Merge pull request #200 from devscafecommunity/feature/M1.1.5-ci-cd-pipeline

LyeZinho · web-flow · commit 658c13445686 · 2026-04-17T12:24:33.000+01:00
Feature/m1.1.5 ci cd pipeline
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -1,50 +1,106 @@
-name: CI/CD Pipeline
+name: Rust CI/CD
 
 on:
+  push:
+    branches: [main, develop]
+    paths:
+      - 'src/**'
+      - 'crates/**'
+      - 'Cargo.toml'
+      - 'Cargo.lock'
+      - '.github/workflows/ci.yml'
+  pull_request:
+    branches: [main, develop]
+    paths:
+      - 'src/**'
+      - 'crates/**'
+      - 'Cargo.toml'
+      - 'Cargo.lock'
   workflow_dispatch:
 
 jobs:
-  build:
-    name: Build & Test
+  test:
+    name: Test & Lint
     runs-on: ${{ matrix.os }}
     strategy:
       matrix:
         os: [ubuntu-latest, windows-latest, macos-latest]
         
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       
       - name: Setup Rust
-        uses: actions-rs/toolchain@v1
+        uses: dtolnay/rust-toolchain@stable
         with:
-          toolchain: stable
-          override: true
-      
-      - name: Setup Python
-        uses: actions/setup-python@v4
-        with:
-          python-version: '3.11'
+          components: rustfmt, clippy
       
       - name: Cache cargo
-        uses: actions/cache@v3
+        uses: Swatinem/rust-cache@v2
         with:
-          path: ~/.cargo
-          key: ${{ runner.os }}-cargo-${{ hashFiles('**/Cargo.lock') }}
+          workspaces: '.'
       
-      - name: Build Rust
-        run: cargo build --verbose --release
+      - name: Build
+        run: cargo build --verbose
       
       - name: Run tests
         run: cargo test --verbose
       
-      - name: Lint Rust
-        run: cargo clippy -- -D warnings
+      - name: Lint (clippy)
+        run: cargo clippy --all-targets --all-features -- -D warnings
+      
+      - name: Format check
+        run: cargo fmt -- --check
+
+  coverage:
+    name: Code Coverage
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup Rust
+        uses: dtolnay/rust-toolchain@stable
+      
+      - name: Install tarpaulin
+        run: cargo install cargo-tarpaulin
+      
+      - name: Generate coverage
+        run: cargo tarpaulin --workspace --out Xml --exclude-files tests/* --timeout 300
+      
+      - name: Upload coverage to Codecov
+        uses: codecov/codecov-action@v3
+        with:
+          files: ./cobertura.xml
+          flags: rust
+          fail_ci_if_error: false
 
