Skip to content

connorjs/github-workflows

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.github/workflows
.github/workflows
 
 
.editorconfig
.editorconfig
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

GitHub Workflows

My GitHub workflows. Centralized for reuse.

Table of contents

Published workflows

Note

The workflows use file versioning (name~v1.yaml) instead of repository tags.

Why?

This provides independent versioning of the workflows while maintaining them in one repository. It also allows supporting older versions on the main branch (for example, upgrading all checkout actions).

File versioning uses the tilde (~) because GitHub prohibits @ in workflow file names. (GitHub uses @ for repository references.) The tilde still reads well, displays well in URLs, and is not often used in file names.

npm-ci-build

Job that executes ci-build logic for npm packages.

jobs:
  CiBuild:
    name: CI Build
    uses: connorjs/github-workflows/.github/workflows/npm-ci-build~v1.yaml@main

v1 runs ci-build directly and assumes that the underlying package orchestrates the full build correctly.

Show inputs, outputs, assumptions, and notes

Inputs

Name Default Type Description
hasTests true boolean Whether the project has tests.
Used to skip test reporting for projects with no tests.
projectType library choice The type of project: application or library.
Used to customize the CI build process.

Outputs

Name Description
npmPackFilename The name of the packed npm package (the gzipped tarball).
semVer The SemVer version number of this build (automated with GitVersion).

Assumptions

The job makes the following assumptions about the repository.

  • Uses a .node-version file in the root of the repository to set the Node.js version.
  • Uses npm (not yarn or pnpm).
  • The package.json uses 0.0.0-gitversion for its version (enables GitVersion automation).

Notes

The job includes automatic versioning via GitVersion. It will replace 0.0.0-gitversion with the correct version. Note: While another tool could replace GitVersion, the automatic version string will remain 0.0.0-gitversion.

Note: The job will ignore any local GitVersion.yaml; it configures GitVersion for continuous deployment internally. Use +semver:(major|minor) in commit messages appropriately. (Patch happens automatically.)

npm-publish

Job that publishes an npm package to the npm registry.

jobs:
  Publish:
    name: Publish
    needs:
      - CiBuild

    uses: connorjs/github-workflows/.github/workflows/npm-publish~v1.yaml@main
    with:
      npmPackFilename: ${{ needs.CiBuild.outputs.npmPackFilename }}
      semVer: ${{ needs.CiBuild.outputs.semVer }}
    secrets:
      NPM_TOKEN: ${{ secrets.NPM_TOKEN }}

    permissions:
      contents: write
      id-token: write

v1 publishes a pre-packed artifact (assumed to originate from npm-ci-build) and pushes a git tag.

Inputs

Name Description
npmPackFilename The name of the packed npm package (the gzipped tarball).
semVer The SemVer version number of this build (automated with GitVersion).

These inputs match the outputs from npm-ci-build.#### Inputs

Secrets

Name Description
NPM_TOKEN Credentials token for publishing to the npm registry.

Outputs

None.

Assumptions

The job makes the following assumptions about the repository.

  • Uses a .node-version file in the root of the repository to set the Node.js version.
  • Uses npm (not yarn or pnpm).

Goal: Universal targets

I find that a universal set of targets (also called tasks) simplifies polyglot development. I observed the benefits with Amazon’s internal build system, and I built similar mechanisms at Total Quality Logistics (TQL).

This repository represents my personal take on the idea, implemented via a consistent set of GitHub workflows.

Industry observations

This section details my observations from industry tools that I have used.

  • Amazon: Standardized install, build, test (unit-test and integration-test) all under release. (Source: per my memory 18+ months later)

  • Gradle: Standardizes check, assemble, and build tasks. Includes some sort of standardized dependency installation (but I cannot find the task name). Specific plugins (such as java) extend with their own standard set (compile, javadoc, and more). (Source: base plugin)

  • Maven: Standardizes validate, compile, test, package, verify, install, and deploy (Source: Maven build lifecycle)

  • .NET (dotnet): Restore, build, test, format, run, and publish. (Source: My limited usage and dotnet commands)

  • npm: Standardizes install/ci/rebuild, start/stop/restart, test, and many related to prepare and publish. Many libraries suggest build and lint, but there are others related (compile, tsc, specific linters, and formatters). (Source: My experience and npm lifecycle scripts)

  • Python: Unsure. I know of install from pipenv. I see build, fmt, and test from hatch, install and build from flit, and easy_install and build from Setuptools.

