jesus/provisioning
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
provisioning/justfiles/ci.just
Jesús Pérez 44648e3206
chore: complete nickel migration and consolidate legacy configs 
- Remove KCL ecosystem (~220 files deleted)
- Migrate all infrastructure to Nickel schema system
- Consolidate documentation: legacy docs → provisioning/docs/src/
- Add CI/CD workflows (.github/) and Rust build config (.cargo/)
- Update core system for Nickel schema parsing
- Update README.md and CHANGES.md for v5.0.0 release
- Fix pre-commit hooks: end-of-file, trailing-whitespace
- Breaking changes: KCL workspaces require migration
- Migration bridge available in docs/src/development/
2026-01-08 09:55:37 +00:00

446 lines
16 KiB
Plaintext
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

# CI/CD Just Recipes
# Generated by dev-system/ci - Dynamic template
# Provides `just` recipes for running CI checks locally
# Based on detected languages and enabled tools
# Run all CI checks
ci-full: ci-lint-rust ci-fmt-toml ci-lint-toml ci-lint-nushell ci-lint-nickel ci-lint-bash ci-lint-markdown ci-lint-prose ci-test ci-audit
@echo "✅ All CI checks passed!"
# ==============================================================================
# Formatting Checks
# ==============================================================================
# Check Rust code formatting (excludes nu_plugins which are maintained separately)
ci-fmt-check:
#!/usr/bin/env bash
echo "📝 Checking Rust code formatting..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Checking: $project_name"
(cd "$project_dir" && cargo +nightly fmt --all -- --check) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ All Rust projects formatted correctly"
exit 0
else
echo " ❌ $FAILED project(s) have formatting issues"
exit 1
fi
ci-fmt:
#!/usr/bin/env bash
echo "📝 Checking Rust code formatting..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Checking: $project_name"
# (cd "$project_dir" && cargo +nightly fmt --all -- --check) || FAILED=$((FAILED+1))
(cd "$project_dir" && cargo +nightly fmt --all) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ All Rust projects formatted correctly"
exit 0
else
echo " ❌ $FAILED project(s) have formatting issues"
exit 1
fi
# Check TOML file formatting
ci-fmt-toml:
@echo "📝 Checking TOML formatting..."
@command -v taplo >/dev/null || (echo "❌ taplo not installed: cargo install taplo-cli"; exit 1)
taplo format --check
# Format all code (excludes nu_plugins which are maintained separately)
fmt:
#!/usr/bin/env bash
echo "🎨 Formatting Rust code..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Formatting: $project_name"
(cd "$project_dir" && cargo +nightly fmt --all) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
else
if [ $FAILED -eq 0 ]; then
echo " ✓ All Rust projects formatted"
else
echo " ❌ $FAILED project(s) failed formatting"
exit 1
fi
fi
echo ""
just fmt-toml
# Format TOML files
fmt-toml:
@echo "🎨 Formatting TOML files..."
@command -v taplo >/dev/null || (echo "❌ taplo not installed: cargo install taplo-cli"; exit 1)
taplo format
# ==============================================================================
# Linting
# ==============================================================================
# Run all linting checks
ci-lint: ci-lint-rust ci-lint-toml ci-lint-nushell ci-lint-nickel ci-lint-bash ci-lint-markdown ci-lint-prose
@echo "✅ All lint checks passed!"
# Lint Rust code (excludes nu_plugins which are maintained separately)
ci-lint-rust:
#!/usr/bin/env bash
echo "🔍 Linting Rust (clippy)..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Linting: $project_name"
(cd "$project_dir" && cargo clippy --all-targets --all-features -- -D warnings) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ All Rust projects passed clippy"
exit 0
else
echo " ❌ $FAILED project(s) have clippy warnings"
exit 1
fi
# Lint TOML files (excluding .wrks, .coder, .claude, .project-tools directories)
ci-lint-toml:
@echo "🔍 Linting TOML files..."
@command -v taplo >/dev/null || (echo "❌ taplo not installed: cargo install taplo-cli"; exit 1)
fd -t f '\.toml$' --exclude '.wrks' --exclude '.coder' --exclude '.claude' --exclude '.project-tools' | \
xargs taplo lint
# Lint Nushell scripts
ci-lint-nushell:
#!/usr/bin/env bash
echo "🔍 Validating Nushell scripts..."
