@@ -28,22 +28,11 @@ tasks:
2828then :${event.pull_request.base.repo.clone_url}
2929else :${event.repository.clone_url}
3030
31- codecov_secret :
32- codecov-fuzzmanager
33-
34- pypi_secret :
35- pypi-fuzzmanager
36-
3731project_name :
3832FuzzManager
3933
4034matrix :
4135language :python
42- secrets :
43- -type :env
44- secret :project/fuzzing/codecov-fuzzmanager
45- name :CODECOV_TOKEN
46- key :token
4736script :
4837 -bash
4938 -' -xec'
@@ -100,24 +89,6 @@ tasks:
10089 npm run test;
10190 npm run production;
10291 npm run codecov;
103- name :PyPI upload
104- version :" 3.9"
105- env :
106- TOXENV :pypi
107- script :
108- -tox
109- when :
110- release :true
111- all_passed :true
112- secrets :
113- -type :env
114- secret :project/fuzzing/pypi-fuzzmanager
115- name :TWINE_USERNAME
116- key :username
117- -type :env
118- secret :project/fuzzing/pypi-fuzzmanager
119- name :TWINE_PASSWORD
120- key :password
12192
12293in :
12394$if :>
@@ -152,88 +123,9 @@ tasks:
152123 -queue:create-task:highest:proj-fuzzing/ci
153124 -queue:create-task:highest:proj-fuzzing/ci-*
154125 -queue:scheduler-id:taskcluster-github
155- -secrets:get:project/fuzzing/${codecov_secret}
156- -secrets:get:project/fuzzing/${pypi_secret}
157126metadata :
158127name :${project_name} CI decision
159128description :Schedule CI tasks for ${project_name}
160129owner :' ${user}@users.noreply.github.com'
161130source :${http_repo}/raw/${fetch_rev}/.taskcluster.yml
162- -taskId :{$eval: as_slugid("docker")}
163- taskGroupId :${task_group}
164- provisionerId :proj-fuzzing
165- workerType :ci
166- dependencies :[]
167- created :{$fromNow: ''}
168- deadline :{$fromNow: '1 hour'}
169- payload :
170- image :
171- namespace :project.fuzzing.orion.orion-builder.master
172- path :public/orion-builder.tar.zst
173- type :indexed-image
174- maxRunTime :3600
175- capabilities :
176- privileged :true
177- env :
178- LOAD_DEPS :" 0"
179- GIT_REPOSITORY :${http_repo}
180- GIT_REVISION :${fetch_rev}
181- BUILD_TOOL :podman
182- DOCKERFILE :Dockerfile
183- IMAGE_NAME :mozillasecurity/fuzzmanager
184- ARCHIVE_PATH :/image.tar
185- command :
186- -sh
187- --c
188- -uname -a && exec build
189- artifacts :
190- public/fuzzmanager.tar.zst :
191- expires :{$fromNow: '6 months'}
192- path :/image.tar.zst
193- type :file
194- scopes :
195- -docker-worker:capability:privileged
196- metadata :
197- name :FuzzManager Docker build
198- description :FuzzManager Docker build
199- owner :' ${user}@users.noreply.github.com'
200- source :${http_repo}/raw/${fetch_rev}/.taskcluster.yml
201- -$if :' tasks_for in ["github-push"] && fetch_ref == "refs/heads/master"'
202- then :
203- taskId :{$eval: as_slugid("docker_push")}
204- taskGroupId :${task_group}
205- provisionerId :proj-fuzzing
206- workerType :ci
207- dependencies :
208- -{$eval: as_slugid("docker")}
209- created :{$fromNow: ''}
210- deadline :{$fromNow: '1 hour'}
211- payload :
212- capabilities :
213- privileged :true
214- image :
215- namespace :project.fuzzing.orion.orion-builder.master
216- path :public/orion-builder.tar.zst
217- type :indexed-image
218- maxRunTime :3600
219- features :
220- taskclusterProxy :true
221- env :
222- TASK_ID :{$eval: as_slugid("docker")}
223- TASKCLUSTER_SECRET :" project/fuzzing/docker-hub"
224- GIT_REPOSITORY :${http_repo}
225- GIT_REVISION :${fetch_rev}
226- SERVICE_NAME :fuzzmanager
227- command :
228- -sh
229- --c
230- -uname -a && exec push
231- scopes :
232- -docker-worker:capability:privileged
233- -secrets:get:project/fuzzing/docker-hub
234- metadata :
235- name :FuzzManager Docker push
236- description :FuzzManager Docker push
237- owner :' ${user}@users.noreply.github.com'
238- source :${http_repo}/raw/${fetch_rev}/.taskcluster.yml
239131else :[]