sentrysetup/.gitlab-ci.yml

include:
- template: 'Workflows/MergeRequest-Pipelines.gitlab-ci.yml'
- project: unboundsoftware/ci-templates
  file: Release.gitlab-ci.yml

image: golang:1.23.2@sha256:ad5c126b5cf501a8caef751a243bb717ec204ab1aa56dc41dc11be089fafcb4f

stages:
- deps
- test

run-pre-commit:
  stage: .pre
  image: unbound/pre-commit
  variables:
    PRE_COMMIT_HOME: ${CI_PROJECT_DIR}/.cache/pre-commit
  cache:
  - key:
      files:
      - .pre-commit-config.yaml
    paths:
    - ${PRE_COMMIT_HOME}
  script:
  - pre-commit run --all-files

deps:
  stage: deps
  script:
  - go mod download

test:
  stage: test
  dependencies:
  - deps
  script:
  - CGO_ENABLED=1 go test -mod=readonly -race -coverprofile=coverage.txt -covermode=atomic -coverpkg=$(go list ./... | tr '\n' , | sed 's/,$//') ./...
  - go tool cover -html=coverage.txt -o coverage.html
  - go tool cover -func=coverage.txt
  - curl -Os https://uploader.codecov.io/latest/linux/codecov
  - chmod +x codecov
  - ./codecov -t ${CODECOV_TOKEN} -R $CI_PROJECT_DIR -C $CI_COMMIT_SHA -r $CI_PROJECT_PATH

vulnerabilities:
  stage: test
  image: golang:1.23.2@sha256:ad5c126b5cf501a8caef751a243bb717ec204ab1aa56dc41dc11be089fafcb4f
  script:
  - go install golang.org/x/vuln/cmd/govulncheck@latest
  - govulncheck ./...