forked from Gitea/helm-actions
		
	Compare commits
	
		
			16 Commits
		
	
	
		
			check-rele
			...
			v0.0.1
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|   | 8e5067cb2d | ||
|   | 6d5af0ed3d | ||
|   | d00ed8402e | ||
|   | 58868cfcfc | ||
|   | b749eaeefd | ||
|   | a60844fc96 | ||
|   | 6417e21627 | ||
|   | 4be7971caa | ||
|   | 2457ccae5c | ||
|   | 1e51423d3a | ||
|   | 6d82ade984 | ||
|   | 072b97470e | ||
|   | 53393816ed | ||
|   | 8a89d8bf21 | ||
|   | bb50a19f4d | ||
|   | b2459f322b | 
| @@ -8,12 +8,12 @@ on: | ||||
| jobs: | ||||
|   changelog: | ||||
|     runs-on: ubuntu-latest | ||||
|     container: docker.io/thegeeklab/git-sv:1.0.12 | ||||
|     container: docker.io/thegeeklab/git-sv:2.0.5 | ||||
|     steps: | ||||
|       - name: install tools | ||||
|         run: | | ||||
|           apk add -q --update --no-cache nodejs curl jq sed | ||||
|       - uses: actions/checkout@v4 | ||||
|       - uses: actions/checkout@v5 | ||||
|         with: | ||||
|           fetch-depth: 0 | ||||
|       - name: Generate upcoming changelog | ||||
|   | ||||
| @@ -13,7 +13,7 @@ jobs: | ||||
|     runs-on: ubuntu-latest | ||||
|     container: commitlint/commitlint:19.7.1 | ||||
|     steps: | ||||
|       - uses: actions/checkout@v4 | ||||
|       - uses: actions/checkout@v5 | ||||
|       - name: check PR title | ||||
|         run: | | ||||
|           echo "${{ gitea.event.pull_request.title }}" | commitlint --config .commitlintrc.json | ||||
|   | ||||
| @@ -1,68 +1,70 @@ | ||||
| name: check-secrets | ||||
| name: generate-chart | ||||
|  | ||||
| on: | ||||
|   push: | ||||
|     tags: | ||||
|       - "*" | ||||
|  | ||||
| env: | ||||
|   # renovate: datasource=docker depName=alpine/helm | ||||
|   HELM_VERSION: "3.17.1" | ||||
|  | ||||
| jobs: | ||||
|   check-secrets: | ||||
|   generate-chart-publish: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - uses: actions/checkout@v4 | ||||
|        | ||||
|       - name: Check all required secrets | ||||
|       - uses: actions/checkout@v5 | ||||
|       - name: install tools | ||||
|         run: | | ||||
|           echo "=== Checking availability of required secrets ===" | ||||
|           apt update -y | ||||
|           apt install -y curl ca-certificates curl gnupg | ||||
|           # helm | ||||
|           curl -O https://get.helm.sh/helm-v${{ env.HELM_VERSION }}-linux-amd64.tar.gz | ||||
|           tar -xzf helm-v${{ env.HELM_VERSION }}-linux-amd64.tar.gz | ||||
|           mv linux-amd64/helm /usr/local/bin/ | ||||
|           rm -rf linux-amd64 helm-v${{ env.HELM_VERSION }}-linux-amd64.tar.gz | ||||
|           helm version | ||||
|           # docker | ||||
|           install -m 0755 -d /etc/apt/keyrings | ||||
|           curl -fsSL https://download.docker.com/linux/ubuntu/gpg | gpg --dearmor -o /etc/apt/keyrings/docker.gpg | ||||
|           chmod a+r /etc/apt/keyrings/docker.gpg | ||||
|           echo "deb [arch="$(dpkg --print-architecture)" signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu "$(. /etc/os-release && echo "$VERSION_CODENAME")" stable" | tee /etc/apt/sources.list.d/docker.list > /dev/null | ||||
|           apt update -y | ||||
|           apt install -y python3 python3-pip apt-transport-https docker-ce-cli | ||||
|           pip install awscli --break-system-packages | ||||
|  | ||||
|           # List of all secrets used in the original workflow | ||||
|           SECRETS=( | ||||
|             "GPGSIGN_KEY" | ||||
|             "GPGSIGN_PASSPHRASE" | ||||
|             "DOCKER_CHARTS_PASSWORD" | ||||
|             "DOCKER_CHARTS_USERNAME" | ||||
|             "AWS_KEY_ID" | ||||
|             "AWS_SECRET_ACCESS_KEY" | ||||
|             "AWS_REGION" | ||||
|             "AWS_S3_BUCKET" | ||||
|           ) | ||||
|       - name: Import GPG key | ||||
|         id: import_gpg | ||||
|         uses: https://github.com/crazy-max/ghaction-import-gpg@v6 | ||||
|         with: | ||||
|           gpg_private_key: ${{ secrets.GPGSIGN_KEY }} | ||||
|           passphrase: ${{ secrets.GPGSIGN_PASSPHRASE }} | ||||
|           fingerprint: CC64B1DB67ABBEECAB24B6455FC346329753F4B0 | ||||
|  | ||||
|           MISSING_SECRETS=() | ||||
|           AVAILABLE_SECRETS=() | ||||
|       # Using helm gpg plugin as 'helm package --sign' has issues with gpg2: https://github.com/helm/helm/issues/2843 | ||||
|       - name: package chart | ||||
|         run: | | ||||
