IC gh

Author: vtamara

.github/workflows/codeql-analysis.yml

@@ -0,0 +1,102 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL Advanced"
+
+on:
+  push:
+    branches: [ "main", "v2.2" ]
+  pull_request:
+    branches: [ "main", "v2.2" ]
+  schedule:
+    - cron: '38 13 * * 4'
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    # Runner size impacts CodeQL analysis time. To learn more, please see:
+    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
+    #   - https://gh.io/supported-runners-and-hardware-resources
+    #   - https://gh.io/using-larger-runners (GitHub.com only)
+    # Consider using larger runners or machines with greater resources for possible analysis time improvements.
+    runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
+    permissions:
+      # required for all workflows
+      security-events: write
+
+      # required to fetch internal or private CodeQL packs
+      packages: read
+
+      # only required for workflows in private repositories
+      actions: read
+      contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+        - language: actions
+          build-mode: none
+        - language: javascript-typescript
+          build-mode: none
+        - language: ruby
+          build-mode: none
+        # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'rust', 'swift'
+        # Use `c-cpp` to analyze code written in C, C++ or both
+        # Use 'java-kotlin' to analyze code written in Java, Kotlin or both
+        # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
+        # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
+        # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
+        # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
+        # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    # Add any setup steps before running the `github/codeql-action/init` action.
+    # This includes steps like installing compilers or runtimes (`actions/setup-node`
+    # or others). This is typically only required for manual builds.
+    # - name: Setup runtime (example)
+    #   uses: actions/setup-example@v1
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v3
+      with:
+        languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+
+        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+    # If the analyze step fails for one of the languages you are analyzing with
+    # "We were unable to automatically build your code", modify the matrix above
+    # to set the build mode to "manual" for that language. Then modify this step
+    # to build your code.
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+    - if: matrix.build-mode == 'manual'
+      shell: bash
+      run: |
+        echo 'If you are using a "manual" build mode for one or more of the' \
+          'languages you are analyzing, replace this with the commands to build' \
+          'your code, for example:'
+        echo '  make bootstrap'
+        echo '  make release'
+        exit 1
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v3
+      with:
+        category: "/language:${{matrix.language}}"

