Let CI check & fix your yamls

adriens - Mar 10 '22 - - Dev Community

๐Ÿ‘‰ Intro

A few months ago, we have started to migrate our sourcecode CI & CD to Github.com.

Then, both DEV and OPS started to migrate source codes.

It appeared that OPS had to migrate a huge amount of Ansible related repos from an onPrem Gitlab instance to Github.com, and we wanted to take advantage of linting and code quality of the yamls.

OPS started to develop the migration process so it could be entirely code driven and tested.

What appeared was that we needed to manage that huge amount of code to :

  • 1๏ธโƒฃ lint (syntax validity, but for weirdnesses like key repetition and cosmetic problems such as lines length, trailing spaces, indentation, etc)
  • 2๏ธโƒฃ fix/implement lints feedbacks in a massive way (they were so huge that we could not imagine do that by hand)

OPS did choose to use the following approach :

  • 1๏ธโƒฃ Lint with yamllint
  • 2๏ธโƒฃ Fix with yamlfixer, which in facts uses yamllint in his core

As DEV & OPS are using yaml everyday a -bit- lot more (k8s, CI configuration, Spring Boot configuration, ...), we started to

think about a common toolbox that we could embed in our CI pipeline, on Github.com.

What we needed to do was to :

  1. Integrate OPS sourcecode (DevOPS teamwork)
  2. Package it inside as a dedicated GH Action that everyone could add to their pipeline within a few lines of code

๐Ÿ› ๏ธ Yaml Fixer

An important work has been done by OPS on yamlfixer so it could be used conveniently from the cli :

GitHub logo opt-nc / yamlfixer

Automates the fixing of problems reported by yamllint by parsing its output

License Build

Docker Image

PyPI PyPI - Python Version PyPI - Downloads

yamlfixer's logo yamlfixer

โ” About

yamlfixer automates the fixing of problems reported by yamllint by parsing its output.

๐Ÿ–ผ๏ธ Screenshot

Here'a screenshot of yamlfixer launched on yaml-test-suite :

yamlfixer's screenshot

๐Ÿ“‘ Installation

The easiest way to install yamlfixer is from pypi, as described below.

๐Ÿง Linux install

python3 -m pip install yamlfixer-opt-nc
Enter fullscreen mode Exit fullscreen mode

๐ŸชŸ Windows install

python -m pip install yamlfixer-opt-nc
Enter fullscreen mode Exit fullscreen mode

pipx setup

For an optimal experience we recommand using pipx.

To install :

pipx install yamlfixer-opt-nc
pipx list
Enter fullscreen mode Exit fullscreen mode

To upgrade :

pipx upgrade yamlfixer-opt-nc
Enter fullscreen mode Exit fullscreen mode

To uninstall :

pipx uninstall yamlfixer-opt-nc

๐Ÿš€ Usage

This software automatically fixes some errors and warnings reported by yamllint.

usage: yamlfixer [-h] [-v] [-b] [-B BACKUPSUFFIX] [-d] [-D DIFF_FILE] [-e EXTENSIONS] [-f]
                 [-F] [-l] [-N] [-n] [-r LEVEL] [-j | -p | -s] [-t TABSIZE]
                 [-c CONFIG_FILE | -C CONFIG_DATA]
                 [FILE_or_DIR [FILE_or_DIR ...]]
Fix formatting problems in YAML documents. If no file is specified, then reads
โ€ฆ
Enter fullscreen mode Exit fullscreen mode
View on GitHub

Still this cli needed a Python runtime to be used.

๐Ÿณ Deliver as a Docker image

Then we wanted to distribute it an easier way, which meaned :

package it as a Docker image.

At that point, DEVs took the relay and implemented Docker release on GH CI, and pushed images on DockerHub under optnc/yamlfixer :
Image description

๐Ÿƒ Deliver as a GH Action

Now, we could use the Docker image to implement the following Public GH Action :

GitHub logo opt-nc / yamlfixer-action

Github action that fixes some errors and warnings reported by yamllint and create a pull request with fixes.