SCRIPTS=$(find . -name "*.nu" -type f \
! -path "./target/*" \
! -path "./.git/*" \
! -path "./node_modules/*" \
| head -20)
if [ -z "$SCRIPTS" ]; then
echo " No Nushell scripts found"
exit 0
fi
for script in $SCRIPTS; do
echo " Checking: $script"
nu --ide-check 100 "$script" || exit 1
done
echo " ✓ All Nushell scripts valid"
# Lint Nickel schemas
ci-lint-nickel:
#!/usr/bin/env bash
echo "🔍 Type checking Nickel..."
SCHEMAS=$(find . -name "*.ncl" -type f \
! -path "./target/*" \
! -path "./.git/*" \
! -path "./.coder/*" \
! -path "./.wrks/*" \
! -path "./.claude/*" \
! -path "./.project-tools/*" \
! -path "./node_modules/*" \
| head -50)
if [ -z "$SCHEMAS" ]; then
echo " No Nickel schemas found"
exit 0
fi
# If NICKEL_IMPORT_PATH not set, construct from relative paths
if [ -z "$NICKEL_IMPORT_PATH" ]; then
IMPORT_PATHS="."
# Add local typedialog schemas if they exist
[ -d ".typedialog/provisioning/schemas" ] && IMPORT_PATHS="$IMPORT_PATHS:.typedialog/provisioning/schemas"
[ -d ".typedialog/provisioning/validators" ] && IMPORT_PATHS="$IMPORT_PATHS:.typedialog/provisioning/validators"
[ -d ".typedialog/provisioning/defaults" ] && IMPORT_PATHS="$IMPORT_PATHS:.typedialog/provisioning/defaults"
[ -d "schemas" ] && IMPORT_PATHS="$IMPORT_PATHS:schemas"
export NICKEL_IMPORT_PATH="$IMPORT_PATHS"
echo " Using NICKEL_IMPORT_PATH: $NICKEL_IMPORT_PATH"
fi
for schema in $SCHEMAS; do
echo " Checking: $schema"
nickel typecheck "$schema" || exit 1
done
echo " ✓ All Nickel schemas valid"
# Lint Bash scripts
ci-lint-bash:
#!/usr/bin/env bash
echo "🔍 Linting Bash scripts..."
SCRIPTS=$(find . -name "*.sh" -o -name "*.bash" \
! -path "*/target/*" \
! -path "*/.git/*" \
! -path "*/.coder/*" \
! -path "*/.wrks/*" \
! -path "*/.claude/*" \
! -path "*/.project-tools/*" \
! -path "*/node_modules/*" \
| head -50)
if [ -z "$SCRIPTS" ]; then
echo " No Bash scripts found"
exit 0
fi
for script in $SCRIPTS; do
echo " Checking: $script"
shellcheck "$script" || exit 1
done
echo " ✓ All Bash scripts valid"
# Lint Markdown files
ci-lint-markdown:
@echo "🔍 Linting Markdown files (excluding generated/build directories)..."
@command -v markdownlint-cli2 >/dev/null || (echo "❌ markdownlint-cli2 not installed: npm install markdownlint-cli2"; exit 1)
markdownlint-cli2 "**/*.md" "#node_modules" "#.git" "#.typedialog" "#.coder" "#.wrks" "#.claude" "#.project-tools" "#target" "#dist" "#build"
# Lint prose/documentation
ci-lint-prose:
#!/usr/bin/env bash
echo "🔍 Linting prose with Vale (excluding generated directories)..."
