docs: release kyverno security module v1.30.3 #376

Workflow file for this run

.github/workflows/test-on-kind.yml at 68226b1

	name: Test Modules

	on:
	push:
	branches:
	- main
	- "release/**"
	paths:
	- "modules///base/**"
	- "test/**"
	pull_request:

	permissions: {}

	concurrency:
	group: ci-tests-${{ github.ref }}
	cancel-in-progress: true # cancels obsolete running jobs

	jobs:
	get-changed-modules:
	name: "Build Changed Modules List"
	runs-on: ubuntu-latest

	permissions:
	contents: read

	outputs:
	any_changed: ${{ steps.changed-files.outputs.any_changed }}
	matrix: ${{ steps.changed-files.outputs.all_changed_files }}

	steps:
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	- name: Calculate file differences
	id: changed-files
	uses: tj-actions/changed-files@d6e91a2266cdb9d62096cebf1e8546899c6aa18f # v45.0.6
	with:
	dir_names: true
	json: true
	escape_json: false
	dir_names_max_depth: 4
	files: \|
	modules///base/**
	test/**

	test-module:
	name: "Test"
	if: needs.get-changed-modules.outputs.any_changed == 'true'
	needs:
	- get-changed-modules
	runs-on: ubuntu-latest
	permissions:
	contents: read
	strategy:
	matrix:
	versions:
	- kind: kindest/node:v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30
	kubectl: "v1.31.4"
	- kind: kindest/node:v1.30.8@sha256:17cd608b3971338d9180b00776cb766c50d0a0b6b904ab4ff52fd3fc5c6369bf
	kubectl: "v1.30.8"
	module: ${{ fromJSON(needs.get-changed-modules.outputs.matrix) }}
	steps:
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Kustomize Build
	run: \|
	mkdir ci
	kustomize build ${{ matrix.module }} > ci/rendered.yaml

	- name: Create k8s Kind Cluster for Cilium
	if: matrix.module == 'modules/cni/cilium/base'
	uses: helm/kind-action@a1b0e391336a6ee6713a0583f8c6240d70863de3 # v1.12.0
	with:
	version: v0.26.0
	kubectl_version: "${{ matrix.versions.kubectl }}"
	node_image: "${{ matrix.versions.kind }}"
	config: .github/workflows/kind-configs/no-cni.yaml
	wait: 10s

	- name: Create k8s Kind Cluster
	if: matrix.module != 'modules/cni/cilium/base'
	uses: helm/kind-action@a1b0e391336a6ee6713a0583f8c6240d70863de3 # v1.12.0
	with:
	version: v0.26.0
	kubectl_version: "${{ matrix.versions.kubectl }}"
	node_image: "${{ matrix.versions.kind }}"
	config: .github/workflows/kind-configs/default.yaml
	wait: 60s

	- name: Install module
	run: \|
	kubectl cluster-info
	CRDS=$(yq eval-all 'select(.kind == "CustomResourceDefinition")' ci/rendered.yaml)
	NON_CRDS=$(yq eval-all 'select(.kind != "CustomResourceDefinition")' ci/rendered.yaml)
	if [ -n "${CRDS}" ] ; then
	echo "Apply CRDs.."
	kubectl create -f - <<< ${CRDS}
	echo "Wait until all CRDs are available.."
	kubectl wait --for condition=established crd $(yq eval-all 'select(.kind == "CustomResourceDefinition") \| [ .metadata.name ] \| join(" ")' ci/rendered.yaml )
	fi
	echo "Apply other resources.."
	kubectl create -f - <<< ${NON_CRDS}

	- name: Test - Rollout success
	run: \|
	AWAITABLES="Deployment StatefulSet DaemonSet"
	for KIND in ${AWAITABLES} ; do
	NAMES=$(yq eval-all "select(.kind == \"${KIND}\") \| [ .metadata.name ] \| join(\" \")" ci/rendered.yaml)
	for NAME in $NAMES ; do
	kubectl -n $(yq eval-all "select(.kind == \"${KIND}\" and .metadata.name == \"${NAME}\") \| .metadata.namespace" ci/rendered.yaml ) rollout status "${KIND}" --timeout 10m "${NAME}"
	done
	done

	- name: Custom test script
	if: startsWith( 'test/', ${{matrix.module}} )
	run: \|
	[ ! -x ${{ matrix.module }}/test.sh ] && exit 0
	${{ matrix.module }}/test.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

docs: release kyverno security module v1.30.3 #376

Workflow file

docs: release kyverno security module v1.30.3 #376

Jobs

Run details

Workflow file for this run