feat: add live Mesh cluster dataflow animation to /mesh page #40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Authoritative verification | |
| on: | |
| pull_request: | |
| push: | |
| branches: | |
| - main | |
| workflow_dispatch: | |
| schedule: | |
| - cron: '17 4 * * 1' | |
| permissions: | |
| contents: read | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: false | |
| jobs: | |
| whitespace-guard: | |
| name: Whitespace guard | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Verify incoming diff is whitespace-clean | |
| shell: bash | |
| run: | | |
| set -euo pipefail | |
| case "${{ github.event_name }}" in | |
| pull_request) | |
| range="${{ github.event.pull_request.base.sha }}...HEAD" | |
| ;; | |
| push) | |
| if [[ "${{ github.event.before }}" == "0000000000000000000000000000000000000000" ]]; then | |
| range="HEAD^..HEAD" | |
| else | |
| range="${{ github.event.before }}..HEAD" | |
| fi | |
| ;; | |
| *) | |
| range="HEAD^..HEAD" | |
| ;; | |
| esac | |
| bash scripts/verify-whitespace.sh --diff-range "$range" | |
| live-proof: | |
| name: Authoritative live proof | |
| needs: whitespace-guard | |
| # Fork PRs stay on the repo's secret-free build/test lanes. This workflow only | |
| # reruns the live publish proof when the checked-out PR head is this repository, | |
| # so untrusted forks never receive publish secrets. | |
| if: >- | |
| github.event_name != 'pull_request' || | |
| github.event.pull_request.head.repo.full_name == github.repository | |
| uses: ./.github/workflows/authoritative-live-proof.yml | |
| secrets: | |
| MESH_PUBLISH_OWNER: ${{ secrets.MESH_PUBLISH_OWNER }} | |
| MESH_PUBLISH_TOKEN: ${{ secrets.MESH_PUBLISH_TOKEN }} |