feat Updating the overall project CI/CD and openapi-generator dependencies

Signed-off-by: S3B4SZ17 <sebastian.zumbado@sysdig.com>

Author: S3B4SZ17

.flake8

@@ -20,35 +20,25 @@ jobs:
           - "3.11"
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
-      - uses: actions/setup-python@v4
+      - name: Setup python
+        uses: actions/setup-python@v5
         with:
-          python-version: ${{ matrix.python_version }}
+          python-version: "${{ matrix.python_version }}"
 
-      - name: Install Poetry
-        run: python -m pip install poetry poetry-dynamic-versioning
-
-      - uses: actions/cache@v3
-        name: Cache Poetry dependencies
+      - name: Install uv
+        uses: astral-sh/setup-uv@v6
         with:
-          path: |
-            ~/.cache
-            ~/.local/share/virtualenvs/
-          key: ${{ runner.os }}-poetry-${{ hashFiles('**/poetry.lock') }}
-          restore-keys: |
-            ${{ runner.os }}-poetry-
-
-      - name: Get dependencies
-        run: poetry install
+            python-version: "${{ matrix.python_version }}"
+            enable-cache: true
+            version: "0.8.7"
 
       - name: Lint
         continue-on-error: true
         run: |
           # stop the build if there are Python syntax errors or undefined names
-          poetry run flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
-          # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-          poetry run flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+          uvx ruff check . --fix --select=E9,F63,F7,F82 --statistics --config ruff.toml --exclude specs
 
       - name: Travis Test - Start agent
         id: start_agent
@@ -59,11 +49,6 @@ jobs:
           sudo apt-get install linux-headers-$(uname -r) dkms gcc-multilib g++-multilib
           ./test/start_agent.sh
 
-      - name: Travis Test - Install dependencies
-        run: |
-          poetry build
-          python -m pip install $(find dist -iname "*.whl" | head -1)
-
       - name: Travis Test - Secure APIs
         env:
           PYTHON_SDC_TEST_API_TOKEN: ${{ secrets.STAGING_SECURE_API_TOKEN }}
@@ -75,7 +60,7 @@ jobs:
           SDC_SECURE_TOKEN: ${{ secrets.STAGING_SECURE_API_TOKEN }}
           SDC_MONITOR_URL: "https://app-staging.sysdigcloud.com"
           SDC_SECURE_URL: "https://secure-staging.sysdig.com"
-        run: poetry run mamba -f documentation
+        run: uv run -- mamba -f documentation
 
       - name: Travis Test - Stop agent
         run: ./test/stop_agent.sh

.github/workflows/ci-master-scheduled.yml renamed to .github/workflows/ci-master-scheduled.yaml

@@ -15,54 +15,42 @@ jobs:
       matrix:
         python_version:
           # https://python-release-cycle.glitch.me/
-          - "3.7"
-          - "3.8"
           - "3.9"
           - "3.10"
           - "3.11"
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
+    - uses: actions/checkout@v4
 
-    - uses: actions/setup-python@v4
+    - name: Setup python
+      uses: actions/setup-python@v5
       with:
-        python-version: ${{ matrix.python_version }}
+        python-version: "${{ matrix.python_version }}"
 
-    - name: Install Poetry
-      run: python -m pip install poetry poetry-dynamic-versioning
-
-    - uses: actions/cache@v3
-      name: Cache Poetry dependencies
+    - name: Install uv
+      uses: astral-sh/setup-uv@v6
       with:
-        path: |
-          ~/.cache
-          ~/.local/share/virtualenvs/
-        key: ${{ runner.os }}-poetry-${{ hashFiles('**/poetry.lock') }}
-        restore-keys: |
-          ${{ runner.os }}-poetry-
-
-    - name: Get dependencies
-      run: poetry install
+          python-version: "${{ matrix.python_version }}"
+          enable-cache: true
+          version: "0.8.7"
 
     - name: Lint
       run: |
-        # stop the build if there are Python syntax errors or undefined names
-        poetry run flake8
         # exit-zero treats all errors as warnings. The GitHub editor is 127 chars wide
-        poetry run flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+        uvx ruff check . --fix --select=E9,F63,F7,F82 --statistics --config ruff.toml --exclude specs
 
     - name: Test in staging
       env:
         SDC_MONITOR_TOKEN: ${{ secrets.STAGING_MONITOR_API_TOKEN }}
         SDC_SECURE_TOKEN: ${{ secrets.STAGING_SECURE_API_TOKEN }}
         SDC_MONITOR_URL: "https://app-staging.sysdigcloud.com"
         SDC_SECURE_URL: "https://secure-staging.sysdig.com"
-      run: poetry run mamba -f documentation -t integration
+      run: uv run -- mamba -f documentation -t integration
 
   test-release:
     runs-on: ubuntu-latest
-    steps:  
-      - uses: actions/checkout@v3
+    steps:
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
 
@@ -79,15 +67,17 @@ jobs:
       - name: Generate changelog
         run: git-chglog -c .github/git-chglog/config.yml -o RELEASE_CHANGELOG.md $(git describe --tags $(git rev-list --tags --max-count=1))
 
-      - name: Set up Python
-        uses: actions/setup-python@v4
+      - name: Setup python
+        uses: actions/setup-python@v5
         with:
-          python-version: 3.8
+          python-version: "3.10"
 
-      - name: Install dependencies
-        run: |
-          python -m pip install --upgrade pip
-          pip install poetry poetry-dynamic-versioning
+      - name: Install uv
+        uses: astral-sh/setup-uv@v6
+        with:
+            python-version: "3.10"
+            enable-cache: true
+            version: "0.8.7"
 
       - name: Build
-        run: poetry build
+        run: uv build

.github/workflows/ci-pull-request.yml renamed to .github/workflows/ci-pull-request.yaml

