raffis
diff --git a/‎.github/dependabot.yml‎
Lines changed: 10 additions & 0 deletions b/‎.github/dependabot.yml‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎.github/workflows/nightly.yaml‎
Lines changed: 0 additions & 36 deletions b/‎.github/workflows/nightly.yaml‎
Lines changed: 0 additions & 36 deletions
diff --git a/‎.github/workflows/e2e.yaml‎ renamed to ‎.github/workflows/pr-build.yaml‎
Lines changed: 17 additions & 17 deletions b/‎.github/workflows/e2e.yaml‎ renamed to ‎.github/workflows/pr-build.yaml‎
Lines changed: 17 additions & 17 deletions
diff --git a/‎.github/workflows/chart.yaml‎ renamed to ‎.github/workflows/pr-chart.yaml‎
Lines changed: 8 additions & 8 deletions b/‎.github/workflows/chart.yaml‎ renamed to ‎.github/workflows/pr-chart.yaml‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎.github/workflows/rebase.yaml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/rebase.yaml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/release-chart.yaml‎
Lines changed: 20 additions & 10 deletions b/‎.github/workflows/release-chart.yaml‎
Lines changed: 20 additions & 10 deletions
diff --git a/‎.github/workflows/release.yaml‎
Lines changed: 11 additions & 62 deletions b/‎.github/workflows/release.yaml‎
Lines changed: 11 additions & 62 deletions
diff --git a/‎.github/workflows/scan.yaml‎
Lines changed: 6 additions & 6 deletions b/‎.github/workflows/scan.yaml‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 0 deletions b/‎.gitignore‎
Lines changed: 1 addition & 0 deletions
@@ -0,0 +1,10 @@
+version: 2
+updates:
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+  - package-ecosystem: "gomod"
+    directory: "/"
+    schedule:
+      interval: "weekly"
@@ -1,11 +1,11 @@
-name: e2e
+name: pr-build
 
 on:
   pull_request:
-  push:
-    branches:
-      - main
-      - release-v1.0
+    types:
+      - opened
+      - synchronize
+      - reopened
 
 jobs:
   build:
@@ -15,20 +15,20 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
       - name: Setup Go
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f #v3.3.1
         with:
-          go-version: 1.17.x
+          go-version: 1.18.x
       - name: Restore Go cache
-        uses: actions/cache@v1
+        uses: actions/cache@9b0c1fce7a93df8e3bb8926b0d6e9d89e92f20a7 #v3.0.11
         with:
-          path: /home/runner/work/_temp/_github_home/go/pkg/mod
+          path: ~/go/pkg/mod
           key: ${{ runner.os }}-go-${{ hashFiles('**/go.sum') }}
           restore-keys: |
             ${{ runner.os }}-go-
       - name: Setup Kubernetes
-        uses: engineerd/[email protected]
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.11.1
           image: kindest/node:v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6
@@ -64,7 +64,7 @@ jobs:
         run: make deploy-test IMG=test/mongodb-query-exporter:latest
       - name: Setup MongoDB
         env:
-          MONGODB_VER: ${{ '10.29.2' }}
+          MONGODB_VER: ${{ '13.5.0' }}
         run: |
           kubectl create ns mongodb
           helm repo add bitnami https://charts.bitnami.com/bitnami
@@ -76,17 +76,17 @@ jobs:
           --set image.tag=${{matrix.mongodb}}
       - name: Run tests
         run: |
+          sleep 5
           kubectl -n mongodb-system port-forward deployment/mongodb-query-exporter 9412:9412 &>/dev/null &
           sleep 2
           curl -v --fail http://localhost:9412/metrics  | grep total_mongodb_users
-      - name: Logs
-        run: |
-          kubectl -n mongodb-system logs deploy/mongodb-query-exporter
       - name: Debug failure
         if: failure()
         run: |
-          kubectl -n kube-system describe pods
+          kubectl -n mongodb get pods
+          kubectl -n mongodb-system get pods
           kubectl -n mongodb describe pods
           kubectl -n mongodb-system describe pods
-          kubectl -n mongodb-system get all
+          kubectl -n mongodb get svc
+          kubectl -n kube-system get pods
           kubectl -n mongodb-system logs deploy/mongodb-query-exporter
@@ -7,36 +7,36 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
         with:
           fetch-depth: 0
 
