UNPKG

@kubeasy-dev/kubeasy-cli

Version:

Command Line to interact with kubeasy.dev and challenges

github.com/kubeasy-dev/kubeasy-cli

kubeasy-dev/kubeasy-cli

353 lines (248 loc) 8.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
# CI/CD Pipeline This document describes the continuous integration and deployment pipeline for `kubeasy-cli`. ## Overview The CI/CD pipeline is built with GitHub Actions and handles: - ✅ Code quality checks (linting, testing) - 📦 Multi-platform binary builds - 🚀 Automated releases to GitHub and NPM - 🔄 Automated dependency updates ## Workflows ### 1. Linting (`lint.yml`) **Triggers:** Push to `main`, Pull Requests **Purpose:** Ensure code quality and consistency **Steps:** 1. Run `golangci-lint` with project configuration 2. Check for common Go issues (unused code, complexity, etc.) 3. Validate GitHub Actions workflow files **Configuration:** `.github/linters/.golangci.yml` ### 2. Manual Release (`release-dispatch.yml`) **Triggers:** Manual workflow dispatch **Purpose:** Create new releases with version bump **Usage:** 1. Navigate to [Actions → Manual Release](https://github.com/kubeasy-dev/kubeasy-cli/actions/workflows/release-dispatch.yml) 2. Click "Run workflow" 3. Select version type: - `patch` - Bug fixes (1.0.0 → 1.0.1) - `minor` - New features (1.0.0 → 1.1.0) - `major` - Breaking changes (1.0.0 → 2.0.0) **What happens:** 1. **Pre-release validation:** - Verify on `main` branch - Check working directory is clean - Run tests with race detector - Run linters - Test build 2. **Version bump:** - Calculate new version - Update `package.json` and `package-lock.json` - Create commit: `chore: release vX.Y.Z` - Create tag: `vX.Y.Z` 3. **Trigger release:** - Push commit and tag to GitHub - Automatically triggers the release workflow ### 3. Release Build (`releasing.yml`) **Triggers:** Git tags matching `v*.*.*` (e.g., `v1.0.0`) **Purpose:** Build binaries and publish to all platforms **Steps:** #### Pre-release Checks - Run full test suite - Run linters - Test build #### Build Phase (GoReleaser) - Build binaries for 6 platforms: - Linux: amd64, arm64 - macOS: amd64 (Intel), arm64 (Apple Silicon) - Windows: amd64, arm64 - Generate checksums - Upload binaries to Cloudflare R2 - Create GitHub Release with artifacts #### NPM Publish Phase - Wait for binaries to be available on R2 - Run `npm ci` and `npm publish` - Publish `@kubeasy-dev/kubeasy-cli` package **Artifacts:** - GitHub Release with binaries and checksums - NPM package with binary downloader - Binaries on `https://download.kubeasy.dev` ### 4. AI Code Review (`claude-code-review.yml`) **Triggers:** Pull Requests **Purpose:** AI-powered code review with Claude **What it does:** - Analyzes code changes - Provides suggestions for improvements - Identifies potential issues ## Release Process ### Automated Release (Recommended) The easiest way to create a release: ``` 1. Go to GitHub Actions → Manual Release 2. Click "Run workflow" 3. Select version type (patch/minor/major) 4. Click "Run workflow" 5. Monitor progress in GitHub Actions ``` ### Manual Release (Alternative) If you need more control: ```bash # 1. Ensure you're on main and up to date git checkout main git pull origin main # 2. Run pre-release checks go test -v -race ./... golangci-lint run --config .github/linters/.golangci.yml go build . # 3. Create version and tag npm version patch # or minor/major git push --follow-tags ``` ## Configuration Files ### `.goreleaser.yaml` Defines the release build process: - Binary build settings (LDFLAGS, platforms, architectures) - Archive formats (tar.gz for Unix, zip for Windows) - Cloudflare R2 upload configuration - Changelog generation rules Key features: - Cross-compilation for all platforms - Version injection via LDFLAGS - Custom binary names and paths - Automated changelog from commits ### `package.json` NPM package configuration: - Package metadata and version - Binary download script in `postinstall` - Release scripts The NPM package acts as a wrapper that: 1. Detects user's platform (OS + architecture) 2. Downloads the correct binary from R2 3. Installs it globally as `kubeasy` ## Monitoring Releases ### GitHub Actions Monitor workflow runs: - https://github.com/kubeasy-dev/kubeasy-cli/actions