-
Notifications
You must be signed in to change notification settings - Fork 36
Expand file tree
/
Copy pathTaskfile.vars.yml
More file actions
95 lines (86 loc) · 4.37 KB
/
Taskfile.vars.yml
File metadata and controls
95 lines (86 loc) · 4.37 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
# Copyright AGNTCY Contributors (https://github.com/agntcy)
# SPDX-License-Identifier: Apache-2.0
version: "3"
vars:
## Version
RELEASE_VERSION:
sh: grep 'version:' versions.yaml | awk '{print $2}'
RELEASE_VERSION_LDFLAG: "-X 'github.com/agntcy/dir/api/version.Version={{ .RELEASE_VERSION }}'"
COMMIT_SHA:
sh: git rev-parse --short HEAD
COMMIT_SHA_LDFLAG: "-X 'github.com/agntcy/dir/api/version.CommitHash={{ .COMMIT_SHA }}'"
VERSION_LDFLAGS: "{{ .RELEASE_VERSION_LDFLAG }} {{ .COMMIT_SHA_LDFLAG }}"
## External dependency versions
# renovate: datasource=go depName=github.com/project-zot/zot versioning=semver
ZOT_VERSION: "2.1.15"
# renovate: datasource=go depName=github.com/spiffe/spire versioning=semver
SPIRE_VERSION: "1.14.4"
# renovate: datasource=go depName=github.com/regclient/regclient versioning=semver
REGSYNC_VERSION: "v0.11.2"
# renovate: datasource=docker depName=docker.io/bitnami/postgresql
POSTGRESQL_VERSION: "latest@sha256:621359194c6a0f0fd502c1996f40f539c3e5f2da43401b6d52ee5614722b7cba"
# renovate: datasource=docker depName=docker.io/envoyproxy/envoy
ENVOY_VERSION: "v1.37-latest"
## Container images for vulnerability scanning
VULN_SCAN_IMAGES:
- "{{.IMAGE_REPO}}/dir-apiserver:{{.IMAGE_TAG}}"
- "{{.IMAGE_REPO}}/dir-ctl:{{.IMAGE_TAG}}"
- "{{.IMAGE_REPO}}/dir-reconciler:{{.IMAGE_TAG}}"
- "{{.IMAGE_REPO}}/dir-runtime-discovery:{{.IMAGE_TAG}}"
- "{{.IMAGE_REPO}}/dir-runtime-server:{{.IMAGE_TAG}}"
- "{{.IMAGE_REPO}}/envoy-authz:{{.IMAGE_TAG}}"
- "ghcr.io/project-zot/zot:v{{.ZOT_VERSION}}"
- "ghcr.io/spiffe/spire-server:{{.SPIRE_VERSION}}"
- "ghcr.io/spiffe/spire-agent:{{.SPIRE_VERSION}}"
- "docker.io/bitnami/postgresql:{{.POSTGRESQL_VERSION}}"
- "docker.io/envoyproxy/envoy:{{.ENVOY_VERSION}}"
## Image config
BUILD_LDFLAGS: "-s -w -extldflags -static {{.VERSION_LDFLAGS}}"
IMAGE_REPO: '{{ .IMAGE_REPO | default "ghcr.io/agntcy" }}'
IMAGE_TAG: "{{ .IMAGE_TAG | default .COMMIT_SHA }}"
IMAGE_BAKE_ENV: "IMAGE_REPO={{.IMAGE_REPO}} IMAGE_TAG={{.IMAGE_TAG}} REGSYNC_VERSION={{.REGSYNC_VERSION}}"
IMAGE_BAKE_OPTS: '{{ .IMAGE_BAKE_OPTS | default "" }}'
BAKE_ENV: '{{ .IMAGE_BAKE_ENV }} BUILD_LDFLAGS="{{.BUILD_LDFLAGS}}"'
COVERAGE_IMAGE_TAG: "{{ .IMAGE_TAG | default .COMMIT_SHA }}-coverage"
COVERAGE_IMAGE_BAKE_ENV: "IMAGE_REPO={{.IMAGE_REPO}} IMAGE_TAG={{.COVERAGE_IMAGE_TAG}}"
COVERAGE_BAKE_ENV: '{{ .COVERAGE_IMAGE_BAKE_ENV }} BUILD_LDFLAGS="{{.BUILD_LDFLAGS}}"'
COVERAGE_PKGS: '{{ .COVERAGE_PKGS | default "github.com/agntcy/dir/api/...,github.com/agntcy/dir/cli/...,github.com/agntcy/dir/client/...,github.com/agntcy/dir/importer/...,github.com/agntcy/dir/utils/..." }}'
## Dependency config
RENOVATE_VERSION: "43.89.5"
BIN_DIR: "{{ .ROOT_DIR }}/.bin"
DIRCTL_BIN: "{{ .BIN_DIR}}/dirctl"
HELM_VERSION: "4.1.3"
HELM_BIN: "{{ .BIN_DIR }}/helm-{{.HELM_VERSION}}"
KUBECTL_VERSION: "1.35.3"
KUBECTL_BIN: "{{ .BIN_DIR }}/kubectl-{{.KUBECTL_VERSION}}"
KIND_VERSION: "0.31.0"
KIND_BIN: "{{ .BIN_DIR }}/kind-{{.KIND_VERSION}}"
PROTOC_VERSION: "34.0"
PROTOC_BIN: "{{ .BIN_DIR }}/protoc-{{.PROTOC_VERSION}}"
BUFBUILD_VERSION: "1.66.1"
BUFBUILD_BIN: "{{ .BIN_DIR }}/bufbuild-{{.BUFBUILD_VERSION}}"
GO_VERSION: "1.26.1"
MULTIMOD_VERSION: "0.29.0"
MULTIMOD_BIN: "{{ .BIN_DIR }}/multimod-{{.MULTIMOD_VERSION}}"
GOLANGCI_LINT_VERSION: "2.11.3"
GOLANGCI_LINT_BIN: "{{ .BIN_DIR }}/golangci-lint-{{.GOLANGCI_LINT_VERSION}}"
LICENSEI_VERSION: "0.9.0"
LICENSEI_BIN: "{{ .BIN_DIR }}/licensei-{{.LICENSEI_VERSION}}"
UV_VERSION: "0.10.11"
UV_BIN: "{{ .BIN_DIR }}/uv-{{.UV_VERSION}}"
UV_PUBLISH_TOKEN: '{{ .UV_PUBLISH_TOKEN | default "" }}'
COSIGN_VERSION: "3.0.5"
COSIGN_BIN: "{{ .BIN_DIR }}/cosign-{{.COSIGN_VERSION}}"
TRIVY_VERSION: "0.69.3"
TRIVY_BIN: "{{ .BIN_DIR }}/trivy-{{.TRIVY_VERSION}}"
## Coverage related values
COVERAGE_DIR: '{{ .COVERAGE_DIR | default (print .ROOT_DIR "/.coverage") }}'
OVERRIDEN_COVERAGE_MODULES: "" # NOTE: Modules with space separation for specify which modules to cover
## Runtime CRD
CONTROLLER_GEN_VERSION: "v0.17.3"
CONTROLLER_GEN_BIN: "sigs.k8s.io/controller-tools/cmd/controller-gen@{{ .CONTROLLER_GEN_VERSION }}"
## Go module discovery
GO_MOD_DIR:
sh: find . -name go.mod -not -path "./tmp*" -exec dirname {} \;
GO_MOD_DIR_UNIT_TEST:
sh: find . -name go.mod -not -path "./tests*" -not -path "./tmp*" -exec dirname {} \;