aggarwalakshun/k3s-at-home
0
0
Fork 0
Code Issues 1 Pull Requests Actions 2 Packages Projects Releases Wiki Activity

better-kubeconform #205

Merged
aggarwalakshun merged 7 commits from better-kubeconform into main 2025-12-12 23:13:42 +05:30
Conversation 0 Commits 7 Files Changed 1 +31 -23
1 changed files with 31 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
.gitea/workflows/kubeconform.yml
View File

@@ -1,10 +1,12 @@
name: Validate Kubernetes Manifests
on:
pull_request:
branches: [main]
push:
branches: [main]
paths:
- '**.yml'
- '**.yaml'
- '!.gitea/workflows/**'
- '!clusters/**/system-upgrade/crd.yml'
jobs:
kubeconform:
@@ -37,6 +39,7 @@ jobs:
files: |
**.yml
!.gitea/workflows/**
!clusters/**/system-upgrade/crd.yml
- name: Validate Manifests
if: steps.changed-files.outputs.any_changed == 'true'
@@ -53,6 +56,7 @@ jobs:
["IPAddressPool"]="metallb.io/ipaddresspool_v1beta1.json"
["SealedSecret"]="bitnami.com/sealedsecret_v1alpha1.json"
["ClusterPolicy"]="nvidia.com/clusterpolicy_v1.json"
["Plan"]="upgrade.cattle.io/plan_v1.json"
)
EXIT_CODE=0
@@ -62,7 +66,10 @@ jobs:
while IFS= read -r file; do
[ -z "$file" ] && continue
echo "=== Validating: $file ==="
KIND=$(yq -r '.kind // ""' "$file" 2>/dev/null || echo "")
MANIFESTS=$(yq e '.[]' "$file" | jq -c 'select(.kind != null)')
for manifest in "${MANIFESTS[@]}"; do
KIND=$(echo $manifest | yq -r '.kind // ""')
if [[ -n "$KIND" && -n "${SCHEMA_MAP[$KIND]}" ]]; then
echo "Found $KIND - using custom schema"
@@ -72,7 +79,7 @@ jobs:
-schema-location "$SCHEMA_URL" \
-cache "$KUBECONFORM_CACHE_DIR" \
-output json \
"$file"; then
"$manifest"; then
EXIT_CODE=1
fi
else
@@ -81,10 +88,11 @@ jobs:
-schema-location default \
-cache "$KUBECONFORM_CACHE_DIR" \
-output json \
"$file"; then
"$manifest"; then
EXIT_CODE=1
fi
fi
done
echo ""
done <<< "${ALL_CHANGED_FILES}"