   security:
     name: Security Audit
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
-      - uses: rustsec/audit-check-action@v1
+      - uses: actions/checkout@v4
+      
+      - name: Setup Rust
+        uses: dtolnay/rust-toolchain@stable
+      
+      - name: Install cargo-audit
+        run: cargo install cargo-audit
+      
+      - name: Run security audit
+        run: cargo audit
+
+  release-build:
+    name: Release Build
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup Rust
+        uses: dtolnay/rust-toolchain@stable
+      
+      - name: Cache cargo
+        uses: Swatinem/rust-cache@v2
         with:
-          token: ${{ secrets.GITHUB_TOKEN }}
+          workspaces: '.'
+      
+      - name: Build release
+        run: cargo build --release --verbose
diff --git a/.github/workflows/cpp-build.yml b/.github/workflows/cpp-build.yml
@@ -0,0 +1,103 @@
+name: C++ CI/CD
+
+on:
+  push:
+    branches: [main, develop]
+    paths:
+      - 'crates/pandora-memory/**'
+      - 'crates/odlaguna-watchdog/**'
+      - 'CMakeLists.txt'
+      - 'cmake/**'
+      - '.github/workflows/cpp-build.yml'
+  pull_request:
+    branches: [main, develop]
+    paths:
+      - 'crates/pandora-memory/**'
+      - 'crates/odlaguna-watchdog/**'
+      - 'CMakeLists.txt'
+      - 'cmake/**'
+  workflow_dispatch:
+
+jobs:
+  build:
+    name: Build & Unit Tests
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        os: [ubuntu-latest, windows-latest, macos-latest]
+        include:
+          - os: ubuntu-latest
+            compiler: gcc
+            cxx_compiler: g++
+          - os: windows-latest
+            compiler: msvc
+            cxx_compiler: cl
+          - os: macos-latest
+            compiler: clang
+            cxx_compiler: clang++
+        
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup CMake
+        uses: jwlawson/actions-setup-cmake@v1
+        with:
+          cmake-version: 3.25.x
+      
+      - name: Setup build dependencies (Ubuntu)
+        if: runner.os == 'Linux'
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y build-essential nlohmann-json3-dev
+      
+      - name: Setup build dependencies (macOS)
+        if: runner.os == 'macOS'
+        run: |
+          brew install cmake nlohmann-json
+      
+      - name: Create build directory
+        run: cmake -E make_directory ${{runner.workspace}}/build
+      
+      - name: Configure CMake
+        shell: bash
+        working-directory: ${{runner.workspace}}/build
+        run: cmake $GITHUB_WORKSPACE -DCMAKE_BUILD_TYPE=Release
+      
+      - name: Build
+        working-directory: ${{runner.workspace}}/build
+        shell: bash
+        run: cmake --build . --config Release --parallel
+      
+      - name: Run unit tests
+        working-directory: ${{runner.workspace}}/build
+        shell: bash
+        run: ctest --output-on-failure --verbose
+      
+      - name: Run clang-tidy (Ubuntu)
+        if: runner.os == 'Linux'
+        working-directory: ${{runner.workspace}}/build
+        continue-on-error: true
+        run: |
+          sudo apt-get install -y clang-tidy
+          cmake --build . --target clang-tidy || true
+
+  static-analysis:
+    name: Static Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup CMake
+        uses: jwlawson/actions-setup-cmake@v1
+        with:
+          cmake-version: 3.25.x
+      
+      - name: Install dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y build-essential cppcheck nlohmann-json3-dev
+      
+      - name: Run cppcheck
+        run: |
+          cppcheck --enable=all --suppress=missingIncludeSystem \
+            --error-exitcode=1 crates/pandora-memory crates/odlaguna-watchdog || true
diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
@@ -0,0 +1,96 @@
+name: Docker Build & Push
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'Dockerfile'
+      - 'docker-compose.yml'
+      - 'docker/**'
+      - 'src/**'
+      - 'crates/**'
+      - 'Cargo.toml'
+      - 'Cargo.lock'
+      - 'CMakeLists.txt'
+      - '.github/workflows/docker-build.yml'
+  workflow_dispatch:
+  schedule:
+    # Build nightly at 2 AM UTC
+    - cron: '0 2 * * *'
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      
+      - name: Log in to Container Registry
+        if: github.event_name != 'pull_request'
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=branch
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=sha
+            type=raw,value=latest,enable={{is_default_branch}}
+      
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          push: ${{ github.event_name != 'pull_request' }}
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+  
+  docker-compose-test:
+    name: Docker Compose Integration Test
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      
+      - name: Build images
+        run: docker-compose -f docker-compose.yml build
+      
+      - name: Start services
+        run: |
+          docker-compose -f docker-compose.yml up -d
+          sleep 10
+      
+      - name: Verify services are running
+        run: |
+          docker-compose -f docker-compose.yml ps
+          docker-compose -f docker-compose.yml exec -T mimi sh -c 'echo "Mimi service running"'
+      
+      - name: Collect logs
+        if: always()
+        run: docker-compose -f docker-compose.yml logs
+      
+      - name: Stop services
+        if: always()
+        run: docker-compose -f docker-compose.yml down -v
diff --git a/create_github_issues.py b/create_github_issues.py