.github/workflows/codeql.yml

@@ -1,61 +1,58 @@
-# This workflow uses actions that are not certified by GitHub.  They are
-# provided by a third-party and are governed by separate terms of service,
-# privacy policy, and support documentation.
+# Este flujo de trabajo emplea acciones que no están certificadas por Github.
+# Son proveidas por un tercero y están gobernadas por diferentes
+# términos de servicio, política de privacidad y documentación.
 #
-# This workflow will install a prebuilt Ruby version, install dependencies, and
-# run tests and linters.
-name: "Ruby on Rails CI"
+# Este flujo de trabajo instalará una versión preconstruida de Ruby,
+# instalará dependencias y ejecutará pruebas y verificadores.
+name: "IC para Ruby on Rails"
 on:
   push:
-    branches: [ "main" ]
+    branches: [ "main", "v2.2" ]
   pull_request:
-    branches: [ "main" ]
+    branches: [ "main", "v2.2" ]
+env:
+  DB_HOST: localhost
 jobs:
   test:
     runs-on: ubuntu-latest
-    services:
-      postgres:
-        image: postgres:14-alpine
-        ports:
-          - "5432:5432"
-        env:
-          POSTGRES_DB: rails_test
-          POSTGRES_USER: rails
-          POSTGRES_PASSWORD: password
-          BD_CLAVE: password
-          BD_USUARIO: rails
-          BD_PRUEBA: rails_test
     env:
       RAILS_ENV: test
       DATABASE_URL: "postgres://rails:password@localhost:5432/rails_test"
     steps:
-      - name: Checkout code
+      - name: Sacar código fuente
         uses: actions/checkout@v3
-      # Add or replace dependency steps here
-      - name: Install Ruby and gems
-        uses: ruby/setup-ruby@0a29871fe2b0200a17a4497bae54fe5df0d973aa # v1.115.3
+      # Agregue o remplace pasos de depencicas aquí
+      - name: Ambiente - paquetes e.g postgresql, postgis, base de pruebas, .env
+        run: sudo ./bin/ambiente_github.sh
+      - name: Instalar Ruby y gemas
+        uses: ruby/setup-ruby@v1
         with:
+          ruby-version: '3.4.5'
           bundler-cache: true
-      # Add or replace database setup steps here
-      - name: Set up database schema
-        run: (cd test/dummy; cp .env.plantilla .env; bin/rails db:schema:load)
-      # Add or replace test runners here
-      - name: Run tests
-        run: CONFIG_HOSTS=www.example.com bin/rails test
+      - name: Reiniciar PostgreSQL
+        run: ( sudo service postgresql restart; sudo systemctl restart postgresql.service)
+      - name: Modificar estructura BD para que operen en versiones antiguas
+        run: (export D=./; if (test -d "test/dummy") then { export D=test/dummy/; } fi; cp $D/db/structure.sql $D/db/structure.sql.copia; sed -e 's/provider = libc,//g;s/SET default_table_access_method.*/-- &/g;s/SET transaction_timeout.*//g' $D/db/structure.sql.copia > $D/db/structure.sql )
+      - name: Modificar semillas BD para que operen en versiones antiguas
+        run: (if (test -f "db/datos-basicas.sql") then { cp db/datos-basicas.sql db/datos-basicas.sql.copia; sed -e 's/provider = libc,//g;s/SET default_table_access_method.*/-- &/g;s/SET transaction_timeout.*//g' db/datos-basicas.sql.copia > db/datos-basicas.sql; } fi; )
+      # Agregue o remplace ejecutores de pruebas aquí
+      - name: Ejecutar pruebas
+        run: NOPRUEBAJS=1 bin/regresion.sh
 
   lint:
     runs-on: ubuntu-latest
     steps:
-      - name: Checkout code
-        uses: actions/checkout@v3
-      - name: Install Ruby and gems
-        uses: ruby/setup-ruby@0a29871fe2b0200a17a4497bae54fe5df0d973aa # v1.115.3
+      - name: Sacar código fuente
+        uses: actions/checkout@v4
+      - name: Instalar Ruby y gemas
+        uses: ruby/setup-ruby@v1
         with:
+          ruby-version: '3.4.5'
           bundler-cache: true
-      # Add or replace any other lints here
-      - name: Security audit dependencies
-        run: bin/bundler-audit --update
-      - name: Security audit application code
-        run: bin/brakeman -q -w2
-      - name: Lint Ruby files
-        run: bin/rubocop --parallel
+      # Agregue o remplace verificadores 
+      - name: Verificación de seguridad a dependencias ruby
+        run: (bin/bundler-audit --update || exit_code=$?; echo "exit_code=$exit_code")
+      - name: Verificación de seguridad a código Ruby de la aplicación
+        run: (bin/brakeman -q -w2 || exit_code=$?; echo "exit_code=$exit_code")
+      - name: Verificación al formato de código Ruby
+        run: (bin/rubocop --parallel || exit_code=$?; echo "exit_code=$exit_code")

