wangzixiang
/
lerobot
mirror of https://github.com/huggingface/lerobot.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add zizmor pre-commit (#732)

This commit is contained in:
Simon Alibert 2025-02-15 15:50:10 +01:00 committed by GitHub
parent b86a2c0b47
commit 2cb0bf5d41
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
7 changed files with 46 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
.github/workflows/build-docker-images.yml vendored
View File

@ -8,6 +8,8 @@ on:
schedule: schedule:
- cron: "0 1 * * *" - cron: "0 1 * * *"
permissions: {}
env: env:
PYTHON_VERSION: "3.10" PYTHON_VERSION: "3.10"
@ -25,11 +27,14 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
cache-binary: false
- name: Check out code - name: Check out code
uses: actions/checkout@v4 uses: actions/checkout@v4
with: with:
lfs: true lfs: true
persist-credentials: false
- name: Login to DockerHub - name: Login to DockerHub
uses: docker/login-action@v3 uses: docker/login-action@v3
@ -60,11 +65,14 @@ jobs:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
cache-binary: false
- name: Check out code - name: Check out code
uses: actions/checkout@v4 uses: actions/checkout@v4
with: with:
lfs: true lfs: true
persist-credentials: false
- name: Login to DockerHub - name: Login to DockerHub
uses: docker/login-action@v3 uses: docker/login-action@v3
@ -89,9 +97,13 @@ jobs:
steps: steps:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
cache-binary: false
- name: Check out code - name: Check out code
uses: actions/checkout@v4 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Login to DockerHub - name: Login to DockerHub
uses: docker/login-action@v3 uses: docker/login-action@v3

2
.github/workflows/nightly-tests.yml vendored
View File

@ -7,6 +7,8 @@ on:
schedule: schedule:
- cron: "0 2 * * *" - cron: "0 2 * * *"
permissions: {}
# env: # env:
# SLACK_API_TOKEN: ${{ secrets.SLACK_API_TOKEN }} # SLACK_API_TOKEN: ${{ secrets.SLACK_API_TOKEN }}
jobs: jobs:

14
.github/workflows/quality.yml vendored
View File

@ -8,6 +8,8 @@ on:
branches: branches:
- main - main
permissions: {}
env: env:
PYTHON_VERSION: "3.10" PYTHON_VERSION: "3.10"
@ -17,7 +19,9 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Checkout Repository - name: Checkout Repository
uses: actions/checkout@v3 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Set up Python - name: Set up Python
uses: actions/setup-python@v4 uses: actions/setup-python@v4
@ -45,7 +49,9 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Checkout Repository - name: Checkout Repository
uses: actions/checkout@v3 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Install poetry - name: Install poetry
run: pipx install "poetry<2.0.0" run: pipx install "poetry<2.0.0"
@ -59,7 +65,9 @@ jobs:
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:
- name: Checkout Repository - name: Checkout Repository
uses: actions/checkout@v3 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Install poetry - name: Install poetry
run: pipx install "poetry<2.0.0" run: pipx install "poetry<2.0.0"

10
.github/workflows/test-docker-build.yml vendored
View File

@ -8,6 +8,8 @@ on:
# Run only when DockerFile files are modified # Run only when DockerFile files are modified
- "docker/**" - "docker/**"
permissions: {}
env: env:
PYTHON_VERSION: "3.10" PYTHON_VERSION: "3.10"
@ -20,6 +22,8 @@ jobs:
steps: steps:
- name: Check out code - name: Check out code
uses: actions/checkout@v4 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Get changed files - name: Get changed files
id: changed-files id: changed-files
@ -34,7 +38,7 @@ jobs:
env: env:
ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }} ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
run: | run: |
echo "matrix=${{ steps.changed-files.outputs.all_changed_files}}" >> $GITHUB_OUTPUT echo "matrix=${ALL_CHANGED_FILES}" >> $GITHUB_OUTPUT
build_modified_dockerfiles: build_modified_dockerfiles:
@ -50,9 +54,13 @@ jobs:
steps: steps:
- name: Set up Docker Buildx - name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3 uses: docker/setup-buildx-action@v3
with:
cache-binary: false
- name: Check out code - name: Check out code
uses: actions/checkout@v4 uses: actions/checkout@v4
with:
persist-credentials: false
- name: Build Docker image - name: Build Docker image
uses: docker/build-push-action@v5 uses: docker/build-push-action@v5

5
.github/workflows/test.yml vendored
View File

@ -22,6 +22,8 @@ on:
- "Makefile" - "Makefile"
- ".cache/**" - ".cache/**"
permissions: {}
jobs: jobs:
pytest: pytest:
name: Pytest name: Pytest
@ -32,6 +34,7 @@ jobs:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
with: with:
lfs: true # Ensure LFS files are pulled lfs: true # Ensure LFS files are pulled
persist-credentials: false
- name: Install apt dependencies - name: Install apt dependencies
# portaudio19-dev is needed to install pyaudio # portaudio19-dev is needed to install pyaudio
@ -72,6 +75,7 @@ jobs:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
with: with:
lfs: true # Ensure LFS files are pulled lfs: true # Ensure LFS files are pulled
persist-credentials: false
- name: Install apt dependencies - name: Install apt dependencies
run: sudo apt-get update && sudo apt-get install -y ffmpeg run: sudo apt-get update && sudo apt-get install -y ffmpeg
@ -108,6 +112,7 @@ jobs:
- uses: actions/checkout@v4 - uses: actions/checkout@v4
with: with:
lfs: true # Ensure LFS files are pulled lfs: true # Ensure LFS files are pulled
persist-credentials: false
- name: Install apt dependencies - name: Install apt dependencies
# portaudio19-dev is needed to install pyaudio # portaudio19-dev is needed to install pyaudio

5
.github/workflows/trufflehog.yml vendored
View File

@ -3,8 +3,7 @@ on:
name: Secret Leaks name: Secret Leaks
permissions: permissions: {}
contents: read
jobs: jobs:
trufflehog: trufflehog:
@ -14,6 +13,8 @@ jobs:
uses: actions/checkout@v4 uses: actions/checkout@v4
with: with:
fetch-depth: 0 fetch-depth: 0
persist-credentials: false
- name: Secret Scanning - name: Secret Scanning
uses: trufflesecurity/trufflehog@main uses: trufflesecurity/trufflehog@main
with: with:

4
.pre-commit-config.yaml
View File

@ -35,3 +35,7 @@ repos:
rev: v8.21.2 rev: v8.21.2
hooks: hooks:
- id: gitleaks - id: gitleaks
- repo: https://github.com/woodruffw/zizmor-pre-commit
rev: v1.3.1
hooks:
- id: zizmor