Until he actually had to use it.

Took 2 hours of reading through examples just to deploy the site.
Turns out, it is hard to do even just the bash stuff when you can’t see the container.

  • akash_rawal@lemmy.world
    link
    fedilink
    arrow-up
    60
    ·
    edit-2
    12 days ago

    Time for the yearly barrage of “Setup CI”…“Fix CI” commits.

    That is my experience with basically every CI service out there.

    • frezik@midwest.social
      link
      fedilink
      arrow-up
      38
      ·
      12 days ago

      Normally, you don’t want to commit code unless it’s been at least minimally tested, and preferably more than that.

      All the CI’s, however, force a workflow where you can only test it by committing the code and seeing if it works. I’m not sure how to fix that, but I see the problem.

      • smeg@feddit.uk
        link
        fedilink
        English
        arrow-up
        24
        ·
        12 days ago

        If you can test it on a feature branch then at least you can squash or tidy the commits after you’ve got them working. If you can only test by committing to main though, curse whoever designed that.

        • ulterno@programming.devOP
          link
          fedilink
          English
          arrow-up
          2
          ·
          12 days ago

          Well, it does have triggers for other branches:

          on:
            push:
              branches: [ "main" ]
            pull_request:
              branches: [ "main" ]
          

          So, most probably would have a way to run it on other branches.

          • odelik@lemmy.today
            link
            fedilink
            arrow-up
            7
            ·
            11 days ago

            You can also use the workflow_dispatch execution pattern and use some data input params and execute through the portal interface.

            However, do be careful about trusting input params without sanitizing them (GH has docs around this).

            • ulterno@programming.devOP
              link
              fedilink
              English
              arrow-up
              1
              ·
              11 days ago

              Thanks, I’ll look into that.
              While trying this time (as you can see in one of the commits), I added workflow_dispatch at the wrong place, causing a problem. Later realised that it is part of the on

      • houseofleft@slrpnk.net
        link
        fedilink
        English
        arrow-up
        18
        ·
        12 days ago

        Here’s my hot tip! (ok maybe luke warm)

        Write as much of your CICD in a scripting language like bash/python/whatever. You’ll be able to test it locally and then the testing phase of your CICD will just be setting up the environment so it has the right git branches coined, permissions, etc.

        You won’t need to do 30 commits now, only like 7! And you’ll cry for only like 20 minutes instead of a whole afternoon!

        • frezik@midwest.social
          link
          fedilink
          arrow-up
          6
          ·
          12 days ago

          Yeah, I think that’s the best that can be done right now.

          It also leads to a different question: do we really need these fancy systems, or do we need a bunch of bash scripts with a cronjob or monitors to trigger the build?

          • ulterno@programming.devOP
            link
            fedilink
            English
            arrow-up
            2
            ·
            12 days ago

            In my last workplace, I was responsible for making whatever automation I wanted (others just did everything manually) and I just appended a bunch of bash scripts to the Qt Creator Build and Run commands. It easily worked pretty well.
            I guess the fancy systems are again, just to add another layer of abstraction, when everything is running on their containers instead of ours.

        • marzhall@lemmy.world
          link
          fedilink
          arrow-up
          4
          ·
          11 days ago

          Aggressively seconding this. If you can just do a step in a bash command, do that, don’t use the stupid yaml wrapper they provide that actually just turns around and runs the same bash command but with extra abstraction to learn, break, fix, and maintain for stupid, meaningless upgrades. It will save you time because you’ll be using better-tested, more widely-used tools and approaches.

        • CodeMonkey@programming.dev
          link
          fedilink
          arrow-up
          3
          ·
          11 days ago

          We have all of our build and CI in make so, theoretically, all the CI system needs to do is run a single command. Then I try to run the command on a CI server, it is missing an OS package (and their package manager version is a major version behind so I need to download a pre-built binary from the project site). Then the tests get kill for using too much memory. Then, after I reduce resource limits, the tests time out…

          I am grateful that we use CircleCI as our SaaS CICD and they let me SSH on to a test container so I can see what is going on.

      • Ajen@sh.itjust.works
        link
        fedilink
        arrow-up
        6
        ·
        11 days ago

        Line the other commenter said, there’s nothing wrong with committing temp/untested code to a feature branch as long as you clean it up before the PR.

        • frezik@midwest.social
          link
          fedilink
          arrow-up
          4
          ·
          11 days ago

          There are issues that come up in niche cases. If you’re using git bisect to track down a bug, a non-working commit can throw that off.

          • Ajen@sh.itjust.works
            link
            fedilink
            arrow-up
            8
            ·
            edit-2
            11 days ago

            You might have misunderstood what I meant by “clean up before the PR.” None of the temp commits should end up in the main branch, where people would be bisecting.

