docs: How to use pre-commit-terraform image to run pre-commit in CI #656
Conversation
Signed-off-by: Steffen Tautenhahn <[email protected]>
stevie-
changed the title
MaxymVlasov
changed the title
MaxymVlasov
changed the title
Co-authored-by: Maksym Vlasov <[email protected]>
Signed-off-by: Steffen Tautenhahn <[email protected]>
.github/workflows/pre-commit.yaml
Outdated
|
|
||
| - name: Execute pre-commit | ||
| run: | | ||
| pre-commit run --color=always --show-diff-on-failure --files ${{ steps.file_changes.outputs.files }} |
There was a problem hiding this comment.
Okay, before we move forward, I'd like to have the answer to the next question:
Would you like to add a fully functional replacement for the current GH workflow[1], or just show the possibility of docker image usage in GHA[2]?
Btw, [1] little bit related to #373
There was a problem hiding this comment.
[2] - show both ways seems to be a good idea to me.
There was a problem hiding this comment.
[2] - show both ways seems to be a good idea to me.
I guess the .github/workflows/pre-commit.yaml is among active workflows in this repo and hence running the same thing twice might not be desired 🤔
There was a problem hiding this comment.
Yeah. If just show that it is possible, please:
- Update the Readme example with the fixed version from
.github/workflows/pre-commit.yaml - Revert changes in
.github/workflows/pre-commit.yaml
There was a problem hiding this comment.
This would mean, that you don't actively check the current container image within GHA.
There was a problem hiding this comment.
According to your answer to my question above, you not plan to provide a " fully functional replacement for the current GH workflow[1]"
And we definitely won't to decrease the current test coverage. Current realization in this PR will fail on hadolint, shfmt, and shellcheck hooks as there are no such dependencies inside Docker image. (and these checks are vital for .sh and .dockerfile)
And also, it will not push fixes back to branch.
There was a problem hiding this comment.
FYI: The install of additional tools should also work in the container version.
README.md
Outdated
| You can use this hook in your GitHub Actions workflow togehther with [pre-commit](https://pre-commit.com). To easy up dependency management, you can use the managed [docker image](#docker-usage) within your workflow. Make sure to set the image tag to the version you want to use. | ||
|
|
||
| In this repository's pre-commit [workflow file](.github/workflows/pre-commit.yml) we also check the container image with pre-commit. | ||
| Here is another more simple example which includes caching of pre-commit dependencies and uses the `pre-commit` command to run the checks. |
There was a problem hiding this comment.
| Here is another more simple example which includes caching of pre-commit dependencies and uses the `pre-commit` command to run the checks. | |
| Here is another example that includes caching of pre-commit dependencies and uses the `pre-commit` command to run the checks (but fixes will not automatically push back to your branch, when it possible): |
There was a problem hiding this comment.
@MaxymVlasov : but fixes will be not automatically pushed back to your branch (not sure about the gist of when clause though)
There was a problem hiding this comment.
I don't see, where the original workflow pushes changes found by pre-commit? Or do you want to be just very specific?
There was a problem hiding this comment.
I hope this PR and screencast will help
#658
Screencast from 15.04.24 18:59:50.webm
Push fixes part in GHA:
https://github.com/antonbabenko/pre-commit-terraform/actions/runs/8692274320/job/23836525488?pr=658#step:10:133
There was a problem hiding this comment.
pre-commit-terraform/.github/workflows/pre-commit.yaml
Lines 42 to 56 in 42919f3
There 2 pre-commit runs.
The first one, is able to push fixes. second-one - not. The difference in availability of GITHUB_TOKEN.
That's done in this way because otherwise, hooks without fixes will produce exit code 1, and that stops from pushing fixed to the branch.
I can say GHA "ignore exit code 1", and fixes will be successfully pushed, but then if something will be detected by hooks that have no autofixes - there will be no notification about that, except inside logs in "successfully done" GHA
There was a problem hiding this comment.
I missed, that you don't use the latest version of the pre-commit/action which has no push support anymore.
So, if the 2nd run doesn't push changes, wouldn't this be a good candidate to be replaced by the container version?
There was a problem hiding this comment.
Still no hadolint dependency inside image. It will check nothing from pre-commit-hooks (all of them, which we use here have autofixes or at least do not break the first check when fail) nor pre-commit-terraform repo hooks (as this repo doesn't include any tf code for testing).
If you'd like to make useful tests, check #373.
Signed-off-by: Steffen Tautenhahn <[email protected]>
|
With my last commit I see this PR as done. What do you think? |
Signed-off-by: Steffen Tautenhahn <[email protected]>
README.md
Outdated
| * [Authors](#authors) | ||
| * [License](#license) | ||
| * [Additional information for users from Russia and Belarus](#additional-information-for-users-from-russia-and-belarus) | ||
| * [Collection of git hooks for Terraform to be used with pre-commit framework](#collection-of-git-hooks-for-terraform-to-be-used-with-pre-commit-framework) |
There was a problem hiding this comment.
Ah, I get it, we never commit .vscode settings for extensions here...
Maybe that's should be done 🤔
Co-authored-by: Maksym Vlasov <[email protected]>
MaxymVlasov
changed the title
|
This PR is included in version 1.90.0 🎉 |
Put an
xinto the box if that apply:Description of your changes
Fixes #655
How can we test changes
uses existing workflow but tries to run similar steps with the managed container instead of pre install all dependencies.
This helps to