bartvdbraak/keyweave
1
0
Fork 0
mirror of https://github.com/bartvdbraak/keyweave.git synced 2025-04-30 00:01:21 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #10 from bartvdbraak/feat/pr-checks

Browse source 
Add PR checks using GitHub workflow
This commit is contained in:
Bart van der Braak 2023-11-07 23:58:17 +01:00 committed by GitHub
commit 48821825c8
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 48 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

31
.github/workflows/checks.yml vendored Normal file
View file

@ -0,0 +1,31 @@
name: Checks
on:
pull_request:
branches:
- main
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: dtolnay/rust-toolchain@stable
- name: Install cargo-audit
run: cargo install cargo-audit
- name: Format code with rustfmt
run: cargo fmt --all -- --check
- name: Lint code with clippy
run: cargo clippy --all -- --deny warnings
- name: Check for known vulnerabilities with cargo-audit
run: cargo audit
- name: Build project
run: cargo build --all --release
- name: Run tests
run: cargo test --all

13
.github/workflows/release.yml vendored
View file

@ -7,7 +7,20 @@ on:
- 'v[0-9]+.[0-9]+.[0-9]+' - 'v[0-9]+.[0-9]+.[0-9]+'
jobs: jobs:
pre-check:
name: Pre-check
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- run: |
if [[ "$(git describe --tags --abbrev=0)" != "v$(grep -m1 -F 'version =' Cargo.toml | cut -d\" -f2)" ]]; then
echo "Error: The git tag does not match the Cargo.toml version."
exit 1
fi
echo "Success: The git tag matches the Cargo.toml version."
build: build:
needs: pre-check
strategy: strategy:
matrix: matrix:
name: name:

1
Cargo.toml
View file

@ -2,6 +2,7 @@
name = "keyweave" name = "keyweave"
version = "0.1.0" version = "0.1.0"
edition = "2021" edition = "2021"
authors = ["Bart van der Braak <bart@vanderbraak.nl>"]
[dependencies] [dependencies]
azure_identity = "0.17.0" azure_identity = "0.17.0"

7
src/main.rs
View file

@ -6,7 +6,7 @@ use std::fs::File;
use std::io::Write; use std::io::Write;
#[derive(Parser)] #[derive(Parser)]
#[clap(version = "0.1.0", author = "Bart van der Braak <bart@vanderbraak.nl>")] #[clap(author, version, about, long_about = None)]
struct Opts { struct Opts {
#[clap( #[clap(
short, short,
@ -39,10 +39,7 @@ async fn fetch_secrets_from_key_vault(
filter: Option<&str>, filter: Option<&str>,
) -> Result<Vec<(String, String)>, Box<dyn std::error::Error>> { ) -> Result<Vec<(String, String)>, Box<dyn std::error::Error>> {
let credential = DefaultAzureCredential::default(); let credential = DefaultAzureCredential::default();
let client = KeyvaultClient::new( let client = KeyvaultClient::new(vault_url, std::sync::Arc::new(credential))?.secret_client();
&vault_url,
std::sync::Arc::new(credential),
)?.secret_client();
let mut secret_values = Vec::new(); let mut secret_values = Vec::new();
let mut secret_pages = client.list_secrets().into_stream(); let mut secret_pages = client.list_secrets().into_stream();