Each of these also had the concept of clean.

My universal targets

Combining my experiences predominantly with Java, npm, and .NET, I arrive at the following universal targets. Each underlying build system should be able to hook into these standardized targets.

  • install: Installs (or restores) dependencies.

  • build: Builds the project.

  • format: Formats and lints the project.

  • test: Runs all tests that do not require a network connection. Often thought of as unit tests, but can contain network-free integration tests (aka component or module tests). This should include code coverage.

  • publish: Publish the library to its package manager.

  • version: Handles automatic versioning, if desired.

  • clean: Cleans any build or test artifacts. SHOULD NOT remove dependencies.

In CI (think code reviews or pull requests), the “build” executes many of these targets. Using the term “build” here would overload the target name though. Therefore, I use the term ci-build to group all targets that should run during the “CI Build.”

We called this release at Amazon, but I have found that folks think release means “make the release; actually publish,” which represents the wrong conclusion. Hence, I chose the term ci-build. (I also considered terms such as full-build, release-build, and ci or replacing the underlying build term with compile. However, others came to the right conclusion with ci-build, which reinforces its choice.)

If I was building my own CLI that wrapped underlying tools with these universal targets, I would include compile and lint as aliases for build and format. If both targets were present, the main name would take precedence.

My universal output locations

Standardizing the output locations also simplifies polyglot development. While tooling (GitHub workflows) receives the most benefits, developers can benefit from standardized code coverage output locations. Standardized outputs can also simplify .gitignore configuration. (Nit-pick side note: The 100s-lines-long default .gitignore files pain me.)

The standard output locations follow.

  • artifacts should contain as much output as possible. This also simplifies clean.

  • Dependencies will use underlying tool conventions (example: node_modules for npm).

  • Publish will use underlying tool conventions where appropriate. Use artifacts/dist to vend transpiled sources.

  • Mono-repos will use $projectName in the path per artifact type (example: artifacts/dist/$projectName). This preserves output structure semantics between polyrepo (single project repositories) and monorepo use cases.

  • Tests will use artifacts/test-results. Prefer JUnit format for the test results file and use the name test-result.xml. Prefer Cobertura format for the code coverage results file and use the name cobertura.xml.

    In monorepos, each project likely has these files in artifacts/test-results/$projectName AND the monorepo workspace aggregate in artifacts/test-results (N+1 output files). Note that tools like reportgenerator exist to simplify aggregation.

  • The HTML output from code coverage should have the name artifacts/coverage/index.html. This differs from artifacts/test-results to simplify developers opening the report and to prevent conflicts in monorepos.

Style conventions

Some notes on how I style (format) my GitHub workflow files.

  • The following naming rules ensure seamless script usage, such as in actions/github-script.

    • Prefer PascalCase for job and step IDs.
    • Prefer camelCase for variable names (inputs and outputs).
    • This means avoid snake_case, kebab-case, TRAIN-CASE, or SCREAM_CASE unless a 3rd party uses them.

  • Format expressions with inner spaces: ${{ foo.bar }}.

  • Prefer no quotes if YAML does not require them.

  • Automatically format files: Use prettier, an editor using .editorconfig, or a similar formatter.

  • Start each step with name.

    • Use sentence case for name (with allowed use of Proper Nouns when it helps such as GitVersion).
    • Exception: Prefer “CI Build” (instead of “CI build” or “ci build”).

  • If a step (or job) would benefit from a longer description, include a YAML comment on the line after name (unless GitHub adds proper description field).

About

@connorjs’s reusable GitHub workflows.

github.com/connorjs/github-workflows#readme

Topics

npm ci targets build-scripts github-workflows ci-build

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

2024-08-05 Latest
Aug 5, 2024