Merge pull request #1 from aepfli/feature/gitlab-ci-compatibility

Feature/gitlab ci compatibility

Author: aepfli

.dockerignore

@@ -0,0 +1,2 @@
+__tests__
+.github

.github/workflows/ci.yml

@@ -6,6 +6,9 @@ on: # rebuild any PRs and main branch changes
       - master
       - 'releases/*'
 
+env:
+  IMAGE_NAME: wrapper-validation
+
 jobs:
   build: # make sure build/ci work properly
     runs-on: ubuntu-latest
@@ -22,3 +25,42 @@ jobs:
       with:
         # to allow the invalid wrapper jar present in test data
         allow-checksums: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
+
+  push:
+    runs-on: ubuntu-latest
+    permissions:
+      packages: write
+      contents: read
+
+    steps:
+      - uses: actions/checkout@v2
+
+      - name: Build image
+        run: docker build . --file Dockerfile --tag $IMAGE_NAME --label "runnumber=${GITHUB_RUN_ID}"
+
+      - name: Test image
+        run: |
+          npm install -g gitlab-ci-local
+          gitlab-ci-local --file __tests__/.gitlab-ci.yml
+
+      - name: Log in to registry
+        # This is where you will update the PAT to GITHUB_TOKEN
+        run: echo "${{ secrets.GITHUB_TOKEN }}" | docker login ghcr.io -u ${{ github.actor }} --password-stdin
+        if: github.event_name != 'pull_request'
+      - name: Push image
+        run: |
+          IMAGE_ID=ghcr.io/${{ github.repository_owner }}/$IMAGE_NAME
+
+          # Change all uppercase to lowercase
+          IMAGE_ID=$(echo $IMAGE_ID | tr '[A-Z]' '[a-z]')
+          # Strip git ref prefix from version
+          VERSION=$(echo "${{ github.ref }}" | sed -e 's,.*/\(.*\),\1,')
+          # Strip "v" prefix from tag name
+          [[ "${{ github.ref }}" == "refs/tags/"* ]] && VERSION=$(echo $VERSION | sed -e 's/^v//')
+          # Use Docker `latest` tag convention
+          [ "$VERSION" == "master" ] && VERSION=latest
+          echo IMAGE_ID=$IMAGE_ID
+          echo VERSION=$VERSION
+          docker tag $IMAGE_NAME $IMAGE_ID:$VERSION
+          docker push $IMAGE_ID:$VERSION
+        if: github.event_name != 'pull_request'

.gitlab-ci.yml

@@ -0,0 +1,96 @@
+
+
+
+    # This is a GitLab CI configuration to build the project as a docker image
+# The file is generic enough to be dropped in a project containing a working Dockerfile
+# Author: Florent CHAUVEAU <[email protected]>
+# Mentioned here: https://blog.callr.tech/building-docker-images-with-gitlab-ci-best-practices/
+
+
+
+stages:
+  - build
+  - test
+  - push
+
+.docker: 
+  # do not use "latest" here, if you want this to work in the future
+  image: docker:20
+  services:
+  - docker:20-dind
+  # Use this if your GitLab runner does not use socket binding
+  # services:
+  #   - docker:dind
+
+  before_script:
+    # docker login asks for the password to be passed through stdin for security
+    # we use $CI_REGISTRY_PASSWORD here which is a special variable provided by GitLab
+    # https://docs.gitlab.com/ce/ci/variables/predefined_variables.html
+    - echo -n $CI_REGISTRY_PASSWORD | docker login -u $CI_REGISTRY_USER --password-stdin $CI_REGISTRY
+
+Build:
+  extends: .docker
+  stage: build
+  script:
+    # fetches the latest image (not failing if image is not found)
+    - docker pull $CI_REGISTRY_IMAGE:latest || true
+    # builds the project, passing proxy variables, using OCI labels
+    # notice the cache-from, which is going to use the image we just pulled locally
+    # the built image is tagged locally with the commit SHA, and then pushed to 
+    # the GitLab registry
+    - >
+      docker build
+      --pull
+      --cache-from $CI_REGISTRY_IMAGE:latest
+      --label "org.opencontainers.image.title=$CI_PROJECT_TITLE"
+      --label "org.opencontainers.image.url=$CI_PROJECT_URL"
+      --label "org.opencontainers.image.created=$CI_JOB_STARTED_AT"
+      --label "org.opencontainers.image.revision=$CI_COMMIT_SHA"
+      --label "org.opencontainers.image.version=$CI_COMMIT_REF_NAME"
+      --tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+      .
+    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+
+include:
+  - local: __tests__/.gitlab-ci.yml
+
+validate-wrapper:
+  image: 
+    name: $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+    entrypoint: [""]
+
+# Here, the goal is to tag the "master" branch as "latest"
+Push latest:
+  extends: .docker
+  variables:
+    # We are just playing with Docker here. 
+    # We do not need GitLab to clone the source code.
+    GIT_STRATEGY: none
+  stage: push
+  only:
+    # Only "master" should be tagged "latest"
+    - master
+  script:
+    # Because we have no guarantee that this job will be picked up by the same runner 
+    # that built the image in the previous step, we pull it again locally
+    - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+    # Then we tag it "latest"
+    - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:latest
+    # Annnd we push it.
+    - docker push $CI_REGISTRY_IMAGE:latest
+
+# Finally, the goal here is to Docker tag any Git tag
+# GitLab will start a new pipeline everytime a Git tag is created, which is pretty awesome
+Push tag:
+  extends: .docker
+  variables:
+    # Again, we do not need the source code here. Just playing with Docker.
+    GIT_STRATEGY: none
+  stage: push
+  only:
+    # We want this job to be run on tags only.
+    - tags
+  script:
+    - docker pull $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA
+    - docker tag $CI_REGISTRY_IMAGE:$CI_COMMIT_SHA $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME
+    - docker push $CI_REGISTRY_IMAGE:$CI_COMMIT_REF_NAME