|           echo ${{ secrets.DOCKER_CHARTS_PASSWORD }} | docker login -u ${{ secrets.DOCKER_CHARTS_USERNAME }} --password-stdin | ||||
|           # FIXME: use upstream after https://github.com/technosophos/helm-gpg/issues/1 is solved | ||||
|           helm plugin install https://github.com/pat-s/helm-gpg | ||||
|           helm dependency build | ||||
|           helm package --version "${GITHUB_REF#refs/tags/v}" ./ | ||||
|           mkdir actions | ||||
|           mv actions*.tgz actions/ | ||||
|           curl -s -L -o actions/index.yaml https://dl.gitea.com/charts/index.yaml | ||||
|           helm repo index actions/ --url https://dl.gitea.com/charts --merge actions/index.yaml | ||||
|           # push to dockerhub | ||||
|           echo ${{ secrets.DOCKER_CHARTS_PASSWORD }} | helm registry login -u ${{ secrets.DOCKER_CHARTS_USERNAME }} registry-1.docker.io --password-stdin | ||||
|           helm push actions/actions-${GITHUB_REF#refs/tags/v}.tgz oci://registry-1.docker.io/giteacharts | ||||
|           helm registry logout registry-1.docker.io | ||||
|  | ||||
|           for secret in "${SECRETS[@]}"; do | ||||
|             # Check if secret is set (not empty) | ||||
|             if [ -z "${!secret:-}" ]; then | ||||
|               echo "❌ Secret '$secret' is NOT available or empty" | ||||
|               MISSING_SECRETS+=("$secret") | ||||
|             else | ||||
|               echo "✅ Secret '$secret' is available" | ||||
|               AVAILABLE_SECRETS+=("$secret") | ||||
|             fi | ||||
|           done | ||||
|       - name: aws credential configure | ||||
|         uses: https://github.com/aws-actions/configure-aws-credentials@v5 | ||||
|         with: | ||||
|           aws-access-key-id: ${{ secrets.AWS_KEY_ID }} | ||||
|           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | ||||
|           aws-region: ${{ secrets.AWS_REGION }} | ||||
|  | ||||
|           echo "" | ||||
|           echo "=== Summary ===" | ||||
|           echo "Available secrets: ${#AVAILABLE_SECRETS[@]}" | ||||
|           echo "Missing secrets: ${#MISSING_SECRETS[@]}" | ||||
|            | ||||
|           if [ ${#MISSING_SECRETS[@]} -gt 0 ]; then | ||||
|             echo "" | ||||
|             echo "Missing secrets:" | ||||
|             for secret in "${MISSING_SECRETS[@]}"; do | ||||
|               echo "  - $secret" | ||||
|             done | ||||
|             echo "" | ||||
|             echo "❌ Some secrets are missing. Please configure them in repository settings." | ||||
|             exit 1 | ||||
|           else | ||||
|             echo "" | ||||
|             echo "✅ All required secrets are available!" | ||||
|           fi | ||||
|         env: | ||||
|           GPGSIGN_KEY: ${{ secrets.GPGSIGN_KEY }} | ||||
|           GPGSIGN_PASSPHRASE: ${{ secrets.GPGSIGN_PASSPHRASE }} | ||||
|           DOCKER_CHARTS_PASSWORD: ${{ secrets.DOCKER_CHARTS_PASSWORD }} | ||||
|           DOCKER_CHARTS_USERNAME: ${{ secrets.DOCKER_CHARTS_USERNAME }} | ||||
|           AWS_KEY_ID: ${{ secrets.AWS_KEY_ID }} | ||||
|           AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | ||||
|           AWS_REGION: ${{ secrets.AWS_REGION }} | ||||
|           AWS_S3_BUCKET: ${{ secrets.AWS_S3_BUCKET }} | ||||
|       - name: Copy files to S3 and clear cache | ||||
|         run: | | ||||
|           aws s3 sync actions/ s3://${{ secrets.AWS_S3_BUCKET}}/charts/ | ||||
|   | ||||
| @@ -9,6 +9,6 @@ jobs: | ||||
|   shellcheck: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - uses: actions/checkout@v4.2.2 | ||||
|       - uses: actions/checkout@v5 | ||||
|       - run: apt update --yes && apt install --yes shellcheck | ||||
|       - run: find . -type f -name "*.sh" -exec shellcheck -a {} \; | ||||
|   | ||||
| @@ -10,7 +10,7 @@ on: | ||||
|  | ||||
| env: | ||||
|   # renovate: datasource=github-releases depName=helm-unittest/helm-unittest | ||||
|   HELM_UNITTEST_VERSION: "v0.7.2" | ||||
|   HELM_UNITTEST_VERSION: "v1.0.1" | ||||
|  | ||||
| jobs: | ||||
|   check-and-test: | ||||
| @@ -25,7 +25,7 @@ jobs: | ||||
|         uses: pnpm/action-setup@v4 | ||||
|         with: | ||||
|           version: 10 | ||||
|       - uses: actions/checkout@v4 | ||||
|       - uses: actions/checkout@v5 | ||||
|       - name: install chart dependencies | ||||
|         run: helm dependency build | ||||
|       - name: lint | ||||
|   | ||||
							
