Skip to content

metal-stack/actions-common

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
.github/workflows
.github/workflows
 
 
.gitignore
.gitignore
 
 
CODEOWNERS
CODEOWNERS
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
main.go
main.go
 
 
main_test.go
main_test.go
 
 

Repository files navigation

Common Github Actions

Provides reusable workflows for Github Actions used in the metal-stack organization.

Usage

---
name: metal-stack component release
on:
  pull_request:
    branches:
      - main
  release:
    types:
      - published
  push:
    branches:
      - main

jobs:
  <see-reusable-workflows-below>

For certain workflows, we expect to pass on secrets to the inherited workflow actions using secrets: inherit.

Reusable Workflows

Spelling .github/workflows/spell-check.yaml

Runs spell checking using typos.

jobs:
  spell-check:
    uses: metal-stack/actions-common/.github/workflows/spell-check.yaml@v1

Release Drafter .github/workflows/release-drafter.yaml

Please note that it does not seem possible with Github to provide a shared release-drafter.yml configuration for all repositories. It still makes sense to use the common action in order to manage the action's version from one location.

jobs:
  draft:
    uses: metal-stack/actions-common/.github/workflows/release-drafter.yaml@v1

Go Build .github/workflows/go-build.yaml

Builds a Go binary and publishes it as a docker container image, including:

  • Lints a Golang repository using golangci-lint-action.
  • Tests the Golang repository.
  • Image tag format for different release actions:
    • release: <release-tag>
    • push: branch-<branch-name>
    • pull_request: pr-<pull-request-number>-<branch-name>
  • Embeds an SBOM into the resulting Docker image using Buildx.
  • Signs the resulting container image using cosign.

We encourage using the build-command and then using a Dockerfile that just copies over the build's binaries instead of building the artifacts directly in the Dockerfile. The advantage is that CI caches can be used properly and build times are reduced drastically.

jobs:
  build:
    uses: metal-stack/actions-common/.github/workflows/go-build.yaml@v1
    secrets: inherit
    with:
      lint: true
      test: true
      build: true
      test-command: go test ./... -coverprofile=coverage.out -covermode=atomic && go tool cover -func=coverage.out
      registry: ghcr.io
      registry-username: ${{ github.actor }}
      image-name: ${{ github.repository }}
      artifact-files: ""

Release Assets .github/workflows/release-assets.yaml

Publishes files in a Github Release using action-gh-release. Only works on release pipeline triggers.

jobs:
  release-assets:
    uses: metal-stack/actions-common/.github/workflows/release-assets.yaml@v1
    with:
      files: |
        bin/*

About

Provides common Github Actions used in the metal-stack organization.

Resources

Readme

License

MIT license

Contributing

Contributing
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 4

v1.0.3 Latest
Apr 15, 2026
+ 3 releases

Packages

 
 
 

Contributors

Languages