[prometheus] Update prometheus dependency non-major updates #239
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| permissions: {} | |
| on: | |
| pull_request: | |
| branches: | |
| - main | |
| jobs: | |
| lint-test: | |
| # name: Lint and Test Charts | |
| runs-on: ubuntu-24.04 | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Set up Helm | |
| uses: azure/setup-helm@b9e51907a09c216f16ebe8536097933489208112 # v4.3.0 | |
| with: | |
| version: v3.12.0 | |
| - uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0 | |
| with: | |
| python-version: '3.13' | |
| - name: Set up chart-testing | |
| uses: helm/chart-testing-action@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b # v2.7.0 | |
| - name: Run chart-testing (list-changed) | |
| id: list-changed | |
| run: | | |
| changed="$(ct list-changed --config .github/linters/ct.yaml)" | |
| if [[ -n "$changed" ]]; then | |
| echo "changed=true" >> "$GITHUB_OUTPUT" | |
| echo "changed_list=\"${changed//$'\n'/ }\"" >> "$GITHUB_OUTPUT" | |
| fi | |
| - name: install helm unittest plugin | |
| if: steps.list-changed.outputs.changed == 'true' | |
| run: helm plugin install https://github.com/helm-unittest/helm-unittest.git --version 0.8.2 | |
| - name: Run chart-testing (lint) | |
| run: ct lint --config .github/linters/ct.yaml | |
| - name: Create kind cluster | |
| uses: helm/kind-action@a1b0e391336a6ee6713a0583f8c6240d70863de3 # v1.12.0 | |
| if: steps.list-changed.outputs.changed == 'true' | |
| - name: Apply Gateway API CRDs | |
| run: kubectl apply -k https://github.com/kubernetes-sigs/gateway-api/config/crd | |
| if: steps.list-changed.outputs.changed == 'true' | |
| - name: Apply Prometheus Operator CRDs (unless for charts already installing it) | |
| env: | |
| CHANGED_LIST: ${{ steps.list-changed.outputs.changed_list }} | |
| run: | | |
| # Always run unless only changed chart is one of impacted charts | |
| echo "List is: $CHANGED_LIST" | |
| if [ "$CHANGED_LIST" = '"charts/kube-prometheus-stack"' ] || [ "$CHANGED_LIST" = '"charts/prometheus-operator-crds"' ]; then | |
| echo "Skipping install" | |
| else | |
| helm install prometheus-operator-crds oci://ghcr.io/prometheus-community/charts/prometheus-operator-crds | |
| fi | |
| if: steps.list-changed.outputs.changed == 'true' | |
| - name: Run chart-testing (install) | |
| run: ct install --config .github/linters/ct.yaml | |
| check-codeowners-maintainers: | |
| name: Check CODEOWNERS & MAINTAINERS.md | |
| runs-on: ubuntu-24.04 | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - name: generate CODEOWNERS | |
| run: | | |
| ./scripts/check-codeowners.sh | tee .github/CODEOWNERS | |
| - name: check CODEOWNERS for modifications | |
| run: | | |
| git diff --exit-code | |
| - name: generate MAINTAINERS.md | |
| run: | | |
| ./scripts/check-maintainers.sh | tee MAINTAINERS.md | |
| - name: check MAINTAINERS.md for modifications | |
| run: | | |
| git diff --exit-code | |
| super-linter: | |
| name: Lint Code Base | |
| runs-on: ubuntu-24.04 | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout Code | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| with: | |
| fetch-depth: 0 | |
| - name: Lint Code Base | |
| uses: super-linter/super-linter/slim@12150456a73e248bdc94d0794898f94e23127c88 # v7.4.0 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| LINTER_RULES_PATH: .github/linters | |
| MULTI_STATUS: false | |
| VALIDATE_ALL_CODEBASE: false | |
| VALIDATE_BASH: true | |
| VALIDATE_BASH_EXEC: true | |
| # VALIDATE_CHECKOV: true - always scans everything and all charts have too much errors | |
| VALIDATE_EDITORCONFIG: true | |
| VALIDATE_ENV: true | |
| VALIDATE_GITHUB_ACTIONS: true | |
| VALIDATE_GITLEAKS: true | |
| VALIDATE_JSON: true | |
| VALIDATE_MARKDOWN: true | |
| VALIDATE_NATURAL_LANGUAGE: true | |
| VALIDATE_PYTHON: true | |
| VALIDATE_RENOVATE: true # does not support newest renovate config | |
| VALIDATE_SHELL_SHFMT: true | |
| VALIDATE_XML: true | |
| renovate-auto-merge: | |
| name: Auto-approve PRs from Renovate | |
| runs-on: ubuntu-24.04 | |
| needs: | |
| - lint-test | |
| - check-codeowners-maintainers | |
| - super-linter | |
| if: >- | |
| github.event.pull_request.head.repo.full_name == github.repository | |
| && contains(github.event.pull_request.labels.*.name, 'dependencies/auto-merge') | |
| && (github.actor == 'renovate[bot]' || github.actor == 'helm-charts-renovate-helper[bot]') | |
| steps: | |
| # Using a GitHub App token, because GitHub Actions doesn't run on commits from github-actions bot | |
| # Used App: | |
| # https://github.com/organizations/prometheus-community/settings/apps/helm-charts-renovate-helper. | |
| # Ref: https://github.com/prometheus-community/helm-charts/issues/5213. | |
| - uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2.0.6 | |
| id: app-token | |
| with: | |
| app-id: 1179738 | |
| private-key: ${{ secrets.APP_RENOVATE_HELPER_PRIVATE_KEY }} | |
| - name: Approve PR | |
| run: | | |
| gh pr review ${{ github.event.pull_request.number }} --approve --repo "${{ github.repository }}" | |
| gh pr merge ${{ github.event.pull_request.number }} --admin --squash --repo "${{ github.repository }}" --match-head-commit "${{ github.event.pull_request.head.sha }}" --delete-branch | |
| env: | |
| GITHUB_TOKEN: ${{ steps.app-token.outputs.token }} |