Add core functionality (#1)

This PR adds core GitHub Actions functionality, along with
unit/integration tests.

Author: henrybell

.eslintrc.js

@@ -0,0 +1,28 @@
+/*
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the 'License');
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an 'AS IS' BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+module.exports = {
+  root: true,
+  parser: '@typescript-eslint/parser',
+  plugins: ['@typescript-eslint'],
+  extends: [
+    'eslint:recommended',
+    'plugin:@typescript-eslint/eslint-recommended',
+    'plugin:@typescript-eslint/recommended',
+    'plugin:prettier/recommended',
+  ],
+  ignorePatterns: ['**/dist/*'],
+};

.github/dependabot.yml

@@ -0,0 +1,17 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  - package-ecosystem: "npm"
+    directory: "/"
+    commit-message:
+      prefix: "chore(deps): "
+    rebase-strategy: "disabled"
+    schedule:
+      interval: "daily"
+    ignore:
+      - dependency-name: "*"
+        update-types: ["version-update:semver-patch", "version-update:semver-minor"] # Security updates are unaffected by this setting

.github/workflows/draft-release.yml

@@ -0,0 +1,24 @@
+name: 'Draft release'
+
+on:
+  workflow_dispatch:
+    inputs:
+      version_strategy:
+        description: 'Version strategy: The strategy to used to update the version based on semantic versioning (more info at https://semver.org/).'
+        required: true
+        default: 'patch'
+        type: 'choice'
+        options:
+          - 'major'
+          - 'minor'
+          - 'patch'
+
+jobs:
+  draft-release:
+    name: 'Draft release'
+    uses: 'google-github-actions/.github/.github/workflows/draft-release.yml@v0'
+    with:
+      version_strategy: '${{ github.event.inputs.version_strategy }}'
+    # secrets must be explicitly passed to reusable workflows https://docs.github.com/en/enterprise-cloud@latest/actions/using-workflows/reusing-workflows#using-inputs-and-secrets-in-a-reusable-workflow
+    secrets:
+      ACTIONS_BOT_TOKEN: '${{ secrets.ACTIONS_BOT_TOKEN }}'

.github/workflows/integration.yml

@@ -0,0 +1,105 @@
+name: 'Integration'
+
+on:
+  push:
+    branches:
+    - 'main'
+  pull_request:
+    branches:
+    - 'main'
+  workflow_dispatch:
+
+concurrency:
+  group: '${{ github.workflow }}-${{ github.head_ref || github.ref }}'
+  cancel-in-progress: true
+
+permissions:
+  contents: 'read'
+  id-token: 'write'
+
+env:
+  REGION: 'us-central1'
+
+jobs:
+  test:
+    if: ${{ github.event_name == 'push' || github.repository == github.event.pull_request.head.repo.full_name && github.actor != 'dependabot[bot]' }}
+    runs-on: 'ubuntu-latest'
+
+    steps:
+    - id: 'checkout'
+      name: 'Checkout'
+      uses: 'actions/checkout@v3'
+
+    - id: 'compute-test-uid'
+      name: 'Compute test UID'
+      run: |-
+        echo "TEST_UID=${GITHUB_JOB}-${GITHUB_SHA::7}-${GITHUB_RUN_NUMBER}" >> ${GITHUB_ENV}
+
+    - id: 'set-up-node'
+      name: 'Set up Node'
+      uses: 'actions/setup-node@v3'
+      with:
+        node-version: '16.x'
+
+    - id: 'build'
+      name: 'Build'
+      run: 'npm ci && npm run build'
+
+    - id: 'auth'
+      name: 'Auth'
+      uses: 'google-github-actions/auth@v1'
+      with:
+        workload_identity_provider: '${{ secrets.WIF_PROVIDER_NAME }}'
+        service_account: '${{ secrets.SERVICE_ACCOUNT_EMAIL }}'
+
+    - id: 'gcloud-setup'
+      name: 'Set up Cloud SDK'
+      uses: 'google-github-actions/setup-gcloud@main'
+      with:
+        project_id: '${{ secrets.PROJECT_ID }}'
+
+    - id: 'populate-pipeline-template'
+      name: 'Populate values in template for Cloud Deploy pipeline and target'
+      run: 'envsubst < tests/fixtures/clouddeploy.yaml.template > tests/fixtures/clouddeploy.yaml'
+      env:
+        PROJECT_ID: '${{ secrets.PROJECT_ID }}'
+        REGION: '${{ env.REGION }}'
+
+    - id: 'create-pipeline'
+      name: 'Create pipeline'
+      run: 'gcloud deploy apply --file=tests/fixtures/clouddeploy.yaml --region=${REGION}'
+
+    - id: 'create-release'
+      name: 'Create release'
+      uses: './'
+      with:
+        name: '${{ env.TEST_UID }}'
+        region: '${{ env.REGION }}'
+        delivery_pipeline: 'gha-test-pipeline'
+        source: 'tests/fixtures/'
+        images: 'gha-test-app=gcr.io/cloudrun/hello:latest'
+        description: 'GHA test ${{ env.TEST_UID }}'
+        disable_initial_rollout: true
+        labels: |-
+          label1=value1
+        annotations: |-
+          annotation1=value1
+
+    - id: 'report-release'
+      name: 'Report Cloud Deploy release'
+      run: |-
+        echo "Created release: ${{ steps.create-release.outputs.name }}"
+        echo "Release link: ${{ steps.create-release.outputs.link }}"
+
+    - id: 'run-e2e-tests'
+      name: 'Run Tests'
+      run: 'npm run e2e-tests'
+      env:
+        ANNOTATIONS: '{"git-sha":"${{ github.sha }}", "annotation1":"value1"}'
+        DELIVERY_PIPELINE: 'gha-test-pipeline'
+        DESCRIPTION: 'GHA test ${{ env.TEST_UID }}'
+        IMAGES: 'gha-test-app=gcr.io/cloudrun/hello:latest'
+        LABELS: '{"managed-by":"github-actions", "label1":"value1"}'
+        NAME: 'projects/${{ secrets.PROJECT_ID }}/locations/${{ env.REGION }}/deliveryPipelines/gha-test-pipeline/releases/${{ env.TEST_UID }}'
+        PROJECT_ID: '${{ secrets.PROJECT_ID }}'
+        REGION: '${{ env.REGION }}'

