You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

92 lines
2.8 KiB

build(deps): Bump actions/checkout from 2.3.4 to 2.3.5 (#7139) Bumps [actions/checkout](https://github.com/actions/checkout) from 2.3.4 to 2.3.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v2.3.5</h2> <p>Update dependencies</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/1e204e9a9253d643386038d443f96446fa156a97"><code>1e204e9</code></a> update licensed check (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/606">#606</a>)</li> <li><a href="https://github.com/actions/checkout/commit/0299a0d2b67d48224ce047d03c69693b37fe77fe"><code>0299a0d</code></a> update dist (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/605">#605</a>)</li> <li><a href="https://github.com/actions/checkout/commit/be0f44845645e415725af198163a96fea9e54334"><code>be0f448</code></a> Bump ws from 5.2.2 to 5.2.3 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/604">#604</a>)</li> <li><a href="https://github.com/actions/checkout/commit/56c00a7b1f53d3094df328ad4c2cd2b2d385c569"><code>56c00a7</code></a> Bump tmpl from 1.0.4 to 1.0.5 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/588">#588</a>)</li> <li><a href="https://github.com/actions/checkout/commit/85e47d1a2bef5be8023f6dce02e0e8451938924f"><code>85e47d1</code></a> Bump path-parse from 1.0.6 to 1.0.7 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/568">#568</a>)</li> <li><a href="https://github.com/actions/checkout/commit/3fc17f8645e9648158a6d23b033ab5f62df29f3c"><code>3fc17f8</code></a> Bump hosted-git-info from 2.8.5 to 2.8.9 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/500">#500</a>)</li> <li><a href="https://github.com/actions/checkout/commit/e3bc06d98631ce7e0e3db6bd158fafe028709e9f"><code>e3bc06d</code></a> Bump lodash from 4.17.15 to 4.17.21 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/499">#499</a>)</li> <li><a href="https://github.com/actions/checkout/commit/442567ba5761652b13c5c842a2f959ac9da6be57"><code>442567b</code></a> Bump handlebars from 4.5.3 to 4.7.7 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/497">#497</a>)</li> <li><a href="https://github.com/actions/checkout/commit/7f00b66d06eed909da8e56729955e53d186d95ed"><code>7f00b66</code></a> Bump y18n from 4.0.0 to 4.0.1 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/469">#469</a>)</li> <li><a href="https://github.com/actions/checkout/commit/eccf386318b560bdd401913a9fe3cca56dc369d6"><code>eccf386</code></a> Bump <code>@​actions/core</code> from 1.1.3 to 1.2.6 (<a href="https://github-redirect.dependabot.com/actions/checkout/issues/361">#361</a>)</li> <li>Additional commits viewable in <a href="https://github.com/actions/checkout/compare/v2.3.4...v2.3.5">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=2.3.4&new-version=2.3.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
3 years ago
  1. # Runs fuzzing nightly.
  2. name: fuzz-nightly
  3. on:
  4. workflow_dispatch: # allow running workflow manually
  5. schedule:
  6. - cron: '0 3 * * *'
  7. pull_request:
  8. branches: [master]
  9. paths:
  10. - "test/fuzz/**/*.go"
  11. jobs:
  12. fuzz-nightly-test:
  13. runs-on: ubuntu-latest
  14. steps:
  15. - uses: actions/setup-go@v2
  16. with:
  17. go-version: '1.17'
  18. - uses: actions/checkout@v2.3.5
  19. - name: Install go-fuzz
  20. working-directory: test/fuzz
  21. run: go get -u github.com/dvyukov/go-fuzz/go-fuzz github.com/dvyukov/go-fuzz/go-fuzz-build
  22. - name: Fuzz mempool-v1
  23. working-directory: test/fuzz
  24. run: timeout -s SIGINT --preserve-status 10m make fuzz-mempool-v1
  25. continue-on-error: true
  26. - name: Fuzz mempool-v0
  27. working-directory: test/fuzz
  28. run: timeout -s SIGINT --preserve-status 10m make fuzz-mempool-v0
  29. continue-on-error: true
  30. - name: Fuzz p2p-addrbook
  31. working-directory: test/fuzz
  32. run: timeout -s SIGINT --preserve-status 10m make fuzz-p2p-addrbook
  33. continue-on-error: true
  34. - name: Fuzz p2p-pex
  35. working-directory: test/fuzz
  36. run: timeout -s SIGINT --preserve-status 10m make fuzz-p2p-pex
  37. continue-on-error: true
  38. - name: Fuzz p2p-sc
  39. working-directory: test/fuzz
  40. run: timeout -s SIGINT --preserve-status 10m make fuzz-p2p-sc
  41. continue-on-error: true
  42. - name: Fuzz p2p-rpc-server
  43. working-directory: test/fuzz
  44. run: timeout -s SIGINT --preserve-status 10m make fuzz-rpc-server
  45. continue-on-error: true
  46. - name: Archive crashers
  47. uses: actions/upload-artifact@v2
  48. with:
  49. name: crashers
  50. path: test/fuzz/**/crashers
  51. retention-days: 3
  52. - name: Archive suppressions
  53. uses: actions/upload-artifact@v2
  54. with:
  55. name: suppressions
  56. path: test/fuzz/**/suppressions
  57. retention-days: 3
  58. - name: Set crashers count
  59. working-directory: test/fuzz
  60. run: echo "::set-output name=count::$(find . -type d -name 'crashers' | xargs -I % sh -c 'ls % | wc -l' | awk '{total += $1} END {print total}')"
  61. id: set-crashers-count
  62. outputs:
  63. crashers-count: ${{ steps.set-crashers-count.outputs.count }}
  64. fuzz-nightly-fail:
  65. needs: fuzz-nightly-test
  66. if: ${{ needs.fuzz-nightly-test.outputs.crashers-count != 0 }}
  67. runs-on: ubuntu-latest
  68. steps:
  69. - name: Notify Slack if any crashers
  70. uses: rtCamp/action-slack-notify@12e36fc18b0689399306c2e0b3e0f2978b7f1ee7
  71. env:
  72. SLACK_WEBHOOK: ${{ secrets.SLACK_WEBHOOK }}
  73. SLACK_CHANNEL: tendermint-internal
  74. SLACK_USERNAME: Nightly Fuzz Tests
  75. SLACK_ICON_EMOJI: ':firecracker:'
  76. SLACK_COLOR: danger
  77. SLACK_MESSAGE: Crashers found in Nightly Fuzz tests
  78. SLACK_FOOTER: ''