This repository contains common configuration and tasks used in UDS Packages for management, setup, creation, deployment, and publishing of packages and bundles. It is useful to help implement UDS package practices.
The tasks are designed to be consumed via remote task includes and GitHub Actions (WIP). It is typically easiest to include tasks in a single root level tasks.yaml. Includes should follow the standard remote include pattern documented by UDS CLI:
includes:
- deploy: https://raw.githubusercontent.com/defenseunicorns/uds-common/$TAG/tasks/deploy.yamlPinning to a specific tag of a task (rather than main) with renovate watching for updates is recommended since tasks do rely on dependencies like command syntax for zarf and uds as well as the published versions of uds-core.
- UDS CLI: 0.10.4
- UDS Core: 0.21.0
- K3D: 5.6.3
NOTE: Zarf is not required for tasks in this repo, the vendored zarf (uds zarf) included with UDS CLI is used instead to prevent version mismatches.
There are multiple task files available in this repository with different objectives and required variables.
This task file includes two tasks:
k3d-test-clustersets up a k3d cluster running theuds-core-istio-devpackage. This provides a baseline cluster with Istio and the UDS Core Pepr capabilities necessary to test against.registry-loginperforms a registry login and retry a max of 10 times at a desired retry interval (in seconds). It reads in variables for the task to use for the registry login parameters. The variable inputs are:REGISTRY: the target registryREGISTRY_USERNAME: the username for the registryREGISTRY_PASSWORD: the password for the registryREGISTRY_RETRY_INTERVAL: the number in seconds to wait between retries
This task file includes two tasks:
package: creates a zarf package located at the base of the repository. It has a required variable ofFLAVORwhich defaults toupstreamand inputs to override the default path and options used for creation (useful in publishing workflows).test-bundle: creates a test bundle located at the pathbundle/(by default). It usesUDS_ARCHto override the default architecture used for creation (useful in publishing workflows). Note that this task does not create any pre-requisite zarf packages so those tasks must be run first.
This task file includes two tasks:
package: deploys a zarf package located at the base of the repository (using the regex matchzarf-package-*-${UDS_ARCH}-*.tar.zst).test-bundle: deploys a test bundle located at the pathbundle/(using the regex matchbundle/uds-bundle-*-${UDS_ARCH}-*.tar.zst) and the config file located atbundle/uds-config.yaml.
This task file includes a single task package which publishes zarf package(s) located at the base of the repository. Inputs for this task:
FLAVOR: the flavor of the zarf package to publish, defaults toupstream.TARGET_REPO: the target OCI repository to publish the zarf package to (without theoci://scheme) - this defaults toghcr.io/defenseunicorns/packages/uds.VERSION: the version of the zarf package to publish with no default. This should typically be version controlled by something like release-please.
Note that this task will publish both arm64 and amd64 architectures, with the exception of the registry1 flavor which will skip the arm64 publish.
This task file includes one task:
latest-package-release: finds the latest package release for the repo and pulls it into the specified directory path. It has a required variable ofFLAVORwhich defaults toupstreamand aTARGET_REPOvariable which is the target OCI repository to pull the zarf package from (without theoci://scheme) - this defaults toghcr.io/defenseunicorns/packages/uds.
This task file includes two tasks:
deps: installs all of the dependencies for linting the repository.yaml: lints all of the.yamlfiles within the repository.
Common configuration used between repositories is located in the config directory and is imported via specific tool mechanisms (like Renovate's extends key).