69d8635f3c
Some checks failed
CI / Frontend Lint (pull_request) Failing after 7s
CI / Frontend Type Check (pull_request) Failing after 6s
CI / Frontend Build (pull_request) Failing after 6s
CI / Frontend E2E Tests (pull_request) Failing after 7s
CI / Orchestrator Build (pull_request) Failing after 5s
CI / Orchestrator Unit Tests (pull_request) Failing after 6s
CI / Orchestrator E2E (Testcontainers) (pull_request) Has been skipped
CI / Contracts Compile (pull_request) Failing after 5s
CI / Contracts Test (pull_request) Failing after 7s
Code Quality / SonarQube Analysis (pull_request) Failing after 21s
Code Quality / Code Quality Checks (pull_request) Failing after 5s
Security Scan / Dependency Vulnerability Scan (pull_request) Failing after 3s
Security Scan / OWASP ZAP Scan (pull_request) Failing after 3s
Closes gap-analysis v2 §7.8 (no E2E vs live Postgres / §10.8
(Testcontainers opt-in suite).
- tests/e2e/transactionLifecycle.e2e.test.ts — Postgres-backed E2E
suite via @testcontainers/postgresql. Brings up a real postgres:15
container, applies schema.sql (via pg simple-query protocol so $$
function bodies survive) + migrations 002/003/004, wires the
plans endpoints against it, and asserts:
* POST /api/plans persists and reads back
* eventBus.publish produces a hash-chained pair with verifyChain
returning ok
* idempotency_keys row insertion round-trips
- jest.e2e.config.js — dedicated config for tests/e2e/ with 120s
timeout; default jest.config.js now ignores /e2e/ so `npm test`
stays fast (<5s) and doesn't require Docker.
- package.json — adds 'npm run test:e2e' (sets RUN_E2E=1).
- devDependencies — testcontainers + @testcontainers/postgresql.
- Suite gates on `RUN_E2E=1`. Without it the describe block is
skipped, so CI environments without Docker don't fail; a guard
test asserts the skip invariant.
- .github/workflows/ci.yml — adds orchestrator-test (tsc + jest)
and orchestrator-e2e (gated on the 'run-e2e' PR label or any
push to main).
- Verification:
npx tsc --noEmit clean
npm test (unit) 7 suites, 80/80 passing
npm run test:e2e 1 suite, 4/4 passing (docker up)
188 lines
5.2 KiB
YAML
188 lines
5.2 KiB
YAML
name: CI
|
|
|
|
on:
|
|
push:
|
|
branches: [main, develop]
|
|
pull_request:
|
|
branches: [main, develop]
|
|
|
|
jobs:
|
|
# Frontend CI
|
|
frontend-lint:
|
|
name: Frontend Lint
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: webapp/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: webapp
|
|
run: npm ci
|
|
- name: Lint
|
|
working-directory: webapp
|
|
run: npm run lint
|
|
|
|
frontend-type-check:
|
|
name: Frontend Type Check
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: webapp/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: webapp
|
|
run: npm ci
|
|
- name: Type check
|
|
working-directory: webapp
|
|
run: npx tsc --noEmit
|
|
|
|
frontend-build:
|
|
name: Frontend Build
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: webapp/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: webapp
|
|
run: npm ci
|
|
- name: Build
|
|
working-directory: webapp
|
|
run: npm run build
|
|
- name: Upload build artifacts
|
|
uses: actions/upload-artifact@v4
|
|
with:
|
|
name: frontend-build
|
|
path: webapp/.next
|
|
|
|
frontend-e2e:
|
|
name: Frontend E2E Tests
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: webapp/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: webapp
|
|
run: npm ci
|
|
- name: Install Playwright
|
|
working-directory: webapp
|
|
run: npx playwright install --with-deps
|
|
- name: Run E2E tests
|
|
working-directory: webapp
|
|
run: npm run test:e2e
|
|
- name: Upload test results
|
|
uses: actions/upload-artifact@v4
|
|
if: always()
|
|
with:
|
|
name: playwright-report
|
|
path: webapp/playwright-report/
|
|
|
|
# Orchestrator CI
|
|
orchestrator-build:
|
|
name: Orchestrator Build
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: orchestrator/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: orchestrator
|
|
run: npm ci
|
|
- name: Build
|
|
working-directory: orchestrator
|
|
run: npm run build
|
|
|
|
orchestrator-test:
|
|
name: Orchestrator Unit Tests
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: orchestrator/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: orchestrator
|
|
run: npm ci
|
|
- name: Type check
|
|
working-directory: orchestrator
|
|
run: npx tsc --noEmit
|
|
- name: Unit tests
|
|
working-directory: orchestrator
|
|
run: npm test
|
|
|
|
orchestrator-e2e:
|
|
name: Orchestrator E2E (Testcontainers)
|
|
runs-on: ubuntu-latest
|
|
# Gap-analysis v2 §7.8 / §10.8 — opt-in E2E suite that brings up
|
|
# a real Postgres container and exercises the lifecycle against it.
|
|
# Gated on a workflow label so PR runs default to the fast unit
|
|
# suite; add the `run-e2e` label to a PR to include this job.
|
|
if: contains(github.event.pull_request.labels.*.name, 'run-e2e') || github.event_name == 'push'
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: orchestrator/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: orchestrator
|
|
run: npm ci
|
|
- name: E2E tests (Testcontainers Postgres)
|
|
working-directory: orchestrator
|
|
run: npm run test:e2e
|
|
|
|
# Smart Contracts CI
|
|
contracts-compile:
|
|
name: Contracts Compile
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: contracts/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: contracts
|
|
run: npm ci
|
|
- name: Compile contracts
|
|
working-directory: contracts
|
|
run: npm run compile
|
|
|
|
contracts-test:
|
|
name: Contracts Test
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v5
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: "18"
|
|
cache: "npm"
|
|
cache-dependency-path: contracts/package-lock.json
|
|
- name: Install dependencies
|
|
working-directory: contracts
|
|
run: npm ci
|
|
- name: Run tests
|
|
working-directory: contracts
|
|
run: npm run test
|
|
|