Check for: - ✅ Green checkmarks (success) - ❌ Red X marks (failure) - ⏳ Yellow dots (in progress) ### GitHub Releases View published releases: - https://github.com/kubeasy-dev/kubeasy-cli/releases Each release includes: - Release notes (auto-generated from commits) - Binary downloads for all platforms - Checksums file (`checksums.txt`) ### NPM Package Check NPM publication: - https://www.npmjs.com/package/@kubeasy-dev/kubeasy-cli Verify: - Latest version is published - Package size is reasonable (~5-10 KB) - Install works: `npm install -g @kubeasy-dev/kubeasy-cli` ## Troubleshooting ### Release Workflow Fails on Pre-checks **Problem:** Tests or linters fail **Solution:** ```bash # Run locally to identify issue go test -v ./... golangci-lint run --config .github/linters/.golangci.yml # Fix issues, commit, and retry ``` ### NPM Publish Fails **Problem:** Package already exists or authentication fails **Solutions:** - Check if version already exists on NPM - Verify `NPM_TOKEN` secret is valid - Ensure token has publish permissions ### Binary Download Fails **Problem:** Users can't download binaries after NPM install **Solutions:** - Verify binaries are uploaded to R2: `https://download.kubeasy.dev/kubeasy-cli/vX.Y.Z/` - Check R2 credentials are valid - Ensure sufficient wait time in NPM publish job ### GoReleaser Build Fails **Problem:** Build fails for specific platform **Solutions:** - Test locally: `goreleaser release --snapshot --clean` - Check `.goreleaser.yaml` configuration - Verify LDFLAGS and build tags ## Security ### Secrets Management Required secrets in GitHub repository settings: - `GITHUB_TOKEN` - Auto-provided, used for releases - `NPM_TOKEN` - NPM authentication for publishing - `R2_ACCESS_KEY_ID` - Cloudflare R2 access key - `R2_SECRET_ACCESS_KEY` - Cloudflare R2 secret key ### Permissions Workflows use minimal permissions: - `contents: read` - Read repository code - `contents: write` - Create releases and tags - `id-token: write` - OIDC authentication ### Action Pinning All GitHub Actions are pinned to specific SHA hashes for security: ```yaml uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 ``` This prevents supply chain attacks from compromised action versions. ## Performance Optimizations ### Caching Workflows use caching to speed up builds: - **Go modules cache:** Dependencies are cached between runs - **Build cache:** Go build artifacts are cached - **Action cache:** Downloaded actions are cached Typical speedup: 2-3 minutes per workflow run ### Parallel Jobs Jobs run in parallel when possible: - Pre-release checks run before build - Build and NPM publish can run in parallel (NPM waits for R2) ### Smart Dependencies - Use `go mod download` explicitly for better caching - Only download dependencies when `go.sum` changes ## Best Practices ### Before Creating a Release 1. ✅ All tests pass locally 2. ✅ No linter warnings 3. ✅ Changes are merged to `main` 4. ✅ CHANGELOG or commit messages are clear 5. ✅ Version bump type is appropriate ### Semantic Versioning Follow [semver](https://semver.org/): - **Patch** (1.0.0 → 1.0.1) - Backward-compatible bug fixes - **Minor** (1.0.0 → 1.1.0) - Backward-compatible features - **Major** (1.0.0 → 2.0.0) - Breaking changes ### Commit Messages Use [Conventional Commits](https://www.conventionalcommits.org/): ``` feat: add new command fix: resolve authentication issue docs: update installation guide chore: update dependencies ``` These are used to auto-generate release notes. ## Local Testing ### Test Release Build Test the full release process without publishing: ```bash # Install GoReleaser brew install goreleaser # Run snapshot build goreleaser release --snapshot --clean # Check artifacts ls -lh dist/ ``` This creates binaries in `dist/` without creating a release. ### Test NPM Package Locally Test the NPM package installation: ```bash # Build binaries task build # Test NPM package npm pack npm install -g kubeasy-dev-kubeasy-cli-*.tgz # Verify installation kubeasy version ``` ## Related Documentation - [CONTRIBUTING.md](../CONTRIBUTING.md) - Development workflow - [README.md](../README.md) - Project overview - [.github/workflows/README.md](../.github/workflows/README.md) - Workflow details