       - name: Set up Helm
-        uses: azure/setup-helm@v1
+        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v3.4
         with:
           version: v3.4.0
 
-      - uses: actions/setup-python@v2
+      - uses: actions/setup-python@13ae5bb136fac2878aff31522b9efb785519f984 #v4.3.0
         with:
           python-version: 3.7
 
       - name: Set up chart-testing
-        uses: helm/chart-testing-action@v2.1.0
+        uses: helm/chart-testing-action@afea100a513515fbd68b0e72a7bb0ae34cb62aec #v2.3.1
 
       - name: Run chart-testing (list-changed)
         id: list-changed
         run: |
-          changed=$(ct list-changed --chart-dirs chart)
+          changed=$(ct list-changed --target-branch=master --chart-dirs chart)
           if [[ -n "$changed" ]]; then
             echo "::set-output name=changed::true"
           fi
 
       - name: Run chart-testing (lint)
-        run: ct lint --chart-dirs chart
+        run: ct lint --target-branch=master --chart-dirs chart
 
       - name: Create kind cluster
-        uses: helm/kind-action@v1.2.0
+        uses: helm/kind-action@9e8295d178de23cbfbd8fa16cf844eec1d773a07 #v1.4.0
         if: steps.list-changed.outputs.changed == 'true'
 
       - name: Run chart-testing (install)
-        run: ct install --chart-dirs chart
+        run: ct install --target-branch=master --chart-dirs chart
@@ -12,10 +12,10 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout the latest code
-        uses: actions/checkout@v2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
         with:
           fetch-depth: 0
       - name: Automatic Rebase
-        uses: cirrus-actions/rebase@1.3.1
+        uses: cirrus-actions/rebase@6e572f08c244e2f04f9beb85a943eb618218714d #1.7
         env:
           GITHUB_TOKEN: ${{ secrets.BOT_GITHUB_TOKEN }}
@@ -10,18 +10,28 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
         with:
           fetch-depth: 0
 
-      - name: Configure Git
-        run: |
-          git config user.name "$GITHUB_ACTOR"
-          git config user.email "[email protected]"
+      - name: Install Helm
+        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v3.4
 
-      - name: Run chart-releaser
-        uses: helm/chart-releaser-action@v1.3.0
+      - name: Install yq
+        uses: chrisdickinson/setup-yq@3d931309f27270ebbafd53f2daee773a82ea1822  #v1.0.1
         with:
-          charts_dir: ./chart
-        env:
-          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
+          yq-version: v4.24.5
+
+      - name: Login to Github Container Registry using helm
+        run: echo ${{ secrets.GITHUB_TOKEN }} | helm registry login ghcr.io --username ${{ github.actor }} --password-stdin
+
+      - name: Package helm charts
+        run: |
+          chartVersion=$(helm show chart chart/mongodb-query-exporter | yq e '.version')
+          appVersion=$(helm show chart chart/mongodb-query-exporter | yq e '.version')
+          helm package chart/mongodb-query-exporter --version=$chartVersion --app-version=$appVersion -d chart
+
+      - name: Publish helm charts to Github Container Registry
+        run: |
+          repository=$(echo "${{ github.repository_owner }}" | tr [:upper:] [:lower:])
+          helm push ${{ github.workspace }}/chart/mongodb-query-exporter-*.tgz oci://ghcr.io/$repository/charts
@@ -3,88 +3,37 @@ on:
   push:
     tags:
       - 'v*'
-  workflow_dispatch:
-    inputs:
-      tag:
-        description: 'image tag prefix'
-        required: true
 
 permissions:
   contents: write # needed to write releases
   id-token: write # needed for keyless signing
   packages: write # needed for ghcr access
 
