.0.4
	with:
	go-package: ./...

	# Build and test
	test:
	name: Test
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Cache Go modules
	uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
	with:
	path: ~/go/pkg/mod
	key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
	restore-keys: \|
	${{ runner.os }}-go-

	- name: Download dependencies
	run: go mod download

	- name: Set environment variables
	run: echo "POD_NAME=test-consumer-${{ github.run_id }}" >> $GITHUB_ENV

	- name: Build
	run: go build -v ./...

	- name: Run tests
	run: go test -v -race -coverprofile=coverage.out ./...

	- name: Generate coverage report
	run: go tool cover -html=coverage.out -o coverage.html

	- name: Upload coverage to Codecov
	uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238 # v4.6.0
	with:
	file: ./coverage.out
	flags: unittests
	name: codecov-umbrella

	- name: Upload coverage artifacts
	uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
	with:
	name: coverage-report
	path: \|
	coverage.out
	coverage.html

	# Benchmark tests
	benchmark:
	name: Benchmark Tests
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Cache Go modules
	uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
	with:
	path: ~/go/pkg/mod
	key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
	restore-keys: \|
	${{ runner.os }}-go-

	- name: Download dependencies
	run: go mod download

	- name: Set environment variables
	run: echo "POD_NAME=benchmark-consumer-${{ github.run_id }}" >> $GITHUB_ENV

	- name: Run benchmarks
	run: go test -bench=. -benchmem ./... \| tee benchmark.txt

	- name: Upload benchmark results
	uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4.6.1
	with:
	name: benchmark-results
	path: benchmark.txt

	# Build verification
	build:
	name: Build Verification
	runs-on: ubuntu-latest
	needs: [lint, security, dependency-scan]
	permissions:
	contents: read
	steps:
	- name: Checkout code
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Set up Go
	uses: actions/setup-go@40f1582b2485089dde7abd97c1529aa768e1baff # v5.4.0
	with:
	go-version-file: go.mod

	- name: Cache Go modules
	uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
	with:
	path: ~/go/pkg/mod
	key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
	restore-keys: \|
	${{ runner.os }}-go-

	- name: Download dependencies
	run: go mod download

	- name: Build for multiple architectures
	run: \|
	GOOS=linux GOARCH=amd64 go build -v ./...
	GOOS=linux GOARCH=arm64 go build -v ./...
	GOOS=windows GOARCH=amd64 go build -v ./...
	GOOS=darwin GOARCH=amd64 go build -v ./...
	GOOS=darwin GOARCH=arm64 go build -v ./...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CI #543

Workflow file

CI #543

Uh oh!

Workflow file for this run