								
								
									
										1
									
								
								CODEOWNERS
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										1
									
								
								CODEOWNERS
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1 @@ | ||||
| * @DaanSelen @volker.raschek @ChristopherHX | ||||
							
								
								
									
										15
									
								
								Chart.yaml
									
									
									
									
									
								
							
							
						
						
									
										15
									
								
								Chart.yaml
									
									
									
									
									
								
							| @@ -13,7 +13,18 @@ keywords: | ||||
| sources: | ||||
|   - https://gitea.com/gitea/helm-actions | ||||
|   - https://gitea.com/gitea/act | ||||
| # FIXME: | ||||
| # maintainers: | ||||
|  | ||||
| maintainers: | ||||
|   # https://gitea.com/DaanSelen | ||||
|   - name: Daan Selen | ||||
|     email: dselen@nerthus.nl | ||||
|  | ||||
|   # https://gitea.com/volker.raschek | ||||
|   - name: Markus Pesch | ||||
|     email: markus.pesch+apps@cryptic.systems | ||||
|  | ||||
|   # https://gitea.com/ChristopherHX | ||||
|   - name: Christopher Homberger | ||||
|     email: christopher.homberger@web.de | ||||
|  | ||||
| dependencies: [] | ||||
|   | ||||
| @@ -6,6 +6,10 @@ The parameters which can be used to customize the deployment are described below | ||||
|  | ||||
| If you want to propose a new feature or mechanism, submit an [issue here](https://gitea.com/gitea/helm-actions/issues). | ||||
|  | ||||
| ## Docs | ||||
|  | ||||
| [Docs](./docs/README.md) | ||||
|  | ||||
| ## Rootless Defaults | ||||
|  | ||||
| If `.Values.image.rootless: true`, then the following will occur. In case you use `.Values.image.fullOverride`, check that this works in your image: | ||||
| @@ -22,6 +26,7 @@ If `.Values.image.rootless: true`, then the following will occur. In case you us | ||||
| | `init.image.repository`                   | The image used for the init containers                                                                                                      | `busybox`                      | | ||||
| | `init.image.tag`                          | The image tag used for the init containers                                                                                                  | `1.37.0`                       | | ||||
| | `statefulset.replicas`                    | the amount of (replica) runner pods deployed                                                                                                | `1`                            | | ||||
| | `statefulset.timezone`                    | is the timezone that will be set in the act_runner image                                                                                    | `Etc/UTC`                      | | ||||
| | `statefulset.annotations`                 | Act runner annotations                                                                                                                      | `{}`                           | | ||||
| | `statefulset.labels`                      | Act runner labels                                                                                                                           | `{}`                           | | ||||
| | `statefulset.resources`                   | Act runner resources                                                                                                                        | `{}`                           | | ||||
| @@ -30,12 +35,12 @@ If `.Values.image.rootless: true`, then the following will occur. In case you us | ||||
| | `statefulset.affinity`                    | Affinity for the statefulset                                                                                                                | `{}`                           | | ||||
| | `statefulset.extraVolumes`                | Extra volumes for the statefulset                                                                                                           | `[]`                           | | ||||
| | `statefulset.actRunner.repository`        | The Gitea act runner image                                                                                                                  | `gitea/act_runner`             | | ||||
| | `statefulset.actRunner.tag`               | The Gitea act runner tag                                                                                                                    | `0.2.11`                       | | ||||
| | `statefulset.actRunner.tag`               | The Gitea act runner tag                                                                                                                    | `0.2.13`                       | | ||||
| | `statefulset.actRunner.pullPolicy`        | The Gitea act runner pullPolicy                                                                                                             | `IfNotPresent`                 | | ||||
| | `statefulset.actRunner.extraVolumeMounts` | Allows mounting extra volumes in the act runner container                                                                                   | `[]`                           | | ||||
| | `statefulset.actRunner.config`            | Act runner custom configuration. See [Act Runner documentation](https://docs.gitea.com/usage/actions/act-runner#configuration) for details. | `Too complex. See values.yaml` | | ||||
| | `statefulset.dind.repository`             | The Docker-in-Docker image                                                                                                                  | `docker`                       | | ||||
| | `statefulset.dind.tag`                    | The Docker-in-Docker image tag                                                                                                              | `25.0.2-dind`                  | | ||||
| | `statefulset.dind.tag`                    | The Docker-in-Docker image tag                                                                                                              | `28.3.3-dind`                  | | ||||
| | `statefulset.dind.pullPolicy`             | The Docker-in-Docker pullPolicy                                                                                                             | `IfNotPresent`                 | | ||||
| | `statefulset.dind.extraVolumeMounts`      | Allows mounting extra volumes in the Docker-in-Docker container                                                                             | `[]`                           | | ||||
| | `statefulset.dind.extraEnvs`              | Allows adding custom environment variables, such as `DOCKER_IPTABLES_LEGACY`                                                                | `[]`                           | | ||||
|   | ||||
							
								
								
									
										3
									
								
								docs/README.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										3
									
								
								docs/README.md
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,3 @@ | ||||
| # Gitea Actions Helm Chart Docs | ||||
|  | ||||
| - [Share dind with job container](share-dind-with-job-container.md) | ||||
							
								
								
									
										36
									
								
								docs/share-dind-with-job-container.md
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										36
									
								
								docs/share-dind-with-job-container.md
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,36 @@ | ||||
| # Share dind with job container | ||||
|  | ||||
| You can weaken isolation and allow jobs to call docker commands. | ||||
|  | ||||
| ## Limitations | ||||
|  | ||||
| - Docker bind mounts like `-v /path/on/self/container:/path/to/new/container` do not work, because they are going to mount the path from the dind container | ||||
| - Docker port expose to local host `-e 80:8080` is not going to work | ||||
|  | ||||
| ## Example Values | ||||
|  | ||||
| ```yaml | ||||
| enabled: true | ||||
| statefulset: | ||||
|   actRunner: | ||||
|     # See full example here: https://gitea.com/gitea/act_runner/src/branch/main/internal/pkg/config/config.example.yaml | ||||
|     config: | | ||||
|       log: | ||||
|         level: debug | ||||
|       cache: | ||||
|         enabled: false | ||||
|       container: | ||||
|         valid_volumes: | ||||
|         - /var/run/docker.sock | ||||
|         options: -v /var/run/docker.sock:/var/run/docker.sock | ||||
|  | ||||
| ## Specify an existing token secret | ||||
| ## | ||||
| existingSecret: "runner-token2" | ||||
| existingSecretKey: "token" | ||||
|  | ||||
| ## Specify the root URL of the Gitea instance | ||||
| giteaRootURL: "http://192.168.1.2:3000" | ||||
| ``` | ||||
|  | ||||
| Now you can run docker commands inside your jobs. | ||||
							
								
								
									
										106
									
								
								pnpm-lock.yaml
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										106
									
								
								pnpm-lock.yaml
									
									
									
										generated
									
									
									
								
							| @@ -10,15 +10,15 @@ importers: | ||||
|     devDependencies: | ||||
|       '@bitnami/readme-generator-for-helm': | ||||
|         specifier: ^2.7.0 | ||||
|         version: 2.7.0 | ||||
|         version: 2.7.2 | ||||
|       markdownlint-cli: | ||||
|         specifier: ^0.44.0 | ||||
|         version: 0.44.0 | ||||
|  | ||||
| packages: | ||||
|  | ||||
|   '@bitnami/readme-generator-for-helm@2.7.0': | ||||
|     resolution: {integrity: sha512-fVxExmcuJ9NZb9ZE9OW3+lG8pUlXJAJdaO8UukV3A7WzYu4qOTr03MXPH9Gt5e/6mo3x4WYI/cXBksKfS0qn3w==} | ||||
|   '@bitnami/readme-generator-for-helm@2.7.2': | ||||
|     resolution: {integrity: sha512-7eXyJzxQTQj2ajpHlIhadciCCYWOqN8ieaweU25bStHOZowQ2c2CQyjO/bX4gxIf73LoRKxHhEYgLTllJY9SIw==} | ||||
|     hasBin: true | ||||
|  | ||||
|   '@isaacs/cliui@8.0.2': | ||||
| @@ -45,16 +45,16 @@ packages: | ||||
|     resolution: {integrity: sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==} | ||||
|     engines: {node: '>=8'} | ||||
|  | ||||
|   ansi-regex@6.1.0: | ||||
|     resolution: {integrity: sha512-7HSX4QQb4CspciLpVFwyRe79O3xsIZDDLER21kERQ71oaPodF8jL725AgJMFAYbooIqolJoRLuM81SpeUkpkvA==} | ||||
|   ansi-regex@6.2.2: | ||||
|     resolution: {integrity: sha512-Bq3SmSpyFHaWjPk8If9yc6svM8c56dB5BAtW4Qbw5jHTwwXXcTLoRMkpDJp6VL0XzlWaCHTXrkFURMYmD0sLqg==} | ||||
|     engines: {node: '>=12'} | ||||
|  | ||||
|   ansi-styles@4.3.0: | ||||
|     resolution: {integrity: sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==} | ||||
|     engines: {node: '>=8'} | ||||
|  | ||||
|   ansi-styles@6.2.1: | ||||
|     resolution: {integrity: sha512-bN798gFfQX+viw3R7yrGWRqnrN2oRkEkUjjl4JNn4E8GxxbjtG3FbrEIIY3l8/hrwUwIeCZvi4QuOTP4MErVug==} | ||||
|   ansi-styles@6.2.3: | ||||
|     resolution: {integrity: sha512-4Dj6M28JB+oAH8kFkTLUo+a2jwOFkuqb3yucU0CANcRRUbxS0cP0nZYCGjcc3BNXwRIsUVmDGgzawme7zvJHvg==} | ||||
|     engines: {node: '>=12'} | ||||
|  | ||||
|   argparse@2.0.1: | ||||
| @@ -63,11 +63,11 @@ packages: | ||||
|   balanced-match@1.0.2: | ||||
|     resolution: {integrity: sha512-3oSeUO0TMV67hN1AmbXsK4yaqU7tjiHlbxRDZOpH0KW9+CeX4bRAaX0Anxt0tx2MrpRpWwQaPwIlISEJhYU5Pw==} | ||||
|  | ||||
|   brace-expansion@1.1.11: | ||||
|     resolution: {integrity: sha512-iCuPHDFgrHX7H2vEI/5xpz07zSHB00TpugqhmYtVmMO6518mCuRMoOYFldEBl0g187ufozdaHgWKcYFb61qGiA==} | ||||
|   brace-expansion@1.1.12: | ||||
|     resolution: {integrity: sha512-9T9UjW3r0UW5c1Q7GTwllptXwhvYmEzFhzMfZ9H7FQWt+uZePjZPjBP/W1ZEyZ1twGWom5/56TF4lPcqjnDHcg==} | ||||
|  | ||||
|   brace-expansion@2.0.1: | ||||
|     resolution: {integrity: sha512-XnAIvQ8eM+kC6aULx6wuQiwVsnzsi9d3WxzV3FpWTGA19F621kwdbsAcFKXgKUHZWsy+mY6iL1sHTxWEFCytDA==} | ||||
|   brace-expansion@2.0.2: | ||||
|     resolution: {integrity: sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==} | ||||
|  | ||||
|   character-entities-legacy@3.0.0: | ||||
|     resolution: {integrity: sha512-RpPp0asT/6ufRm//AJVwpViZbGM/MkjQFxJccQRHmISF/22NBtsHqAWmL+/pmkPWoIUJdWyeVleTl1wydHATVQ==} | ||||
| @@ -104,8 +104,8 @@ packages: | ||||
|     resolution: {integrity: sha512-uV2QOWP2nWzsy2aMp8aRibhi9dlzF5Hgh5SHaB9OiTGEyDTiJJyx0uy51QXdyWbtAHNua4XJzUKca3OzKUd3vA==} | ||||
|     engines: {node: '>= 8'} | ||||
|  | ||||
|   debug@4.4.0: | ||||
|     resolution: {integrity: sha512-6WTZ/IxCY/T6BALoZHaE4ctp9xm+Z5kY/pzYaCHRFeyVhojxlrm+46y68HA6hr0TcwEssoxNiDEUJQjfPZ/RYA==} | ||||
|   debug@4.4.3: | ||||
|     resolution: {integrity: sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==} | ||||
|     engines: {node: '>=6.0'} | ||||
|     peerDependencies: | ||||
|       supports-color: '*' | ||||
| @@ -113,8 +113,8 @@ packages: | ||||
|       supports-color: | ||||
|         optional: true | ||||
|  | ||||
|   decode-named-character-reference@1.1.0: | ||||
|     resolution: {integrity: sha512-Wy+JTSbFThEOXQIR2L6mxJvEs+veIzpmqD7ynWxMXGpnk3smkHQOp6forLdHsKpAMW9iJpaBBIxz285t1n1C3w==} | ||||
|   decode-named-character-reference@1.2.0: | ||||
|     resolution: {integrity: sha512-c6fcElNV6ShtZXmsgNgFFV5tVX2PaV4g+MOAkb8eXHvn6sryJBrZa9r0zV6+dtTyoCKxtDy5tyQ5ZwQuidtd+Q==} | ||||
|  | ||||
|   deep-extend@0.6.0: | ||||
|     resolution: {integrity: sha512-LOHxIOaPYdHlJRtCQfDIVZtfw/ufM8+rVj649RIHzcm/vGwQRXFt6OPqIFWsm2XEMrNIEtWR64sY1LEKD2vAOA==} | ||||
| @@ -159,8 +159,8 @@ packages: | ||||
|     resolution: {integrity: sha512-nFR0zLpU2YCaRxwoCJvL6UvCH2JFyFVIvwTLsIf21AuHlMskA1hhTdk+LlYJtOlYt9v6dvszD2BGRqBL+iQK9Q==} | ||||
|     deprecated: Glob versions prior to v9 are no longer supported | ||||
|  | ||||
|   ignore@7.0.3: | ||||
|     resolution: {integrity: sha512-bAH5jbK/F3T3Jls4I0SO1hmPR0dKU0a7+SY6n1yzRtG54FLO8d6w/nxLFX2Nb7dBu6cCWXPaAME6cYqFUMmuCA==} | ||||
|   ignore@7.0.5: | ||||
|     resolution: {integrity: sha512-Hs59xBNfUIunMFgWAbGX5cq6893IbWg4KnrjbYwX3tx0ztorVgTDA6B2sxf8ejHJ4wz8BqGUMYlnzNBer5NvGg==} | ||||
|     engines: {node: '>= 4'} | ||||
|  | ||||
|   inflight@1.0.6: | ||||
| @@ -207,8 +207,8 @@ packages: | ||||
|     resolution: {integrity: sha512-p/nXbhSEcu3pZRdkW1OfJhpsVtW1gd4Wa1fnQc9YLiTfAjn0312eMKimbdIQzuZl9aa9xUGaRlP9T/CJE/ditQ==} | ||||
|     engines: {node: '>=0.10.0'} | ||||
|  | ||||
|   katex@0.16.21: | ||||
|     resolution: {integrity: sha512-XvqR7FgOHtWupfMiigNzmh+MgUVmDGU2kXZm899ZkPfcuoPuFxyHmXsgATDpFZDAXCI8tvinaVcDo8PIIJSo4A==} | ||||
|   katex@0.16.22: | ||||
|     resolution: {integrity: sha512-XCHRdUw4lf3SKBaJe4EvgqIuWwkPSo9XoeO8GjQW94Bp7TWv9hNhzZjZ+OH9yf1UmLygb7DIT5GSFQiyt16zYg==} | ||||
|     hasBin: true | ||||
|  | ||||
|   linkify-it@5.0.0: | ||||
| @@ -376,8 +376,8 @@ packages: | ||||
|     resolution: {integrity: sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw==} | ||||
|     engines: {node: '>=14'} | ||||
|  | ||||
|   smol-toml@1.3.1: | ||||
|     resolution: {integrity: sha512-tEYNll18pPKHroYSmLLrksq233j021G0giwW7P3D24jC54pQ5W5BXMsQ/Mvw1OJCmEYDgY+lrzT+3nNUtoNfXQ==} | ||||
|   smol-toml@1.3.4: | ||||
|     resolution: {integrity: sha512-UOPtVuYkzYGee0Bd2Szz8d2G3RfMfJ2t3qVdZUAozZyAk+a0Sxa+QKix0YCwjL/A1RR0ar44nCxaoN9FxdJGwA==} | ||||
|     engines: {node: '>= 18'} | ||||
|  | ||||
|   string-width@4.2.3: | ||||
| @@ -392,8 +392,8 @@ packages: | ||||
|     resolution: {integrity: sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A==} | ||||
|     engines: {node: '>=8'} | ||||
|  | ||||
|   strip-ansi@7.1.0: | ||||
|     resolution: {integrity: sha512-iq6eVVI64nQQTRYq2KtEg2d2uU7LElhTJwsH4YzIHZshxlgZms/wIc4VoDQTlG/IvVIrBKG06CrZnp0qv7hkcQ==} | ||||
|   strip-ansi@7.1.2: | ||||
|     resolution: {integrity: sha512-gmBGslpoQJtgnMAvOVqGZpEz9dyoKTCzy2nfz/n8aIFhN/jCE/rCmcxabB6jOOHV+0WNnylOxaxBQPSvcWklhA==} | ||||
|     engines: {node: '>=12'} | ||||
|  | ||||
|   strip-json-comments@3.1.1: | ||||
| @@ -419,26 +419,26 @@ packages: | ||||
|   wrappy@1.0.2: | ||||
|     resolution: {integrity: sha512-l4Sp/DRseor9wL6EvV2+TuQn63dMkPjZ/sp9XkghTEbV9KlPS1xUsZ3u7/IQO4wxtcFB4bgpQPRcR3QCvezPcQ==} | ||||
|  | ||||
|   yaml@2.7.0: | ||||
|     resolution: {integrity: sha512-+hSoy/QHluxmC9kCIJyL/uyFmLmc+e5CFR5Wa+bpIhIj85LVb9ZH2nVnqrHoSvKogwODv0ClqZkmiSSaIH5LTA==} | ||||
|     engines: {node: '>= 14'} | ||||
|   yaml@2.8.1: | ||||
|     resolution: {integrity: sha512-lcYcMxX2PO9XMGvAJkJ3OsNMw+/7FKes7/hgerGUYWIoWu5j/+YQqcZr5JnPZWzOsEBgMbSbiSTn/dv/69Mkpw==} | ||||
|     engines: {node: '>= 14.6'} | ||||
|     hasBin: true | ||||
|  | ||||
| snapshots: | ||||
|  | ||||
|   '@bitnami/readme-generator-for-helm@2.7.0': | ||||
|   '@bitnami/readme-generator-for-helm@2.7.2': | ||||
|     dependencies: | ||||
|       commander: 13.1.0 | ||||
|       dot-object: 2.1.5 | ||||
|       lodash: 4.17.21 | ||||
|       markdown-table: 2.0.0 | ||||
|       yaml: 2.7.0 | ||||
|       yaml: 2.8.1 | ||||
|  | ||||
|   '@isaacs/cliui@8.0.2': | ||||
|     dependencies: | ||||
|       string-width: 5.1.2 | ||||
|       string-width-cjs: string-width@4.2.3 | ||||
|       strip-ansi: 7.1.0 | ||||
|       strip-ansi: 7.1.2 | ||||
|       strip-ansi-cjs: strip-ansi@6.0.1 | ||||
|       wrap-ansi: 8.1.0 | ||||
|       wrap-ansi-cjs: wrap-ansi@7.0.0 | ||||
| @@ -458,24 +458,24 @@ snapshots: | ||||
|  | ||||
|   ansi-regex@5.0.1: {} | ||||
|  | ||||
|   ansi-regex@6.1.0: {} | ||||
|   ansi-regex@6.2.2: {} | ||||
|  | ||||
|   ansi-styles@4.3.0: | ||||
|     dependencies: | ||||
|       color-convert: 2.0.1 | ||||
|  | ||||
|   ansi-styles@6.2.1: {} | ||||
|   ansi-styles@6.2.3: {} | ||||
|  | ||||
|   argparse@2.0.1: {} | ||||
|  | ||||
|   balanced-match@1.0.2: {} | ||||
|  | ||||
|   brace-expansion@1.1.11: | ||||
|   brace-expansion@1.1.12: | ||||
|     dependencies: | ||||
|       balanced-match: 1.0.2 | ||||
|       concat-map: 0.0.1 | ||||
|  | ||||
|   brace-expansion@2.0.1: | ||||
|   brace-expansion@2.0.2: | ||||
|     dependencies: | ||||
|       balanced-match: 1.0.2 | ||||
|  | ||||
| @@ -505,11 +505,11 @@ snapshots: | ||||
|       shebang-command: 2.0.0 | ||||
|       which: 2.0.2 | ||||
|  | ||||
|   debug@4.4.0: | ||||
|   debug@4.4.3: | ||||
|     dependencies: | ||||
|       ms: 2.1.3 | ||||
|  | ||||
|   decode-named-character-reference@1.1.0: | ||||
|   decode-named-character-reference@1.2.0: | ||||
|     dependencies: | ||||
|       character-entities: 2.0.2 | ||||
|  | ||||
| @@ -559,7 +559,7 @@ snapshots: | ||||
|       once: 1.4.0 | ||||
|       path-is-absolute: 1.0.1 | ||||
|  | ||||
|   ignore@7.0.3: {} | ||||
|   ignore@7.0.5: {} | ||||
|  | ||||
|   inflight@1.0.6: | ||||
|     dependencies: | ||||
| @@ -599,7 +599,7 @@ snapshots: | ||||
|  | ||||
|   jsonpointer@5.0.1: {} | ||||
|  | ||||
|   katex@0.16.21: | ||||
|   katex@0.16.22: | ||||
|     dependencies: | ||||
|       commander: 8.3.0 | ||||
|  | ||||
| @@ -628,14 +628,14 @@ snapshots: | ||||
|     dependencies: | ||||
|       commander: 13.1.0 | ||||
|       glob: 10.4.5 | ||||
|       ignore: 7.0.3 | ||||
|       ignore: 7.0.5 | ||||
|       js-yaml: 4.1.0 | ||||
|       jsonc-parser: 3.3.1 | ||||
|       jsonpointer: 5.0.1 | ||||
|       markdownlint: 0.37.4 | ||||
|       minimatch: 9.0.5 | ||||
|       run-con: 1.3.2 | ||||
|       smol-toml: 1.3.1 | ||||
|       smol-toml: 1.3.4 | ||||
|     transitivePeerDependencies: | ||||
|       - supports-color | ||||
|  | ||||
| @@ -657,7 +657,7 @@ snapshots: | ||||
|  | ||||
|   micromark-core-commonmark@2.0.2: | ||||
|     dependencies: | ||||
|       decode-named-character-reference: 1.1.0 | ||||
|       decode-named-character-reference: 1.2.0 | ||||
|       devlop: 1.1.0 | ||||
|       micromark-factory-destination: 2.0.1 | ||||
|       micromark-factory-label: 2.0.1 | ||||
| @@ -714,7 +714,7 @@ snapshots: | ||||
|     dependencies: | ||||
|       '@types/katex': 0.16.7 | ||||
|       devlop: 1.1.0 | ||||
|       katex: 0.16.21 | ||||
|       katex: 0.16.22 | ||||
|       micromark-factory-space: 2.0.1 | ||||
|       micromark-util-character: 2.1.1 | ||||
|       micromark-util-symbol: 2.0.1 | ||||
| @@ -808,8 +808,8 @@ snapshots: | ||||
|   micromark@4.0.1: | ||||
|     dependencies: | ||||
|       '@types/debug': 4.1.12 | ||||
|       debug: 4.4.0 | ||||
|       decode-named-character-reference: 1.1.0 | ||||
|       debug: 4.4.3 | ||||
|       decode-named-character-reference: 1.2.0 | ||||
|       devlop: 1.1.0 | ||||
|       micromark-core-commonmark: 2.0.2 | ||||
|       micromark-factory-space: 2.0.1 | ||||
| @@ -829,11 +829,11 @@ snapshots: | ||||
|  | ||||
|   minimatch@3.1.2: | ||||
|     dependencies: | ||||
|       brace-expansion: 1.1.11 | ||||
|       brace-expansion: 1.1.12 | ||||
|  | ||||
|   minimatch@9.0.5: | ||||
|     dependencies: | ||||
|       brace-expansion: 2.0.1 | ||||
|       brace-expansion: 2.0.2 | ||||
|  | ||||
|   minimist@1.2.8: {} | ||||
|  | ||||
| @@ -852,7 +852,7 @@ snapshots: | ||||
|       '@types/unist': 2.0.11 | ||||
|       character-entities-legacy: 3.0.0 | ||||
|       character-reference-invalid: 2.0.1 | ||||
|       decode-named-character-reference: 1.1.0 | ||||
|       decode-named-character-reference: 1.2.0 | ||||
|       is-alphanumerical: 2.0.1 | ||||
|       is-decimal: 2.0.1 | ||||
|       is-hexadecimal: 2.0.1 | ||||
| @@ -885,7 +885,7 @@ snapshots: | ||||
|  | ||||
|   signal-exit@4.1.0: {} | ||||
|  | ||||
|   smol-toml@1.3.1: {} | ||||
|   smol-toml@1.3.4: {} | ||||
|  | ||||
|   string-width@4.2.3: | ||||
|     dependencies: | ||||
| @@ -897,15 +897,15 @@ snapshots: | ||||
|     dependencies: | ||||
|       eastasianwidth: 0.2.0 | ||||
|       emoji-regex: 9.2.2 | ||||
|       strip-ansi: 7.1.0 | ||||
|       strip-ansi: 7.1.2 | ||||
|  | ||||
|   strip-ansi@6.0.1: | ||||
|     dependencies: | ||||
|       ansi-regex: 5.0.1 | ||||
|  | ||||
|   strip-ansi@7.1.0: | ||||
|   strip-ansi@7.1.2: | ||||
|     dependencies: | ||||
|       ansi-regex: 6.1.0 | ||||
|       ansi-regex: 6.2.2 | ||||
|  | ||||
|   strip-json-comments@3.1.1: {} | ||||
|  | ||||
| @@ -923,10 +923,10 @@ snapshots: | ||||
|  | ||||
|   wrap-ansi@8.1.0: | ||||
|     dependencies: | ||||
|       ansi-styles: 6.2.1 | ||||
|       ansi-styles: 6.2.3 | ||||
|       string-width: 5.1.2 | ||||
|       strip-ansi: 7.1.0 | ||||
|       strip-ansi: 7.1.2 | ||||
|  | ||||
|   wrappy@1.0.2: {} | ||||
|  | ||||
|   yaml@2.7.0: {} | ||||
|   yaml@2.8.1: {} | ||||
|   | ||||
| @@ -9,19 +9,19 @@ | ||||
|   labels: [ | ||||
|     'kind/dependency', | ||||
|   ], | ||||
|   "digest": { | ||||
|     "automerge": true | ||||
|   digest: { | ||||
|     automerge: true, | ||||
|   }, | ||||
|   automergeStrategy: 'squash', | ||||
|   'git-submodules': { | ||||
|     'enabled': true | ||||
|     enabled: true, | ||||
|   }, | ||||
|   customManagers: [ | ||||
|     { | ||||
|       description: 'Gitea-version of https://docs.renovatebot.com/presets-regexManagers/#regexmanagersgithubactionsversions', | ||||
|       customType: 'regex', | ||||
|       fileMatch: [ | ||||
|         '.gitea/workflows/.+\\.ya?ml$', | ||||
|       managerFilePatterns: [ | ||||
|         '/.gitea/workflows/.+\\.ya?ml$/', | ||||
|       ], | ||||
|       matchStrings: [ | ||||
|         '# renovate: datasource=(?<datasource>[a-z-.]+?) depName=(?<depName>[^\\s]+?)(?: (?:lookupName|packageName)=(?<packageName>[^\\s]+?))?(?: versioning=(?<versioning>[a-z-0-9]+?))?\\s+[A-Za-z0-9_]+?_VERSION\\s*:\\s*["\']?(?<currentValue>.+?)["\']?\\s', | ||||
| @@ -30,13 +30,23 @@ | ||||
|     { | ||||
|       description: 'Detect helm-unittest yaml schema file', | ||||
|       customType: 'regex', | ||||
|       fileMatch: ['.vscode/settings\\.json$'], | ||||
|       managerFilePatterns: [ | ||||
|         '/.vscode/settings\\.json$/', | ||||
|       ], | ||||
|       matchStrings: [ | ||||
|         'https:\\/\\/raw\\.githubusercontent\\.com\\/(?<depName>[^\\s]+?)\\/(?<currentValue>v[0-9.]+?)\\/schema\\/helm-testsuite\\.json', | ||||
|       ], | ||||
|       datasourceTemplate: 'github-releases', | ||||
|     }, | ||||
|   ], | ||||
|   lockFileMaintenance: { | ||||
|     "enabled": true, | ||||
|     "commitMessageAction": "update", | ||||
|     "commitMessageTopic": "lockfiles", | ||||
|     schedule: [ | ||||
|       'at any time', | ||||
|     ] | ||||
|   }, | ||||
|   packageRules: [ | ||||
|     { | ||||
|       groupName: 'subcharts (minor & patch)', | ||||
| @@ -49,6 +59,17 @@ | ||||
|         'digest', | ||||
|       ], | ||||
|     }, | ||||
|     { | ||||
|       groupName: 'bats testing framework', | ||||
|       matchManagers: [ | ||||
|         'git-submodules', | ||||
|       ], | ||||
|       matchUpdateTypes: [ | ||||
|         'minor', | ||||
|         'patch', | ||||
|         'digest', | ||||
|       ], | ||||
|     }, | ||||
|     { | ||||
|       groupName: 'workflow dependencies (minor & patch)', | ||||
|       matchManagers: [ | ||||
|   | ||||
| @@ -54,7 +54,7 @@ spec: | ||||
|             - name: DOCKER_TLS_VERIFY | ||||
|               value: "1" | ||||
|             - name: DOCKER_CERT_PATH | ||||
|               value: /certs/server | ||||
|               value: /certs/client | ||||
|             - name: GITEA_RUNNER_REGISTRATION_TOKEN | ||||
|               valueFrom: | ||||
|                 secretKeyRef: | ||||
| @@ -64,13 +64,15 @@ spec: | ||||
|               value: {{ include "gitea.actions.local_root_url" . }} | ||||
|             - name: CONFIG_FILE | ||||
|               value: /actrunner/config.yaml | ||||
|             - name: TZ | ||||
|               value: {{ .Values.statefulset.timezone | default "Etc/UTC" }} | ||||
|           resources: | ||||
|             {{- toYaml .Values.statefulset.resources | nindent 12 }} | ||||
|           volumeMounts: | ||||
|             - mountPath: /actrunner/config.yaml | ||||
|               name: act-runner-config | ||||
|               subPath: config.yaml | ||||
|             - mountPath: /certs/server | ||||
|             - mountPath: /certs/client | ||||
|               name: docker-certs | ||||
|             - mountPath: /data | ||||
|               name: data-act-runner | ||||
| @@ -86,7 +88,7 @@ spec: | ||||
|             - name: DOCKER_TLS_VERIFY | ||||
|               value: "1" | ||||
|             - name: DOCKER_CERT_PATH | ||||
|               value: /certs/server | ||||
|               value: /certs/client | ||||
|             {{- if .Values.statefulset.dind.extraEnvs }} | ||||
|             {{- toYaml .Values.statefulset.dind.extraEnvs | nindent 12 }} | ||||
|             {{- end }} | ||||
| @@ -95,7 +97,7 @@ spec: | ||||
|           resources: | ||||
|             {{- toYaml .Values.statefulset.resources | nindent 12 }} | ||||
|           volumeMounts: | ||||
|             - mountPath: /certs/server | ||||
|             - mountPath: /certs/client | ||||
|               name: docker-certs | ||||
|             {{- with .Values.statefulset.dind.extraVolumeMounts }} | ||||
|             {{- toYaml . | nindent 12 }} | ||||
|   | ||||
| @@ -69,7 +69,7 @@ tests: | ||||
|           name: gitea-unittests-actions-act-runner | ||||
|       - equal: | ||||
|           path: spec.template.metadata.annotations["checksum/config"] | ||||
|           value: "7566d9c60261bf8cbff6a6936fc7aead96cec540d8c793d142a5ad4664c56ba5" | ||||
|           value: "2bafbf04b3c4293c8ddf895ae3d908e14176ee54a6c724c8cf5b2a1e43c6ece7" | ||||
|   - it: renders a StatefulSet http (with correct GITEA_INSTANCE_URL env from giteaRootURL) | ||||
|     template: templates/statefulset.yaml | ||||
|     set: | ||||
|   | ||||
| @@ -5,6 +5,7 @@ | ||||
| ## @param init.image.repository The image used for the init containers | ||||
| ## @param init.image.tag The image tag used for the init containers | ||||
| ## @param statefulset.replicas the amount of (replica) runner pods deployed | ||||
| ## @param statefulset.timezone is the timezone that will be set in the act_runner image | ||||
| ## @param statefulset.annotations Act runner annotations | ||||
| ## @param statefulset.labels Act runner labels | ||||
| ## @param statefulset.resources Act runner resources | ||||
| @@ -29,6 +30,7 @@ | ||||
| enabled: false | ||||
| statefulset: | ||||
|   replicas: 1 | ||||
|   timezone: Etc/UTC | ||||
|   annotations: {} | ||||
|   labels: {} | ||||
|   resources: {} | ||||
| @@ -39,7 +41,7 @@ statefulset: | ||||
|  | ||||
|   actRunner: | ||||
|     repository: gitea/act_runner | ||||
|     tag: 0.2.11 | ||||
|     tag: 0.2.13 | ||||
|     pullPolicy: IfNotPresent | ||||
|     extraVolumeMounts: [] | ||||
|  | ||||
| @@ -49,10 +51,13 @@ statefulset: | ||||
|         level: debug | ||||
|       cache: | ||||
|         enabled: false | ||||
|       container: | ||||
|         require_docker: true | ||||
|         docker_timeout: 300s | ||||
|  | ||||
|   dind: | ||||
|     repository: docker | ||||
|     tag: 25.0.2-dind | ||||
|     tag: 28.3.3-dind | ||||
|     pullPolicy: IfNotPresent | ||||
|     extraVolumeMounts: [] | ||||
|  | ||||
|   | ||||
		Reference in New Issue
	
	Block a user