-env:
-  APP: ${{ github.event.repository.name }}
-
 jobs:
   build:
     name: Build
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
-      - uses: actions/[email protected]
-        with:
-          go-version: '1.17'
-      - name: Prepare
-        id: prep
-        run: |
-          VERSION="${{ github.event.inputs.tag }}-${GITHUB_SHA::8}"
-          if [[ $GITHUB_REF == refs/tags/* ]]; then
-            VERSION=${GITHUB_REF/refs\/tags\//}
-          fi
-          echo ::set-output name=BUILD_DATE::$(date -u +'%Y-%m-%dT%H:%M:%SZ')
-          echo ::set-output name=VERSION::${VERSION}
-      - name: Setup QEMU
-        uses: docker/setup-qemu-action@v1
-        with:
-          platforms: all
-      - name: Setup Docker Buildx
-        id: buildx
-        uses: docker/setup-buildx-action@v1
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
+      - uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f #v3.3.1
         with:
-          buildkitd-flags: "--debug"
-      - name: Login to GitHub Container Registry
-        uses: docker/login-action@v1
+          go-version: '1.18'
+      - name: Docker Login
+        uses: docker/login-action@v2
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
-      - name: Generate images meta
-        id: meta
-        uses: docker/metadata-action@v3
-        with:
-          images: |
-            ghcr.io/raffis/${{ env.APP }}
-          tags: |
-            type=raw,value=${{ steps.prep.outputs.VERSION }}
-      - name: Publish multi-arch container image
-        uses: docker/build-push-action@v2
-        with:
-          push: true
-          builder: ${{ steps.buildx.outputs.name }}
-          context: .
-          file: ./Dockerfile
-          platforms: linux/amd64,linux/arm/v7,linux/arm64
-          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
-      - name: Check images
-        run: |
-          docker buildx imagetools inspect ghcr.io/raffis/${{ env.APP }}:${{ steps.prep.outputs.VERSION }}
-          docker pull ghcr.io/raffis/${{ env.APP }}:${{ steps.prep.outputs.VERSION }}
-      - name: Generate release manifests
-        if: startsWith(github.ref, 'refs/tags/v')
-        run: |
-          mkdir -p deploy/release
-          kustomize build ./deploy/exporter > ./deploy/release/${{ env.APP }}.deployment.yaml
-          echo '[CHANGELOG](https://github.com/raffis/${{ env.APP }}/blob/master/CHANGELOG.md)' > ./deploy/release/notes.md
-      - uses: anchore/sbom-action/download-syft@v0
+      - name: Setup Cosign
+        uses: sigstore/cosign-installer@9becc617647dfa20ae7b1151972e9b3a2c338a2b #v2.8.1
+      - uses: anchore/sbom-action/download-syft@06e109483e6aa305a2b2395eabae554e51530e1d #v0.13.1
       - name: Create release and SBOM
         if: startsWith(github.ref, 'refs/tags/v')
-        uses: goreleaser/goreleaser-action@v2
+        uses: goreleaser/goreleaser-action@b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757 #v3.2.0
         with:
           version: latest
-          args: release --release-notes=deploy/release/notes.md --rm-dist --skip-validate
+          args: release --rm-dist --skip-validate
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          REPO_TOKEN: ${{ secrets.REPO_TOKEN }}
@@ -17,9 +17,9 @@ jobs:
     name: FOSSA
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
       - name: Run FOSSA scan and upload build data
-        uses: fossa-contrib/fossa-action@v1
+        uses: fossa-contrib/fossa-action@6cffaa064112e1cf9b5798c6224f9487dc1ec316 #v1.2.0
         with:
           # FOSSA Push-Only API Token
           fossa-api-key: 956b9b92c5b16eeca1467cebe104f2c3
@@ -30,12 +30,12 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v1
+        uses: github/codeql-action/init@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 #codeql-bundle-20221020
         with:
           languages: go
       - name: Autobuild
-        uses: github/codeql-action/autobuild@v1
+        uses: github/codeql-action/autobuild@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 #codeql-bundle-20221020
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v1
+        uses: github/codeql-action/analyze@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 #codeql-bundle-20221020
@@ -1,4 +1,5 @@
 mongodb_query_exporter
+mongodb-query-exporter
 goreportcard.db
 ./config.yaml
 coverage.out