Stirling-PDF/.github/workflows/PR-Demo-cleanup.yml

name: PR Deployment cleanup

on:
  pull_request:
    types: [opened, synchronize, reopened, closed]

permissions:
  contents: read

env:
  SERVER_IP: ${{ secrets.VPS_IP }} # Add this to your GitHub secrets
  CLEANUP_PERFORMED: "false" # Add flag to track if cleanup occurred

jobs:
  cleanup:
    runs-on: ubuntu-latest
    permissions:
      contents: write
      pull-requests: write
    if: github.event.action == 'closed'

    steps:
      - name: Harden Runner
        uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
        with:
          egress-policy: audit

      - name: Set up SSH
        run: |
          mkdir -p ~/.ssh/
          echo "${{ secrets.VPS_SSH_KEY }}" > ../private.key
          sudo chmod 600 ../private.key

      - name: Cleanup PR deployment
        id: cleanup
        run: |
          ssh -i ../private.key -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -T ${{ secrets.VPS_USERNAME }}@${{ secrets.VPS_HOST }} << 'ENDSSH'
            if [ -d "/stirling/PR-${{ github.event.pull_request.number }}" ]; then
              echo "Found PR directory, proceeding with cleanup..."

              # Stop and remove containers
              cd /stirling/PR-${{ github.event.pull_request.number }}
              docker-compose down || true

              # Go back to root before removal
              cd /

              # Remove PR-specific directories
              rm -rf /stirling/PR-${{ github.event.pull_request.number }}

              # Remove the Docker image
              docker rmi --no-prune ${{ secrets.DOCKER_HUB_USERNAME }}/test:pr-${{ github.event.pull_request.number }} || true

              echo "PERFORMED_CLEANUP"
            else
              echo "PR directory not found, nothing to clean up"
              echo "NO_CLEANUP_NEEDED"
            fi
          ENDSSH
Update and rename PR-Demos.yml to PR-Demo-cleanup.yml 2024-11-17 14:43:48 +01:00			`name: PR Deployment cleanup`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00
			`on:`
			`pull_request:`
			`types: [opened, synchronize, reopened, closed]`

Token-Permissions & Pinned-Dependencies (#2586) # Description Please provide a summary of the changes, including relevant motivation and context. Closes #(issue_number) ## Checklist - [ ] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [ ] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-02 19:22:14 +01:00			`permissions:`
			`contents: read`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00
			`env:`
Bump: Harden Runner from v2.10.2 to v2.10.3 (#2686) # Description https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/197 https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/198 https://github.com/Stirling-Tools/Stirling-PDF/security/code-scanning/199 ## Checklist - [x] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [x] I have performed a self-review of my own code - [ ] I have attached images of the change if it is UI based - [ ] I have commented my code, particularly in hard-to-understand areas - [ ] If my code has heavily changed functionality I have updated relevant docs on [Stirling-PDFs doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) - [x] My changes generate no new warnings - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) 2025-01-13 23:26:05 +01:00			`SERVER_IP: ${{ secrets.VPS_IP }} # Add this to your GitHub secrets`
			`CLEANUP_PERFORMED: "false" # Add flag to track if cleanup occurred`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00
			`jobs:`
			`cleanup:`
			`runs-on: ubuntu-latest`
[Security] Token permissions no. 2 2024-12-22 00:33:41 +01:00			`permissions:`
			`contents: write`
			`pull-requests: write`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`if: github.event.action == 'closed'`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`steps:`
[StepSecurity] Apply security best practices Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> 2024-12-21 13:28:35 +01:00			`- name: Harden Runner`
Bump step-security/harden-runner from 2.10.4 to 2.11.0 (#2980) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.10.4 to 2.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/step-security/harden-runner/releases">step-security/harden-runner's releases</a>.</em></p> <blockquote> <h2>v2.11.0</h2> <h2>What's Changed</h2> <p>Release v2.11.0 in <a href="https://redirect.github.com/step-security/harden-runner/issues/498">#498</a> Harden-Runner Enterprise tier now supports the use of eBPF for DNS resolution and network call monitoring</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/step-security/harden-runner/compare/v2...v2.11.0">https://github.com/step-security/harden-runner/compare/v2...v2.11.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/step-security/harden-runner/commit/4d991eb9b905ef189e4c376166672c3f2f230481"><code>4d991eb</code></a> Merge pull request <a href="https://redirect.github.com/step-security/harden-runner/issues/498">#498</a> from step-security/rc-18</li> <li><a href="https://github.com/step-security/harden-runner/commit/4ea872f89714b83576609e6f89476dfb114a6246"><code>4ea872f</code></a> Update README.md</li> <li><a href="https://github.com/step-security/harden-runner/commit/65d6f6e4ee070283fc8739e8d8295eb6c554029a"><code>65d6f6e</code></a> Add workflows</li> <li><a href="https://github.com/step-security/harden-runner/commit/1034c9a80544b55a7706ed377ea64ded8b0c7ea4"><code>1034c9a</code></a> Update package-lock.json</li> <li><a href="https://github.com/step-security/harden-runner/commit/ab221e2d7a450f54fde8ccb211cea73c5bcf1e2a"><code>ab221e2</code></a> Update agent</li> <li><a href="https://github.com/step-security/harden-runner/commit/7cb6c2fb524eafc78ce834c51af420c289690789"><code>7cb6c2f</code></a> Update agent</li> <li>See full diff in <a href="https://github.com/step-security/harden-runner/compare/cb605e52c26070c328afc4562f0b4ada7618a84e...4d991eb9b905ef189e4c376166672c3f2f230481">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=step-security/harden-runner&package-manager=github_actions&previous-version=2.10.4&new-version=2.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2025-02-18 13:07:08 +01:00			`uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0`
[StepSecurity] Apply security best practices Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> 2024-12-21 13:28:35 +01:00			`with:`
			`egress-policy: audit`

Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`- name: Set up SSH`
			`run: \|`
			`mkdir -p ~/.ssh/`
			`echo "${{ secrets.VPS_SSH_KEY }}" > ../private.key`
			`sudo chmod 600 ../private.key`

			`- name: Cleanup PR deployment`
Update PR-Demo-cleanup.yml 2024-11-20 09:41:29 +01:00			`id: cleanup`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`run: \|`
Update PR-Demo-cleanup.yml (#2817) # Description of Changes Please provide a summary of the changes, including: - What was changed - Why the change was made - Any challenges encountered Closes #(issue_number) --- ## Checklist ### General - [ ] I have read the [Contribution Guidelines](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/CONTRIBUTING.md) - [ ] I have read the [Stirling-PDF Developer Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md) (if applicable) - [ ] I have read the [How to add new languages to Stirling-PDF](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md) (if applicable) - [ ] I have performed a self-review of my own code - [ ] My changes generate no new warnings ### Documentation - [ ] I have updated relevant docs on [Stirling-PDF's doc repo](https://github.com/Stirling-Tools/Stirling-Tools.github.io/blob/main/docs/) (if functionality has heavily changed) - [ ] I have read the section [Add New Translation Tags](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/HowToAddNewLanguage.md#add-new-translation-tags) (for new translation tags only) ### UI Changes (if applicable) - [ ] Screenshots or videos demonstrating the UI changes are attached (e.g., as comments or direct attachments in the PR) ### Testing (if applicable) - [ ] I have tested my changes locally. Refer to the [Testing Guide](https://github.com/Stirling-Tools/Stirling-PDF/blob/main/DeveloperGuide.md#6-testing) for more details. 2025-01-30 19:40:05 +01:00			`ssh -i ../private.key -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -T ${{ secrets.VPS_USERNAME }}@${{ secrets.VPS_HOST }} << 'ENDSSH'`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`if [ -d "/stirling/PR-${{ github.event.pull_request.number }}" ]; then`
			`echo "Found PR directory, proceeding with cleanup..."`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`# Stop and remove containers`
			`cd /stirling/PR-${{ github.event.pull_request.number }}`
			`docker-compose down \|\| true`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`# Go back to root before removal`
			`cd /`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`# Remove PR-specific directories`
			`rm -rf /stirling/PR-${{ github.event.pull_request.number }}`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`# Remove the Docker image`
Update and rename PR-Demos.yml to PR-Demo-cleanup.yml 2024-11-17 14:43:48 +01:00			`docker rmi --no-prune ${{ secrets.DOCKER_HUB_USERNAME }}/test:pr-${{ github.event.pull_request.number }} \|\| true`
Update .pre-commit-config.yaml no. 2 2024-12-21 15:34:07 +01:00
Update PR-Demo-cleanup.yml 2024-11-20 09:41:29 +01:00			`echo "PERFORMED_CLEANUP"`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`else`
			`echo "PR directory not found, nothing to clean up"`
Update PR-Demo-cleanup.yml 2024-11-20 09:41:29 +01:00			`echo "NO_CLEANUP_NEEDED"`
Create PR-Demos.yml (#2260) * Create PR-Demos.yml * Update build.gradle * Update build.gradle * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml * Update PR-Demos.yml 2024-11-16 23:24:00 +01:00			`fi`
			`ENDSSH`