.github/workflows/rubyonrails.yml

@@ -0,0 +1,75 @@
+#!/bin/bash
+
+# Este script pepara un codspace/action de github con locale, paquetes 
+# (e.g PostgreSQL, # PostGIS), base de datos y variables de ambiente 
+# para correr la aplicación de prueba y/o las pruebas
+
+# pdftoppm en poppler-utils
+echo "Ejecutando ambiente_github.sh"
+sudo apt update
+sudo apt install -y poppler-utils
+sudo locale-gen es_CO.UTF-8 && sudo update-locale
+
+# Instala PostgreSQL 17 y PostGIS 3 y las librerías requeridas
+if (test ! -f /etc/postgresql/17/main/pg_hba.conf) then {
+	wget -qO- https://www.postgresql.org/media/keys/ACCC4CF8.asc | sudo tee /etc/apt/trusted.gpg.d/postgresql.asc
+	echo 'deb [arch=amd64 signed-by=/etc/apt/trusted.gpg.d/postgresql.asc] https://apt.postgresql.org/pub/repos/apt/ noble-pgdg main' | sudo tee /etc/apt/sources.list.d/pgdg.list
+	sudo apt update
+	sudo apt install -y postgresql-17 postgresql-client-17
+	sudo apt install -y postgis postgresql-17-postgis-3
+	sudo pg_createcluster 17 main --start
+	sudo sed -i "s|local.*all.*all.*peer|local all all md5|g" /etc/postgresql/17/main/pg_hba.conf
+	sudo cat /etc/postgresql/17/main/pg_hba.conf
+} fi;
+echo "Reiniciando postgresql"
+sudo service postgresql restart
+echo "PostgreSQL reiniciado"
+
+psql --version
+
+# Crea usuario y base de datos como usuario postgres
+echo "Creando usuario"
+sudo su - postgres -c "createuser -s rails"
+echo "Cambiando clave"
+sudo su - postgres -c "psql -c \"ALTER USER rails WITH PASSWORD 'password';\""
+echo "Facilitando uso"
+echo "*:*:*:rails:password" >> ~/.pgpass
+chmod 0600 ~/.pgpass
+echo ":::: cat ~/.pgpass::::"   
+cat ~/.pgpass     
+echo "Creando base"
+sudo su - postgres -c "createdb -O rails rails_test"
+echo "Creada"
+
+# Configura el ambiente
+cd "$(dirname "$0")/.." || exit 1
+if (test -d test/dummy) then {
+  cd test/dummy
+} fi;
+pwd
+cp .env.github .env
+echo "::::.env antes de modificar es::::"
+cat .env
+
+# Modifica el archivo .env con rutas locales y configuraciones
+DIRAP=$(pwd)
+sed -i "s|export DIRAP=.*|export DIRAP=${DIRAP}/|g" .env
+#sed -i "s|export BD_SERVIDOR=.*|export BD_SERVIDOR=localhost|g" .env
+echo "export RAILS_ENV=test" >> .env
+
+echo "::::.env tras modificacion es es::::"
+cat .env
+
+# Ejecuta el archivo con variables de ambiente
+source .env
+
+echo "¡Ambiente configurado con exito!"
+echo "Directorio de la aplicaciónde datos: $DIRAP"
+echo "Base de datos: $BD_PRUEBA"
+echo "Usuario: $BD_USUARIO"
+echo "host: $BD_SERVIDOR"
+echo "Localización del archivo de ambiente: $DIRAP/.env"
+
+# bundle
+# RAILS_ENV=test bin/rails dbconsole
+

bin/ambiente_github.sh

@@ -0,0 +1,28 @@
+#!/bin/sh
+# Variables de configuración de la aplicación
+# Damos precedencia a las especificadas en línea de ordenes
+
+export DIRAP="/home/runner/work/sivel2_gen/sivel2_gen/test/dummy"
+
+. ./.env.plantilla
+
+echo "MSIP_RUTA_VOLCADOS=${MSIP_RUTA_VOLCADOS}"
+echo "BD_NOMBRE=${BD_NOMBRE}"
+
+export MSIP_RUTA_VOLCADOS="${DIRAP}/archivos/bd/"
+export MSIP_RUTA_ANEXOS="${DIRAP}/archivos/anexos/"
+echo "MSIP_RUTA_VOLCADOS=${MSIP_RUTA_VOLCADOS}"
+
+export BD_USUARIO=rails
+export BD_CLAVE="password"
+export BD_PRUEBA="rails_test"
+export BD_SERVIDOR=localhost
+
+export RUTA_RELATIVA="/sivel2/"
+
+# Despliegue
+export CONFIG_HOSTS=www.example.com/
+
+export CI="Si"
+
+export NOPRUEBAJS=1