command -v vale >/dev/null || (echo "❌ vale not installed: brew install vale"; exit 1)
vale sync
# Lint markdown files in docs directories only (excluding generated/archived directories)
timeout 60 find . -name "*.md" \
! -path "*/target/*" \
! -path "*/.git/*" \
! -path "*/.coder/*" \
! -path "*/.wrks/*" \
! -path "*/.claude/*" \
! -path "*/.project-tools/*" \
! -path "*/.typedialog/*" \
! -path "*/node_modules/*" \
! -path "*/dist/*" \
! -path "*/build/*" \
-print0 | xargs -0 -r timeout 30 vale --no-wrap . || true
echo " ✓ Prose linting completed"
# ==============================================================================
# Testing
# ==============================================================================
# Run all tests (excludes nu_plugins which are maintained separately)
ci-test:
#!/usr/bin/env bash
echo "🧪 Running tests..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Testing: $project_name"
(cd "$project_dir" && cargo test --all-features) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ All tests passed"
exit 0
else
echo " ❌ $FAILED project(s) have test failures"
exit 1
fi
# Run tests with coverage (requires cargo-llvm-cov; excludes nu_plugins)
ci-test-coverage:
#!/usr/bin/env bash
echo "📊 Running tests with coverage..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Coverage: $project_name"
(cd "$project_dir" && cargo llvm-cov --all-features --lcov --output-path lcov.info) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ Coverage reports generated"
exit 0
else
echo " ❌ $FAILED project(s) failed coverage"
exit 1
fi
# ==============================================================================
# Security Auditing
# ==============================================================================
# Run all security audits
ci-audit: ci-audit-rust
@echo "✅ All security audits passed!"
# Audit Rust dependencies (excludes nu_plugins which are maintained separately)
ci-audit-rust:
#!/usr/bin/env bash
echo "🔒 Auditing Rust dependencies..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Auditing: $project_name"
(cd "$project_dir" && cargo audit && cargo deny check licenses && cargo deny check advisories) || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ All security audits passed"
exit 0
else
echo " ❌ $FAILED project(s) have security issues"
exit 1
fi
# Generate SBOM (excludes nu_plugins which are maintained separately)
ci-sbom:
#!/usr/bin/env bash
echo "📦 Generating Software Bill of Materials..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
sbom_file="$project_dir/sbom-$project_name.json"
echo " Generating SBOM: $project_name"
(cd "$project_dir" && cargo sbom > "$sbom_file") || FAILED=$((FAILED+1))
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ SBOM files generated"
exit 0
else
echo " ❌ $FAILED project(s) failed SBOM generation"
exit 1
fi
# ==============================================================================
# Documentation
# ==============================================================================
# Check documentation (excludes nu_plugins which are maintained separately)
ci-docs:
#!/usr/bin/env bash
echo "📚 Checking documentation..."
REPO_ROOT=$(git rev-parse --show-toplevel 2>/dev/null || echo ".")
FOUND=0
FAILED=0
for cargo_file in $(find "$REPO_ROOT" -name "Cargo.toml" -type f ! -path "*/target/*" ! -path "*/.git/*" ! -path "*/plugins/nushell-plugins/*"); do
project_dir=$(dirname "$cargo_file")
project_name=$(basename "$project_dir")
echo " Checking docs: $project_name"
(cd "$project_dir" && cargo doc --no-deps --document-private-items 2>&1 | grep -i "warning:" && FAILED=$((FAILED+1)) || true)
FOUND=$((FOUND+1))
done
if [ $FOUND -eq 0 ]; then
echo " No Rust projects found (nu_plugins are excluded)"
exit 0
fi
if [ $FAILED -eq 0 ]; then
echo " ✓ Documentation check passed"
exit 0
else
echo " ❌ $FAILED project(s) have doc warnings"
exit 1
fi
# ==============================================================================
# Pre-commit Setup
# ==============================================================================
# Install pre-commit hooks
setup-hooks:
@echo "🪝 Installing pre-commit hooks..."
@if command -v pre-commit &> /dev/null; then \
pre-commit install && pre-commit install --hook-type pre-push; \
echo "✓ Pre-commit hooks installed"; \
else \
echo "❌ pre-commit not found. Install with: pip install pre-commit"; \
exit 1; \
fi
# Run pre-commit on all files
hooks-run-all:
@echo "🪝 Running pre-commit on all files..."
pre-commit run --all-files
# ==============================================================================
# Utility Commands
# ==============================================================================
# Note: Use `just clean` from main justfile for full cleanup
Reference in New Issue View Git Blame Copy Permalink