name: CI on: push: branches: [main] pull_request: branches: [main] jobs: lint-typecheck: name: Lint & Typecheck runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Typecheck run: pnpm typecheck - name: Lint run: pnpm lint test: name: Test runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Run tests run: pnpm test e2e: name: E2E Tests runs-on: ubuntu-latest needs: [lint-typecheck, test] steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Install Playwright browsers run: pnpm --filter @groombook/e2e exec playwright install --with-deps chromium - name: Start Docker Compose stack run: docker compose up -d --wait timeout-minutes: 5 - name: Run E2E tests run: pnpm --filter @groombook/e2e test - name: Upload Playwright report if: failure() uses: actions/upload-artifact@v4 with: name: playwright-report path: apps/e2e/playwright-report/ retention-days: 7 - name: Stop Docker Compose stack if: always() run: docker compose down build: name: Build runs-on: ubuntu-latest needs: [lint-typecheck, test] steps: - uses: actions/checkout@v4 - uses: pnpm/action-setup@v4 - uses: actions/setup-node@v4 with: node-version: 20 cache: pnpm - name: Install dependencies run: pnpm install --frozen-lockfile - name: Build all packages run: pnpm build docker: name: Build & Push Docker Images runs-on: ubuntu-latest needs: [build] if: github.ref == 'refs/heads/main' permissions: contents: read packages: write outputs: version: ${{ steps.version.outputs.tag }} steps: - uses: actions/checkout@v4 - name: Generate version tag id: version run: | TAG="$(date -u +%Y.%m.%d)-${GITHUB_SHA::7}" echo "tag=$TAG" >> "$GITHUB_OUTPUT" echo "Image version: $TAG" - name: Set up Docker Buildx uses: docker/setup-buildx-action@v3 - name: Log in to GitHub Container Registry uses: docker/login-action@v3 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push API image uses: docker/build-push-action@v6 with: context: . file: apps/api/Dockerfile target: runner push: true tags: | ghcr.io/groombook/api:${{ steps.version.outputs.tag }} ghcr.io/groombook/api:latest cache-from: type=gha cache-to: type=gha,mode=max - name: Build and push Migrate image uses: docker/build-push-action@v6 with: context: . file: apps/api/Dockerfile target: migrate push: true tags: | ghcr.io/groombook/migrate:${{ steps.version.outputs.tag }} ghcr.io/groombook/migrate:latest cache-from: type=gha cache-to: type=gha,mode=max - name: Build and push Seed image uses: docker/build-push-action@v6 with: context: . file: apps/api/Dockerfile target: seed push: true tags: | ghcr.io/groombook/seed:${{ steps.version.outputs.tag }} ghcr.io/groombook/seed:latest cache-from: type=gha cache-to: type=gha,mode=max - name: Build and push Web image uses: docker/build-push-action@v6 with: context: . file: apps/web/Dockerfile push: true tags: | ghcr.io/groombook/web:${{ steps.version.outputs.tag }} ghcr.io/groombook/web:latest cache-from: type=gha cache-to: type=gha,mode=max deploy: name: Update Infra Image Tags runs-on: ubuntu-latest needs: [docker] if: github.ref == 'refs/heads/main' steps: - name: Checkout infra repo uses: actions/checkout@v4 with: repository: groombook/infra token: ${{ secrets.INFRA_DEPLOY_TOKEN }} path: infra - name: Update image tags env: VERSION: ${{ needs.docker.outputs.version }} run: | cd infra # Match any existing version tag (CalVer YYYY.MM.DD-sha or legacy 40-char SHA) TAG_PATTERN='[0-9a-z][0-9a-z._-]*' sed -i "s|ghcr.io/groombook/api:${TAG_PATTERN}|ghcr.io/groombook/api:${VERSION}|g" apps/groombook/api.yaml sed -i "s|ghcr.io/groombook/web:${TAG_PATTERN}|ghcr.io/groombook/web:${VERSION}|g" apps/groombook/web.yaml sed -i "s|ghcr.io/groombook/migrate:${TAG_PATTERN}|ghcr.io/groombook/migrate:${VERSION}|g" apps/groombook/migrate-job.yaml sed -i "s|ghcr.io/groombook/seed:${TAG_PATTERN}|ghcr.io/groombook/seed:${VERSION}|g" apps/groombook/seed-job.yaml sed -i "s|groombook.dev/image-version: \".*\"|groombook.dev/image-version: \"${VERSION}\"|g" apps/groombook/api.yaml apps/groombook/web.yaml - name: Commit and push env: VERSION: ${{ needs.docker.outputs.version }} run: | cd infra git config user.name "groombook-ci[bot]" git config user.email "ci@groombook.dev" if git diff --quiet; then echo "No changes to commit" exit 0 fi git add -A git commit -m "deploy: update images to v${VERSION} Source: https://github.com/groombook/groombook/commit/${GITHUB_SHA}" git push