azaion/gps-denied-onboard
1
0
Fork 0
mirror of https://github.com/azaion/gps-denied-onboard.git synced 2026-06-21 20:41:13 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
5dfd9a577e1226b815b818d5b7c6cf2dbf782ab2
gps-denied-onboard/tests/unit/test_ac4_workflows.py
T
Oleksandr Bezdieniezhnykh b12db61444 [AZ-263] Bootstrap: repo skeleton + Docker + CI + Alembic + Tier-1 tests 
Implements the AZ-263 / E-BOOT initial structure task:

- Python src/-layout package `gps_denied_onboard/` with per-component
  interface stubs (14 components), type-only DTOs under `_types/`,
  shared helpers under `helpers/` (R14 LightGlue ownership), structured
  JSON logging, runtime composition root with env-var fail-fast gate,
  healthcheck module shared by Docker and CI smoke.
- CMake top-level + `cmake/{build_options,dependencies,strategies}.cmake`
  with the BUILD_* per-binary flags (ADR-002) and pinned external git
  refs for OKVIS2 / VINS-Mono / GTSAM / FAISS / OpenCV >=4.12.0.
- Three Dockerfiles (companion-tier1, operator-tooling,
  mock-suite-sat-service) + two compose files (dev + Tier-1 test).
- Four GitHub Actions workflows: ci.yml (lint/unit/integration/dual
  binary build/SBOM diff/security), ci-tier2.yml (self-hosted Jetson
  AC-bound NFTs), release.yml, cve-rescan.yml.
- Two CI gate scripts: `ci/sbom_diff.py` (deployment SBOM subset +
  R02 exclusion), `ci/opencv_pin_gate.py` (>=4.12.0 enforcement,
  D-CROSS-CVE-1).
- Alembic-driven Postgres 16 initial migration `0001_initial.py`
  mirroring satellite-provider tiles + flights + sector_classifications
  + manifests + engine_cache_entries (data_model.md s 2).
- Tier-1 test scaffolding: 95 passing unit tests covering every AC,
  per-component smoke tests, structured logging JSON output check,
  env-var gate check, healthcheck import check. Two CI-gated tests
  (cmake configure, actionlint) skip locally with explicit reasons.
- Batch report + code review report under `_docs/03_implementation/`.

Verdict: PASS_WITH_WARNINGS (two Low findings, both informational).
Co-authored-by: Cursor <cursoragent@cursor.com>
2026-05-11 01:00:28 +03:00

69 lines
2.3 KiB
Python
Raw Blame History

"""AC-4: GitHub Actions workflows under `.github/workflows/` are valid.
YAML syntactic validity + ADR-002 dual-binary build matrix check always run.
`actionlint` semantic validation runs only when the binary is on PATH; CI
installs it as a job step.
"""
from __future__ import annotations
import shutil
import subprocess
from pathlib import Path
import pytest
import yaml
REPO_ROOT = Path(__file__).resolve().parents[2]
WORKFLOWS_DIR = REPO_ROOT / ".github" / "workflows"
WORKFLOWS = sorted(WORKFLOWS_DIR.glob("*.yml"))
def test_workflows_dir_populated() -> None:
# Assert
names = {p.name for p in WORKFLOWS}
assert {"ci.yml", "ci-tier2.yml", "release.yml", "cve-rescan.yml"} <= names
@pytest.mark.parametrize("workflow", WORKFLOWS, ids=[p.name for p in WORKFLOWS])
def test_workflow_yaml_parses(workflow: Path) -> None:
# Act
data = yaml.safe_load(workflow.read_text())
# Assert
assert isinstance(data, dict), f"{workflow.name} must parse to a mapping"
# GitHub Actions reserves `on` as a top-level key; PyYAML preserves it as a
# bool-style key, so also accept the bool key `True` produced by safe_load.
assert "on" in data or True in data, f"{workflow.name} missing trigger block"
assert data.get("jobs"), f"{workflow.name} must declare jobs"
def test_ci_yml_has_dual_binary_matrix() -> None:
"""ADR-002: deployment + research must both build in ci.yml."""
# Arrange
raw = (WORKFLOWS_DIR / "ci.yml").read_text()
# Assert
# Match the matrix dimension we care about without depending on YAML key order.
assert "deployment" in raw, "ci.yml matrix must include `deployment` kind"
assert "research" in raw, "ci.yml matrix must include `research` kind"
assert "matrix:" in raw, "ci.yml build job must use a strategy matrix"
def test_actionlint_passes() -> None:
# Arrange
actionlint = shutil.which("actionlint")
if actionlint is None:
pytest.skip("actionlint not on PATH; CI installs it before the lint job")
# Act
result = subprocess.run(
[actionlint, *(str(p) for p in WORKFLOWS)],
capture_output=True,
text=True,
check=False,
)
# Assert
assert result.returncode == 0, (
f"actionlint reported errors:\nstdout:\n{result.stdout}\nstderr:\n{result.stderr}"
)
Reference in New Issue View Git Blame Copy Permalink