      • akash_rawal@lemmy.world
        link
        fedilink
        arrow-up
        5
        ·
        12 days ago

        We test our code locally, but we cannot test the workflow. By definition, testing the workflow has to be done on a CI-like system.

        There is nektos/act for running github actions locally, it works for simple cases. There still are many differences between act and github actions.

        It might be possible for a CI to define workflow steps using Containerfile/Dockerfile. Such workflows would be reproducible locally.

  • GetOffMyLan@programming.dev
    link
    fedilink
    arrow-up
    38
    arrow-down
    1
    ·
    12 days ago

    Every time I create a new repo haha I usually just delete the runs and squash the commits so it looks like I got it first time.

  • MP3Martin@programming.dev
    link
    fedilink
    arrow-up
    22
    ·
    12 days ago

    This also used to happen to me

    What i recommend is to create a private repo with the same content, create and test the workflow file there and copy it back into the main repo when you get it to work.

  • TrickDacy@lemmy.world
    link
    fedilink
    arrow-up
    13
    arrow-down
    1
    ·
    12 days ago

    There’s a vscode extension, I think called GHA, which validates your workflow yaml inline so you can avoid a lot of that trial and error.

  • odelik@lemmy.today
    link
    fedilink
    arrow-up
    7
    ·
    12 days ago

    Unless I’m doing a simple bash or pwsh script, I prefer to use GHA Script due to the headaches caused by how things are translated down and missing quotes/slashes/etc can cause massive headaches.

    I’ve been meaning on spending a morning getting Nektos/ACT running.

    • ulterno@programming.devOP
      link
      fedilink
      English
      arrow-up
      3
      ·
      12 days ago

      I’ve been meaning on spending a morning getting Nektos/ACT running.

      I was just going to say I need to find a way to run it all on my system to learn it. If this can do it without actually having to push to GitHub, it would be really good for practice.

      • Traister101@lemmy.today
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        12 days ago

        Act works out pretty good but you need to pass it a token and stuff so the actual github CLI bits can work which is kind of a hassle. It took me much too long to discover you need a classic token, the one from the github CLI app gh auth token won’t work.

        Edit: Ah! Also getting act setup involved getting docker setup which involved me enabling virtualization in my bios for what I swear is like the 4th time I’ve done so. Also because I’m on Windows (iirc at least) I had to setup WSL or just make a windows container ಠ_ಠ

        • tyler@programming.dev
          link
          fedilink
          arrow-up
          3
          ·
          10 days ago

          You also need to know what the internal GitHub event json looks like. Using act was such a pain I just gave up. Have tried several times now and it’s just easier to create a second repo just for testing and overwrite it with your current repo anytime you need to do major workflow changes.

        • odelik@lemmy.today
          link
          fedilink
          arrow-up
          3
          ·
          12 days ago

          Docker issues are always fun. I’ve repeatedly ran into docker kubernetes ssl certs being blocked by my ISP because they are dumb. Recently switched ISPs that let let’s me actually have that control.

  • _____@lemm.ee
    link
    fedilink
    English
    arrow-up
    6
    ·
    11 days ago

    GitHub CI is great. too great. some devs have taken it upon their hands to attempt and wield an unwieldy power.

    and unfortunately at my work it is my job to fix that unwieldy power

    • ulterno@programming.devOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      11 days ago

      Guess GitHub can now claim to have created a lot more jobs.

      Next, for me to check out GitLab CI.

      And then keep a minimalist git serving solution for my own use.

  • mesamune@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    10 days ago

    Instead of using up time/$$ on github actions, you should try running the script locally to make sure everything works before commiting: https://github.com/nektos/act

    Github CI still feels like an alpha project sometimes. Certain stacks look like they are supported, but it can be difficult to do the same thing as other CI tools (like GitLab/CircleCI/etc…) such as running things locally. Their tool will get you 95% of the way there. Other tools will also allow you to ssh into the box itself (Gitlab/Circleci) which is extremity useful when debugging scripts/processes.

    My personal opinion is that github actions is a work in progress given the state of much of the community. GitLab has much better tools. But this is a great learning experience for sure. And more projects that use CI/CD the better!

    • ulterno@programming.devOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      10 days ago

      allow you to ssh into the box itself (Gitlab/Circleci)

      In that case, things just get way easier. I can just check it out like a normal system.

      • mesamune@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        10 days ago

        yep! After doing CI/CD for close to 10 years, its one of the things Travis/CircleCI/GitLab has done that make it soooo much easier to debug. Saves time and sanity. Because as much as we hate it, sometimes the only way to debug is to actually dig into the system your working under.

        Docker helps as well.