mirror of
https://github.com/tendermint/tendermint.git
synced 2026-02-05 11:31:16 +00:00
279e8027d3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.5 to 2.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v2.4.0</h2> <ul> <li>Convert SSH URLs like <code>org-<ORG_ID>@github.com:</code> to <code>https://github.com/</code> - <a href="https://github-redirect.dependabot.com/actions/checkout/pull/621">pr</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="ec3a7ce113"><code>ec3a7ce</code></a> set insteadOf url for org-id (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/621">#621</a>)</li> <li><a href="fd47087372"><code>fd47087</code></a> codeql should analyze lib not dist (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/620">#620</a>)</li> <li><a href="3d677ac575"><code>3d677ac</code></a> script to generate license info (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/614">#614</a>)</li> <li><a href="826ba42d6c"><code>826ba42</code></a> npm audit fix (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/612">#612</a>)</li> <li><a href="eb8a193c1d"><code>eb8a193</code></a> update dev dependencies and react to new linting rules (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/611">#611</a>)</li> <li><a href="c49af7ca1f"><code>c49af7c</code></a> Create codeql-analysis.yml (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/602">#602</a>)</li> <li>See full diff in <a href="https://github.com/actions/checkout/compare/v2.3.5...v2.4.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
78 lines
2.3 KiB
YAML
78 lines
2.3 KiB
YAML
# Runs fuzzing nightly.
|
|
name: fuzz-nightly
|
|
on:
|
|
workflow_dispatch: # allow running workflow manually
|
|
schedule:
|
|
- cron: '0 3 * * *'
|
|
pull_request:
|
|
branches: [master]
|
|
paths:
|
|
- "test/fuzz/**/*.go"
|
|
|
|
jobs:
|
|
fuzz-nightly-test:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/setup-go@v2
|
|
with:
|
|
go-version: '1.17'
|
|
|
|
- uses: actions/checkout@v2.4.0
|
|
|
|
- name: Install go-fuzz
|
|
working-directory: test/fuzz
|
|
run: go get -u github.com/dvyukov/go-fuzz/go-fuzz github.com/dvyukov/go-fuzz/go-fuzz-build
|
|
|
|
- name: Fuzz mempool
|
|
working-directory: test/fuzz
|
|
run: timeout -s SIGINT --preserve-status 10m make fuzz-mempool
|
|
continue-on-error: true
|
|
|
|
- name: Fuzz p2p-sc
|
|
working-directory: test/fuzz
|
|
run: timeout -s SIGINT --preserve-status 10m make fuzz-p2p-sc
|
|
continue-on-error: true
|
|
|
|
- name: Fuzz p2p-rpc-server
|
|
working-directory: test/fuzz
|
|
run: timeout -s SIGINT --preserve-status 10m make fuzz-rpc-server
|
|
continue-on-error: true
|
|
|
|
- name: Archive crashers
|
|
uses: actions/upload-artifact@v2
|
|
with:
|
|
name: crashers
|
|
path: test/fuzz/**/crashers
|
|
retention-days: 3
|
|
|
|
- name: Archive suppressions
|
|
uses: actions/upload-artifact@v2
|
|
with:
|
|
name: suppressions
|
|
path: test/fuzz/**/suppressions
|
|
retention-days: 3
|
|
|
|
- name: Set crashers count
|
|
working-directory: test/fuzz
|
|
run: echo "::set-output name=count::$(find . -type d -name 'crashers' | xargs -I % sh -c 'ls % | wc -l' | awk '{total += $1} END {print total}')"
|
|
id: set-crashers-count
|
|
|
|
outputs:
|
|
crashers-count: ${{ steps.set-crashers-count.outputs.count }}
|
|
|
|
fuzz-nightly-fail:
|
|
needs: fuzz-nightly-test
|
|
if: ${{ needs.fuzz-nightly-test.outputs.crashers-count != 0 }}
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Notify Slack if any crashers
|
|
uses: rtCamp/action-slack-notify@12e36fc18b0689399306c2e0b3e0f2978b7f1ee7
|
|
env:
|
|
SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
|
|
SLACK_CHANNEL: tendermint-internal
|
|
SLACK_USERNAME: Nightly Fuzz Tests
|
|
SLACK_ICON_EMOJI: ':firecracker:'
|
|
SLACK_COLOR: danger
|
|
SLACK_MESSAGE: Crashers found in Nightly Fuzz tests
|
|
SLACK_FOOTER: ''
|