@@ -30,7 +30,7 @@ jobs:
 
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
       with:
         # We must fetch at least the immediate parents so that if this is
         # a pull request then we can checkout the head.
@@ -47,7 +47,7 @@ jobs:
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
-        # By default, queries listed here will override any specified in a config file. 
+        # By default, queries listed here will override any specified in a config file.
         # Prefix the list here with "+" to use these queries and those in the config file.
         # queries: ./path/to/local/query, your-org/your-repo/queries@main
 

.github/workflows/codeql-analysis.yml renamed to .github/workflows/codeql-analysis.yaml

@@ -12,7 +12,7 @@ jobs:
       upload_url: ${{ steps.create_release.outputs.upload_url }}
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
         with:
           fetch-depth: 0
 
@@ -52,10 +52,14 @@ jobs:
         with:
           python-version: 3.10
 
-      - name: Install dependencies
-        run: |
-          python -m pip install --upgrade pip
-          pip install poetry poetry-dynamic-versioning
+      - name: Install uv
+        uses: astral-sh/setup-uv@v6
+        with:
+            python-version: 3.10
+            enable-cache: true
+            version: "0.8.7"
 
       - name: Build and publish
-        run: poetry publish --build -u ${{ secrets.PYPI_USER }} -p ${{ secrets.PYPI_PASSWORD }}
+        run: |
+          uv build
+          uv publish -u ${{ secrets.PYPI_USER }} -p ${{ secrets.PYPI_PASSWORD }}

.github/workflows/python.yml renamed to .github/workflows/python.yaml

@@ -0,0 +1,97 @@
+---
+name: Test
+
+on:
+  pull_request:
+    paths:
+      - pyproject.toml
+      - '*.py'
+  workflow_call:
+  workflow_dispatch:
+
+concurrency:
+  group: 'tests-${{ github.workflow }}-${{ github.event.pull_request.head.label || github.head_ref || github.ref }}'
+  cancel-in-progress: true
+
+jobs:
+  test:
+    name: Test
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read # required for actions/checkout
+    steps:
+      - name: Check out the repo
+        uses: actions/checkout@v4
+
+      - name: Setup python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.10"
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v5
+        with:
+          version: "0.7.17"
+
+      - name: Download dependencies
+        run: make init
+
+      - name: Run ruff
+        run: make lint
+
+      - name: Run Unit Tests
+        run: make test
+
+  check_version:
+    name: Check Version
+    runs-on: ubuntu-latest
+    needs: test
+    permissions:
+      contents: write # required for creating a tag
+    steps:
+      - name: Check out repository
+        uses: actions/checkout@v4
+        with:
+          ref: ${{ github.sha }} # required for better experience using pre-releases
+          fetch-depth: '0' # Required due to the way Git works, without it this action won't be able to find any or the correct tags
+
+      - name: Extract current version
+        id: pyproject_version
+        run: |
+          TAG=v$(grep 'version =' pyproject.toml | sed -e 's/version = "\(.*\)"/\1/')
+          echo "TAG=$TAG" >> "$GITHUB_OUTPUT"
+
+      - name: Get branch ref name
+        id: branch_ref
+        run: |
+          BRANCH_NAME=${{ github.base_ref || github.ref_name }}
+          echo "$BRANCH_NAME"
+          echo "BRANCH_NAME=$BRANCH_NAME" >> "$GITHUB_OUTPUT"
+
+      - name: Get tag version
+        id: semantic_release
+        uses: anothrNick/github-tag-action@1.71.0
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          DEFAULT_BUMP: "patch"
+          TAG_CONTEXT: 'repo'
+          WITH_V: true
+          DRY_RUN: true
+
+      - name: Compare versions
+        run: |
+          echo "Current version: ${{ steps.pyproject_version.outputs.TAG }}"
+          echo "New version: ${{ steps.semantic_release.outputs.tag }}"
+          if [ "${{ steps.pyproject_version.outputs.TAG }}" != "${{ steps.semantic_release.outputs.tag }}" ]; then
+            echo "### Version mismatch detected! :warning:
+            Current pyproject version: ${{ steps.pyproject_version.outputs.TAG }}
+            New Tag version: **${{ steps.semantic_release.outputs.tag }}**
+            Current Tag: ${{ steps.semantic_release.outputs.old_tag }}
+            Please update the version in pyproject.toml." >> $GITHUB_STEP_SUMMARY
+            exit 1
+          else
+            echo "### Version match confirmed! :rocket:
+            Current pyproject version: ${{ steps.pyproject_version.outputs.TAG }}
+            New Tag version: **${{ steps.semantic_release.outputs.tag }}**
+            The version is up-to-date." >> $GITHUB_STEP_SUMMARY
+          fi

.github/workflows/release.yml renamed to .github/workflows/release.yaml

@@ -48,6 +48,7 @@ venv/
 .venv/
 .python-version
 .pytest_cache
+pytest.xml
 
 # Translations
 *.mo

.github/workflows/test.yaml

@@ -0,0 +1,3 @@
+[submodule "api-spec"]
+	path = api-spec
+	url = git@github.com:draios/api-spec.git@0d4b5a9fb72b1bb2275878f0b46ec1cba3ee91a4

.gitignore

@@ -15,6 +15,15 @@
 # You can recursively match patterns against a directory, file or extension with a double asterisk (**):
 #foo/**/qux
 # This matches foo/bar/qux, foo/baz/qux, and foo/bar/baz/qux
+.gitlab-ci.yml
+.travis.yml
+git_push.sh
+requirements.txt
+setup.cfg
+setup.py
+test-requirements.txt
+tox.ini
+pyproject.toml
 
 # You can also negate patterns with an exclamation (!).
 # For example, you can ignore all files in a docs folder with the file extension .md: