ci: bump actions/setup-python from 5 to 6 #2
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [ master ] | |
| pull_request: | |
| branches: [ master ] | |
| jobs: | |
| test: | |
| runs-on: ${{ matrix.os }} | |
| strategy: | |
| matrix: | |
| os: [ubuntu-latest, windows-latest, macOS-latest] | |
| python-version: ["3.10", "3.11", "3.12"] | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Python ${{ matrix.python-version }} | |
| uses: actions/setup-python@v6 | |
| with: | |
| python-version: ${{ matrix.python-version }} | |
| - name: Cache pip dependencies | |
| uses: actions/cache@v4 | |
| with: | |
| path: ~/.cache/pip | |
| key: ${{ runner.os }}-pip-${{ hashFiles('**/pyproject.toml') }} | |
| restore-keys: | | |
| ${{ runner.os }}-pip- | |
| - name: Install dependencies | |
| run: | | |
| python -m pip install --upgrade pip | |
| pip install -e ".[dev]" | |
| - name: Lint with ruff | |
| run: | | |
| ruff check src/ tests/ | |
| - name: Type check with mypy | |
| run: | | |
| mypy src/ | |
| - name: Test with pytest | |
| run: | | |
| pytest tests/ -v --tb=short | |
| - name: Build package | |
| run: | | |
| pip install build | |
| python -m build | |
| - name: Test package installation | |
| run: | | |
| pip install dist/*.whl | |
| vector-bot --help | |
| security: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Python | |
| uses: actions/setup-python@v6 | |
| with: | |
| python-version: "3.10" | |
| - name: Install dependencies | |
| run: | | |
| python -m pip install --upgrade pip | |
| pip install safety bandit | |
| - name: Check dependencies for vulnerabilities | |
| run: | | |
| safety check --json | |
| - name: Security analysis with bandit | |
| run: | | |
| bandit -r src/ -f json | |
| build-executable: | |
| runs-on: ${{ matrix.os }} | |
| strategy: | |
| matrix: | |
| os: [ubuntu-latest, windows-latest, macOS-latest] | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Python | |
| uses: actions/setup-python@v6 | |
| with: | |
| python-version: "3.10" | |
| - name: Install dependencies | |
| run: | | |
| python -m pip install --upgrade pip | |
| pip install -e . | |
| pip install pyinstaller | |
| - name: Build executable | |
| run: | | |
| python build_executable.py | |
| - name: Test executable (Unix) | |
| if: runner.os != 'Windows' | |
| run: | | |
| ./dist/vector-bot --help | |
| - name: Test executable (Windows) | |
| if: runner.os == 'Windows' | |
| run: | | |
| ./dist/vector-bot.exe --help | |
| - name: Upload executable artifacts | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: vector-bot-${{ runner.os }} | |
| path: | | |
| dist/vector-bot* | |
| retention-days: 30 |