Dockerfile

@@ -0,0 +1,9 @@
+FROM node:12-slim
+
+WORKDIR /app
+
+COPY . .
+
+RUN npm install && npm run-script build && npm install -g
+
+ENTRYPOINT [ "wrapper-validation" ]

README.md

@@ -104,3 +104,11 @@ Regardless of what you find, we still kindly request that you reach out to us an
 
 To learn more about verifying the Gradle Wrapper JAR locally, see our
 [guide on the topic](https://docs.gradle.org/current/userguide/gradle_wrapper.html#wrapper_checksum_verification).
+
+
+## Usage in GitLab CI
+
+```yaml
+include:
+  - remote: https://raw.githubusercontent.com/gradle/wrapper-validation-action/master/WrapperValidation.gitlab-ci.yml
+```

WrapperValidation.gitlab-ci.yml

@@ -0,0 +1,7 @@
+validate-wrapper:
+  stage: .pre
+  image:
+    name: ghcr.io/aepfli/wrapper-validation:latest
+    entrypoint: [""]
+  script:
+    - wrapper-validation

package-lock.json

@@ -4,6 +4,9 @@
   "private": true,
   "description": "Gradle Wrapper Validation Action",
   "main": "lib/main.js",
+  "bin": {
+    "wrapper-validation": "lib/main.js"
+  },
   "scripts": {
     "build": "tsc",
     "format": "prettier --write **/*.ts",
@@ -26,22 +29,24 @@
   "license": "MIT",
   "dependencies": {
     "@actions/core": "1.4.0",
+    "commander": "^8.2.0",
     "typed-rest-client": "1.8.4",
     "unhomoglyph": "1.0.6"
   },
   "devDependencies": {
-    "@types/node": "12.20.16",
+    "@types/js-yaml": "^4.0.3",
+    "@types/node": "^12.20.33",
     "@typescript-eslint/parser": "4.28.4",
     "@vercel/ncc": "0.29.0",
     "eslint": "7.31.0",
     "eslint-plugin-github": "4.1.5",
     "eslint-plugin-jest": "24.4.0",
+    "glob-parent": ">=5.1.2",
     "jest": "27.0.6",
-    "js-yaml": "4.1.0",
+    "js-yaml": "^4.1.0",
     "nock": "13.1.1",
     "prettier": "2.3.2",
     "ts-jest": "27.0.4",
-    "typescript": "4.0.8",
-    "glob-parent": ">=5.1.2"
+    "typescript": "4.0.8"
   }
 }

package.json

@@ -1,25 +1,74 @@
-import * as path from 'path'
-import * as core from '@actions/core'
+#!/usr/bin/env node
 
-import * as validate from './validate'
+import { resolve, dirname } from 'path'
+import { promises as fs } from 'fs'
+import { setFailed, getInput, info } from '@actions/core'
+
+import { findInvalidWrapperJars } from './validate'
+import { Command, Option } from 'commander'
+import jsyaml from 'js-yaml'
+
+interface Action {
+  name: string;
+  description: string;
+  author: string;
+  inputs: Map<string, Input>;
+}
+
+interface Input {
+  description: string;
+  required?: boolean;
+  default?: string;
+}
 
 export async function run(): Promise<void> {
   try {
-    const result = await validate.findInvalidWrapperJars(
-      path.resolve('.'),
-      +core.getInput('min-wrapper-count'),
-      core.getInput('allow-snapshots') === 'true',
-      core.getInput('allow-checksums').split(',')
+    let minWrapperCount: number
+    let allowSnapshots: string
+    let allowChecksums: string
+
+    if (process.env.GITHUB_ACTION) {
+      minWrapperCount = +getInput('min-wrapper-count')
+      allowSnapshots = getInput('allow-snapshots')
+      allowChecksums = getInput('allow-checksums')
+
+    } else {
+      const program = new Command()
+      const actionYaml = jsyaml.load(await fs.readFile(dirname(require.main?.filename ??'') + '/../action.yml', 'utf8')) as Action
+
+      program
+        .description(actionYaml.description)
+
+      Object.entries(actionYaml.inputs).forEach(([key, value]) => {
+        program.addOption(
+          new Option(`--${key} <value>`, value.description)
+            .default(value.default)
+            .env(key.toLocaleUpperCase().replace(/-/g, '_')))
+      })
+
+      program.parse(process.argv)
+      const options = program.opts()
+      minWrapperCount = +options.minWrapperCount
+      allowSnapshots = options.allowSnapshots
+      allowChecksums = options.allowChecksums
+    }
+
+    const result = await findInvalidWrapperJars(
+      resolve('.'),
+      minWrapperCount,
+      allowSnapshots === 'true',
+      allowChecksums.split(',')
     )
     if (result.isValid()) {
-      core.info(result.toDisplayString())
+      info(result.toDisplayString())
     } else {
-      core.setFailed(
+      setFailed(
         `Gradle Wrapper Validation Failed!\n  See https://github.com/gradle/wrapper-validation-action#reporting-failures\n${result.toDisplayString()}`
       )
     }
   } catch (error) {
-    core.setFailed(error.message)
+    if (error instanceof Error)
+      setFailed(error.message)
   }
 }