โ” About

This github-action is based on the tool Yamlfixer :

It automatically fixes some errors and warnings reported by yamllint and creates a pull request that embeds the fixes.

๐Ÿงฐ Usage

See action.yml

You need a Github account that is allowed to create pull request on the inspected repository.

Find below an example that allows to check yaml files on each push with verbose mode :

name: Lint yaml files

on: [push]

jobs:
  lint:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout my app
        uses: actions/checkout@v3
      - name: Lint yaml files
        uses: opt-nc/yamlfixer-action
        with:
            options: --summary
            user: ${{secrets.my_user}}
            token: ${{secrets.my_user_password}}
Enter fullscreen mode Exit fullscreen mode

The github-action creates :

  1. A new branch named yamlfixer/patch/$branch_name
  2. The pull request to be merged into the working branch

๐Ÿ”– Resources

Here are some useful resourcesโ€ฆ

View on GitHub

... that could be released on the Marketplace :

Image description

๐Ÿค– Action usage

Here is the code (and... it's yaml ๐Ÿ”๐Ÿฅš๐Ÿฃ) required to use the action in any workflow :

name: Lint yaml files

on: [push]

jobs:
  lint:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout my app
        uses: actions/checkout@v2
      - name: Lint yaml files
        uses: opt-nc/yamlfixer-action
        with:
            yaml_file: .github/*.yml
            options: --verbose
            user: ${{secrets.my_user}}
            token: ${{secrets.my_user_password}}
Enter fullscreen mode Exit fullscreen mode

๐Ÿ‘‰ Notice that the action creates a new branch and the pull request to be merged into the working branch so this code activity can be managed and reviewed as any other source code proposal.

๐ŸŽฆ Live demo

As a live video worths a thousand words : discover how the Github Action runs on a dedicated repository :

๐Ÿ“ท Examples in details

โŒ Rejected PR because of lint failure

Image description

โœ”๏ธ Valid PR coming from GH Action

Image description

And code change review :

Image description

๐Ÿช™ ROI

Now, both DEVs and OPs are using it to enhance yaml quality proactively with the help of CI and yaml quality issues are managed on our daily workflow on GH Issue.

๐Ÿ‘‰ Also notice that all the teams using the GH Action have the same level of quality accross the whole organization.

๐Ÿ™ Acknowledgments ๐Ÿง‘โ€๐Ÿคโ€๐Ÿง‘

A lot of thanks to the team that made this work come true, all on our DEVOPS pipeline :

  • Jerome ALET as core Yaml Fixer developer & integrator
  • Michรจle BARRE for Docker packaging and GH Action development
  • Daniel SANTOS for its test on DockerHub publish and his continuous feedbacks on this new Gh Action
Image
The Reasons Private Mental Health Services Is Everywhere This Year
Image
Access Free Stock Market API for Live Market Rates

javascript, api
Image
T-SQL

database, fullstack, devops, webdev
Image
while loop C++
Image
Developing BLE Applications : A Tutorial for Linux/MacOS
Image
How To Explain Mental Health Assessment To Your Grandparents
Image
5 People You Oughta Know In The Head Injury Compensation Industry
Image
Rewolucja w Meblarstwie: Jak Stworzyฤ‡ Wnฤ™trze Marzeล„?
Image
Window With Cat Flap
Image
pendaftaran gampang judi slots online sah
Image
๐Ÿš€ New Post: Part 2 of My Dota 2 Match Outcome Predictor Project is Live! ๐Ÿš€
Image
Seamless BLE Device Integration on Linux with BleuIO
Image
11 Methods To Refresh Your Asbestos Lawsuit History
Image
10 Meetups About Personal Injury Compensation You Should Attend
Image
Connecting to BLE device and Reading Characteristics using JavaScript
Image
SafeLine WAF: Comprehensive Protection for Your Web Applications

cybersecurity, opensource, webdev, beginners
Image
Role of a Financial Advisor: What Should You Expect and When is the Right Time for Consultation?
Image
react export and import components
Image
Integrate Hashi Corp Vault, with GCS Backend Using Terraform and Helm in k8s cluster.

kubernetes, hashicorpvault, gcs, terraform
. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .