name: π§ͺ CI - Tests & Quality
on:
push:
branches: [ main, develop ]
pull_request:
branches: [ main, develop ]
jobs:
test:
name: π Test Suite
runs-on: ubuntu-latest
strategy:
matrix:
node-version: [18, 20, 22]
steps:
- name: π₯ Checkout code
uses: actions/checkout@v4
- name: π’ Setup Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node-version }}
cache: 'npm'
- name: π¦ Install dependencies
run: npm ci
- name: π Security audit
run: npm audit --audit-level high
- name: π§Ή Lint code
run: npm run lint
- name: ποΈ Build project
run: npm run build
- name: π§ͺ Run tests
run: npm test
- name: π Coverage report
run: npm run test:coverage
- name: π Upload coverage to Codecov
if: matrix.node-version == 20
uses: codecov/codecov-action@v4
with:
file: ./coverage/lcov.info
flags: unittests
name: codecov-umbrella
fail_ci_if_error: false
lint:
name: π§Ή Code Quality
runs-on: ubuntu-latest
steps:
- name: π₯ Checkout code
uses: actions/checkout@v4
- name: π’ Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 20
cache: 'npm'
- name: π¦ Install dependencies
run: npm ci
- name: π§Ή ESLint
run: npm run lint
- name: π
Prettier check
run: npx prettier --check "src/**/*.ts"
- name: π TypeScript check
run: npx tsc --noEmit
security:
name: π Security Scan
runs-on: ubuntu-latest
steps:
- name: π₯ Checkout code
uses: actions/checkout@v4
- name: π’ Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 20
cache: 'npm'
- name: π¦ Install dependencies
run: npm ci
- name: π Security audit
run: npm audit --audit-level moderate
- name: π‘οΈ Snyk security scan
uses: snyk/actions/node@master
continue-on-error: true
env:
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
