RWejlgaard/pez-infra
1
0
Fork 0
mirror of https://github.com/RWejlgaard/pez-infra.git synced 2026-05-06 04:14:43 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

fix: remove || true from compose lint so validation errors fail CI

Browse source 
The lint-docker-compose workflow was swallowing all validation errors with
|| true, meaning broken compose files would never fail the check.

- Remove || true and let validation failures propagate
- Add a pre-step that creates empty stubs for referenced env_file entries
  (e.g. bitwarden/settings.env) so docker compose config can validate
  structure without needing real secrets
- Track per-file pass/fail and exit non-zero if any file fails

Closes PESO-130
This commit is contained in:
Rasmus Wejlgaard 2026-04-03 19:49:20 +00:00
parent d8757d37e1
commit 4106d7ba75
1 changed files with 21 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
.github/workflows/lint-docker-compose.yml vendored
View file

@ -10,16 +10,36 @@ jobs:
steps:
- uses: actions/checkout@v4
- name: Stub missing env files referenced by Compose
run: |
shopt -s globstar nullglob
for f in ansible/services/**/docker-compose.yml ansible/services/**/docker-compose.yaml ansible/services/**/compose.yml ansible/services/**/compose.yaml; do
dir=$(dirname "$f")
# Create empty stubs for any env_file entries that don't exist
grep -oP 'env_file:\s*\K.*|^\s*-\s*\K\S+\.env' "$f" 2>/dev/null | while read -r envfile; do
envfile=$(echo "$envfile" | sed 's/^["'\'']*//;s/["'\'']*$//')
if [ -n "$envfile" ] && [ ! -f "$dir/$envfile" ]; then
echo "Creating stub: $dir/$envfile"
touch "$dir/$envfile"
fi
done
done
- name: Validate Compose files
run: |
failed=0
found=0
shopt -s globstar nullglob
for f in ansible/services/**/docker-compose.yml ansible/services/**/docker-compose.yaml ansible/services/**/compose.yml ansible/services/**/compose.yaml; do
echo "::group::Validating $f"
docker compose -f "$f" config --quiet 2>&1 || true
if ! docker compose -f "$f" config --quiet 2>&1; then
echo "::error file=$f::Compose validation failed"
failed=1
fi
echo "::endgroup::"
found=1
done
if [ "$found" -eq 0 ]; then
echo "No Compose files found — skipping."
fi
exit $failed