name: ci on: push: branches: [ master ] pull_request: branches: [ master ] jobs: test: name: 'Unit- & API tests' runs-on: ubuntu-latest steps: - name: Set up Go 1.x uses: actions/setup-go@v2 with: go-version: ^1.18 id: go - name: Check out code into the Go module directory uses: actions/checkout@v2 - name: Get dependencies run: go get - name: Unit Tests run: go test ./... -run ./... - name: API Tests run: | npm -g install newman ./testing/run_api_tests.sh mapi: name: 'Automated pen-tests with Mayhem for API' runs-on: ubuntu-latest steps: - name: Set up Go 1.x uses: actions/setup-go@v2 with: go-version: ^1.18 - name: Check out code into the Go module directory uses: actions/checkout@v2 - name: Get dependencies run: go get - name: Build run: GO111MODULE=on go build -v . - name: start wakapi run: ./wakapi --config config.default.yml & - name: create a trivial testing user run: sqlite3 wakapi_db.db "insert into users (id, api_key) values ('mapi', 'test-api-key')" - name: Run Mayhem for API uses: ForAllSecure/mapi-action@v1 continue-on-error: true with: mapi-token: ${{ secrets.MAPI_TOKEN }} api-url: http://localhost:3000/api/ api-spec: static/docs/swagger.yaml target: muety/wakapi duration: 1min sarif-report: mapi.sarif run-args: | --header-auth Authorization: Basic dGVzdC1hcGkta2V5 - name: Upload SARIF file uses: github/codeql-action/upload-sarif@v1 with: sarif_file: mapi.sarif build: name: 'Build (Win, Linux, Mac)' strategy: matrix: platform: [ubuntu-latest, macos-latest, windows-latest] runs-on: ${{ matrix.platform }} steps: - name: Set up Go 1.x uses: actions/setup-go@v2 with: go-version: ^1.18 id: go - name: Check out code into the Go module directory uses: actions/checkout@v2 - name: Get dependencies run: go get - name: Build run: go build -v .