.github/workflows/release.yml

@@ -0,0 +1,12 @@
+name: 'Release'
+
+on:
+  push:
+    branches:
+      - 'main'
+
+jobs:
+  release:
+    if: "startsWith(github.event.head_commit.message, 'Release: v')"
+    name: 'Release'
+    uses: 'google-github-actions/.github/.github/workflows/release.yml@v0'

.github/workflows/unit.yml

@@ -0,0 +1,44 @@
+name: 'Unit'
+
+on:
+  push:
+    branches:
+    - 'main'
+  pull_request:
+    branches:
+    - 'main'
+  workflow_dispatch:
+
+concurrency:
+  group: '${{ github.workflow }}-${{ github.head_ref || github.ref }}'
+  cancel-in-progress: true
+
+jobs:
+  unit:
+    strategy:
+      fail-fast: false
+      matrix:
+        os:
+        - 'ubuntu-latest'
+        - 'windows-latest'
+        - 'macos-latest'
+    runs-on: '${{ matrix.os }}'
+
+    steps:
+    - uses: 'actions/checkout@v3'
+
+    - uses: 'actions/setup-node@v3'
+      with:
+        node-version: '16.x'
+
+    - name: 'npm build'
+      run: 'npm ci && npm run build'
+
+    - name: 'npm lint'
+      # There's no need to run the linter for each operating system, since it
+      # will find the same thing 3x and clog up the PR review.
+      if: ${{ matrix.os == 'ubuntu-latest' }}
+      run: 'npm run lint'
+
+    - name: 'npm test'
+      run: 'npm run test'

.gitignore

@@ -0,0 +1,45 @@
+node_modules/
+runner/
+
+# Rest of the file pulled from https://github.com/github/gitignore/blob/main/Node.gitignore
+# Logs
+logs
+*.log
+npm-debug.log*
+yarn-debug.log*
+yarn-error.log*
+lerna-debug.log*
+
+# Diagnostic reports (https://nodejs.org/api/report.html)
+report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
+
+# Runtime data
+pids
+*.pid
+*.seed
+*.pid.lock
+
+# Directory for instrumented libs generated by jscoverage/JSCover
+lib-cov
+
+# Coverage directory used by tools like istanbul
+coverage
+*.lcov
+
+# TypeScript v1 declaration files
+typings/
+
+# TypeScript cache
+*.tsbuildinfo
+
+# Optional npm cache directory
+.npm
+
+# Optional eslint cache
+.eslintcache
+
+# Optional REPL history
+.node_repl_history
+
+# Output of 'npm pack'
+*.tgz

.prettierrc.js

@@ -0,0 +1,29 @@
+/*
+ * Copyright 2023 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+module.exports = {
+  arrowParens: 'always',
+  bracketSpacing: true,
+  endOfLine: 'auto',
+  jsxSingleQuote: true,
+  printWidth: 100,
+  quoteProps: 'consistent',
+  semi: true,
+  singleQuote: true,
+  tabWidth: 2,
+  trailingComma: 'all',
+  useTabs: false,
+};