Add security policy #325
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: | |
| - 5.x | |
| pull_request: | |
| branches: | |
| - '*' | |
| workflow_dispatch: | |
| env: | |
| DB_URL: Cake\ElasticSearch\Datasource\Connection://127.0.0.1:9200?driver=Cake\ElasticSearch\Datasource\Connection | |
| jobs: | |
| testsuite: | |
| runs-on: ubuntu-latest | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| php-version: ['8.1', '8.2', '8.3', '8.4', '8.5'] | |
| prefer-lowest: [''] | |
| include: | |
| - php-version: '8.1' | |
| prefer-lowest: 'prefer-lowest' | |
| services: | |
| elasticsearch: | |
| image: elasticsearch:9.1.5 | |
| env: | |
| discovery.type: single-node | |
| xpack.security.enabled: false | |
| ES_JAVA_OPTS: -Xms512m -Xmx512m | |
| ports: | |
| - 9200:9200 | |
| options: >- | |
| --health-cmd "curl -f http://localhost:9200/_cluster/health || exit 1" | |
| --health-interval 10s | |
| --health-timeout 5s | |
| --health-retries 5 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| persist-credentials: false | |
| - name: Setup PHP | |
| uses: shivammathur/setup-php@v2 | |
| with: | |
| php-version: ${{ matrix.php-version }} | |
| extensions: mbstring, intl, apcu | |
| ini-values: apc.enable_cli = 1 | |
| coverage: pcov | |
| - name: Get composer cache directory | |
| id: composer-cache | |
| run: echo "dir=$(composer config cache-files-dir)" >> $GITHUB_OUTPUT | |
| - name: Get date part for cache key | |
| id: key-date | |
| run: echo "date=$(date +'%Y-%m')" >> $GITHUB_OUTPUT | |
| - name: Cache composer dependencies | |
| uses: actions/cache@v4 | |
| with: | |
| path: ${{ steps.composer-cache.outputs.dir }} | |
| key: ${{ runner.os }}-composer-${{ steps.key-date.outputs.date }}-${{ hashFiles('composer.json') }}-${{ matrix.prefer-lowest }} | |
| - name: Composer install | |
| run: | | |
| if ${{ matrix.prefer-lowest == 'prefer-lowest' }}; then | |
| composer update --prefer-lowest --prefer-stable | |
| else | |
| composer update | |
| fi | |
| - name: Setup problem matchers for PHPUnit | |
| if: matrix.php-version == '8.4' | |
| run: echo "::add-matcher::${{ runner.tool_cache }}/phpunit.json" | |
| - name: Run PHPUnit | |
| run: | | |
| if [[ ${{ matrix.php-version }} == '8.4' ]]; then | |
| export CODECOVERAGE=1 && vendor/bin/phpunit --display-incomplete --display-skipped --coverage-clover=coverage.xml | |
| else | |
| vendor/bin/phpunit | |
| fi | |
| - name: Submit code coverage | |
| if: matrix.php-version == '8.4' | |
| uses: codecov/codecov-action@v5 | |
| with: | |
| token: ${{ secrets.CODECOV_TOKEN }} | |
| cs-stan: | |
| name: Coding Standard & Static Analysis | |
| runs-on: ubuntu-latest | |
| services: | |
| elasticsearch: | |
| image: elasticsearch:9.1.5 | |
| env: | |
| discovery.type: single-node | |
| xpack.security.enabled: false | |
| ES_JAVA_OPTS: -Xms512m -Xmx512m | |
| ports: | |
| - 9200:9200 | |
| options: >- | |
| --health-cmd "curl -f http://localhost:9200/_cluster/health || exit 1" | |
| --health-interval 10s | |
| --health-timeout 5s | |
| --health-retries 5 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| persist-credentials: false | |
| - name: Setup PHP | |
| uses: shivammathur/setup-php@v2 | |
| with: | |
| php-version: '8.4' | |
| extensions: mbstring, intl, apcu | |
| tools: cs2pr | |
| coverage: none | |
| - name: Composer install | |
| uses: ramsey/composer-install@v2 | |
| - name: Setup PHPStan | |
| run: composer phpstan-setup | |
| - name: Setup Rector | |
| run: composer rector-setup | |
| - name: Run PHP CodeSniffer | |
| run: vendor/bin/phpcs --report=checkstyle src/ tests/ | cs2pr | |
| - name: Run phpstan | |
| if: always() | |
| run: composer phpstan -- --error-format=github | |
| - name: Run rector | |
| if: always() | |
| run: composer rector-check |