#70 Check4Update now also checks 4 security and outdated...

#70 Check4Update now also checks 4 security and outdated packages before pushing to back to develop branch

lakedrops-execute.yml

@@ -25,12 +25,6 @@ Build Prod Site NG:
 Build Site:
   extends: '.build'
 
-Check 4 Security Vulnerability Advisories:
-  extends: '.check4security'
-
-Check 4 Outdated Packages:
-  extends: '.check4outdated'
-
 Download DB:
   extends: '.dumpdb'
 

lakedrops.yml

@@ -76,6 +76,12 @@ Sanity Checks:
 Check 4 Updates:
   extends: '.check4update'
 
+Check 4 Security Vulnerability Advisories:
+  extends: '.check4security'
+
+Check 4 Outdated Packages:
+  extends: '.check4outdated'
+
 Release:
   extends: '.createrelease'
 

test-and-deploy.yml

@@ -673,7 +673,7 @@ Debug:
       - $TRIGGERTASK
 
 .check4update:
-  stage: test
+  stage: build
   tags:
     - default
   image: registry.lakedrops.com/docker/gitlab-drupal-ci/php-${PHP_MAJOR_VERSION}.${PHP_MINOR_VERSION}
@@ -702,7 +702,34 @@ Debug:
     - git remote rm origin
     - git remote add origin git@${CI_SERVER_HOST}:$CI_PROJECT_PATH.git
     - composer update --no-interaction --no-progress --no-dev
-    - if [[ "$IGNORE_COMPOSER_AUDIT" == "0" ]]; then composer audit --no-dev --locked --format=table; fi
+  only:
+    variables:
+      - $CHECKUPDATES
+    refs:
+      - develop
+  artifacts:
+    name: check4updates
+    when: always
+    paths:
+      - composer.lock
+
+.check4updatecommit:
+  stage: postprocess
+  tags:
+    - default
+  image: registry.lakedrops.com/docker/gitlab-drupal-ci/php-${PHP_MAJOR_VERSION}.${PHP_MINOR_VERSION}
+  cache: {}
+  needs:
+    - job: Check 4 Updates
+      artifacts: true
+    - job: Check 4 Security Vulnerability Advisories
+      optional: true
+    - job: Check 4 Outdated Packages
+      optional: true
+  before_script:
+    - !reference [.prepareaccess, before_script]
+    - !reference [.preparecomposerplugins, before_script]
+  script:
     - git status >/tmp/test.log 2>&1
     - EC=0
     - grep "nothing to commit, working tree clean" /tmp/test.log || EC=$?
@@ -711,7 +738,7 @@ Debug:
     - grep "composer.lock" /tmp/test.log || EC=$?
     - if [[ $EC -ne 0 ]]; then exit 0; fi
     - COMMITFLAGS="[SKIP_CONFIG_IMPORT]"
-    - if [[ "${SKIPREALEASE}" != "yes" ]]; then COMMITFLAGS="${COMMITFLAGS} [CREATE_RELEASE]"; fi
+    - if [[ "${SKIPRELEASE}" != "yes" ]]; then COMMITFLAGS="${COMMITFLAGS} [CREATE_RELEASE]"; fi
     - if [[ "${USELIVEDB}" == "yes" ]]; then COMMITFLAGS="${COMMITFLAGS} [PULL_DB]"; fi
     - git add composer.lock
     - git -c user.email=gitlab-runner@lakedrops.com -c user.name=GitLabCI commit -m "Updates recognized automatically ${COMMITFLAGS}"
@@ -729,6 +756,9 @@ Debug:
   image: registry.lakedrops.com/docker/gitlab-drupal-ci/php-${PHP_MAJOR_VERSION}.${PHP_MINOR_VERSION}
   cache: {}
   needs:
+    - job: Check 4 Updates
+      artifacts: true
+      optional: true
     - job: Build Prod Site
       artifacts: true
       optional: true
@@ -755,6 +785,9 @@ Debug:
   image: registry.lakedrops.com/docker/gitlab-drupal-ci/php-${PHP_MAJOR_VERSION}.${PHP_MINOR_VERSION}
   cache: {}
   needs:
+    - job: Check 4 Updates
+      artifacts: true
+      optional: true
     - job: Build Prod Site
       artifacts: true
       optional: true