Add IamPrincipal base resource (#2187) #4280
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# Note: this workflow is automatically generated via the `create_pr` script in the same folder. | |
# Please do not change the file, but the script! | |
name: Check PR (Plugin gcp) | |
on: | |
push: | |
tags: | |
- "*.*.*" | |
branches: | |
- main | |
pull_request: | |
paths: | |
- 'fixlib/**' | |
- 'plugins/gcp/**' | |
- '.github/**' | |
- 'requirements-all.txt' | |
jobs: | |
gcp: | |
name: "gcp" | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Setup Python | |
uses: actions/setup-python@v5 | |
with: | |
python-version: '3.11' | |
architecture: 'x64' | |
- name: Restore dependency cache | |
uses: actions/cache@v4 | |
with: | |
path: ~/.cache/pip | |
key: ${{runner.os}}-pip-${{hashFiles('./plugins/gcp/pyproject.toml')}} | |
restore-keys: | | |
${{runner.os}}-pip- | |
- name: Install Dependencies | |
run: | | |
python -m pip install --upgrade pip | |
pip install --upgrade --editable fixlib/ | |
pip install tox wheel flake8 build | |
- name: Run tests | |
working-directory: ./plugins/gcp | |
run: tox | |
- name: Archive code coverage results | |
uses: actions/upload-artifact@v4 | |
with: | |
name: plugin-gcp-code-coverage-report | |
path: ./plugins/gcp/htmlcov/ | |
- name: Build a binary wheel and a source tarball | |
working-directory: ./plugins/gcp | |
run: >- | |
python -m | |
build | |
--sdist | |
--wheel | |
--outdir dist/ | |
- name: Publish distribution to PyPI | |
if: github.ref_type == 'tag' | |
uses: pypa/gh-action-pypi-publish@release/v1 | |
with: | |
user: __token__ | |
password: ${{ secrets.PYPI_FIXINVENTORY_PLUGIN_GCP }} | |
packages_dir: ./plugins/gcp/dist/ | |
- name: Upload GCP policies | |
if: github.event_name != 'pull_request' | |
working-directory: ./plugins/gcp | |
run: | | |
pip install --upgrade --editable . | |
pip install --upgrade --editable ./tools/gcppolicygen | |
export GITHUB_REF="${{ github.ref }}" | |
export GITHUB_REF_TYPE="${{ github.ref_type }}" | |
export GITHUB_EVENT_NAME="${{ github.event_name }}" | |
export API_TOKEN="${{ secrets.API_TOKEN }}" | |
export SPACES_KEY="${{ secrets.SPACES_KEY }}" | |
export SPACES_SECRET="${{ secrets.SPACES_SECRET }}" | |
gcppolicygen --verbose --spaces-name somecdn --spaces-region ams3 --spaces-path fix/gcp/ |