add github actions (#23)

add github actions workflow

* format
* test
* build (not push yet, not deploy yet)

add script

* create workload identity

Author: hironow

.github/workflows/build.yaml

@@ -0,0 +1,75 @@
+name: Build
+
+on: 
+  pull_request:
+    branches: [main]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}-build
+  cancel-in-progress: true
+
+jobs:
+  frontend:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - name: Install pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+
+      - name: Set up Node
+        uses: actions/setup-node@v4
+        with:
+          node-version: '22.x'
+          cache: 'pnpm'
+          cache-dependency-path: ./frontend/web/pnpm-lock.yaml
+
+      - name: Install dependencies
+        run: mise exec -- pnpm install
+        working-directory: ./frontend/web
+
+      - name: Run build
+        run: |
+          set -eo pipefail
+          mise run fe:build
+        working-directory: ./frontend/web
+
+  backend:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v4
+        with:
+          enable-cache: true
+          cache-dependency-glob: ./backend/genai/uv.lock
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+
+      - name: Install dependencies
+        run: mise exec -- uv sync --frozen
+        working-directory: ./backend/genai
+
+      - name: Run build
+        run: |
+          set -eo pipefail
+          mise run be:build
+        working-directory: ./backend/genai

.github/workflows/format.yml

@@ -0,0 +1,85 @@
+name: Format
+
+on: 
+  pull_request:
+    branches: [main]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}-format
+  cancel-in-progress: true
+
+jobs:
+  frontend:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - name: Install pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+
+      - name: Set up Node
+        uses: actions/setup-node@v4
+        with:
+          node-version: '22.x'
+          cache: 'pnpm'
+          cache-dependency-path: ./frontend/web/pnpm-lock.yaml
+
+      - name: Install dependencies
+        run: mise exec -- pnpm install
+        working-directory: ./frontend/web
+
+      - name: Run format
+        run: |
+          mise run fe:format
+          git diff --exit-code
+        working-directory: ./frontend/web
+
+      - name: Show formatting diff on failure
+        if: failure()
+        run: git diff
+        working-directory: ./frontend/web
+
+  backend:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v4
+        with:
+          enable-cache: true
+          cache-dependency-glob: ./backend/genai/uv.lock
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+
+      - name: Install dependencies
+        run: mise exec -- uv sync --frozen
+        working-directory: ./backend/genai
+
+      - name: Run format
+        run: |
+          mise run be:format
+          git diff --exit-code
+        working-directory: ./backend/genai
+
+      - name: Show formatting diff on failure
+        if: failure()
+        run: git diff
+        working-directory: ./backend/genai

.github/workflows/lint.yml

@@ -0,0 +1,86 @@
+name: Test
+
+on: 
+  pull_request:
+    branches: [main]
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}-test
+  cancel-in-progress: true
+
+jobs:
+  frontend:
+    runs-on: ubuntu-22.04
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - name: Install pnpm
+        uses: pnpm/action-setup@v4
+        with:
+          version: 9
+
+      - name: Set up Node
+        uses: actions/setup-node@v4
+        with:
+          node-version: '22.x'
+          cache: 'pnpm'
+          cache-dependency-path: ./frontend/web/pnpm-lock.yaml
+
+      - name: Install dependencies
+        run: mise exec -- pnpm install
+        working-directory: ./frontend/web
+
+      - name: Run test
+        run: |
+          set -eo pipefail
+          mise run fe:test
+        working-directory: ./frontend/web
+
+  backend:
+    runs-on: ubuntu-22.04
+    permissions:
+      contents: 'read'
+      id-token: 'write'
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+      - name: Use mise
+        run: |
+          curl https://mise.run | sh
+          echo "$HOME/.local/share/mise/bin" >> $GITHUB_PATH
+          echo "$HOME/.local/share/mise/shims" >> $GITHUB_PATH
+
+      - uses: 'google-github-actions/auth@v2'
+        with:
+          # use permissions above
+          project_id: 'advena-dev'
+          workload_identity_provider: 'projects/38358387786/locations/global/workloadIdentityPools/github/providers/my-repo'
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v4
+        with:
+          enable-cache: true
+          cache-dependency-glob: ./backend/genai/uv.lock
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+
+      - name: Install dependencies
+        run: mise exec -- uv sync --frozen
+        working-directory: ./backend/genai
+
+      - name: Run test
+        run: |
+          set -eo pipefail
+          mise run be:test
+        working-directory: ./backend/genai
+        env:
+          CI: 'true'

.github/workflows/test.yaml

@@ -5,6 +5,10 @@
 FROM ghcr.io/astral-sh/uv:python3.13-bookworm-slim AS builder
 ENV UV_COMPILE_BYTECODE=1 UV_LINK_MODE=copy
 WORKDIR /app
+
+# Install build dependencies
+RUN apt-get update && apt-get install -y build-essential
+# Using uv to install dependencies
 RUN --mount=type=cache,target=/root/.cache/uv \
     --mount=type=bind,source=uv.lock,target=uv.lock \
     --mount=type=bind,source=pyproject.toml,target=pyproject.toml \
@@ -23,7 +27,10 @@ WORKDIR /app
 
 # Install dotenvx
 RUN apt-get update && apt-get install -y curl
-RUN curl -sfS https://dotenvx.sh > install.sh && chmod +x install.sh && ./install.sh --directory=. && rm install.sh
+RUN curl -sfS https://dotenvx.sh > install.sh \
+    && chmod +x install.sh \
+    && ./install.sh --directory=. \
+    && rm install.sh
 
 # Copy the application from the builder
 COPY --from=builder --chown=app:app /app /app

backend/genai/Dockerfile

@@ -20,6 +20,7 @@
 
 # memo: I9784621310328 の I のあとが 13桁 であれば ISBN 、20桁であれば JP-eコード とみなせる？
 
+
 def thumbnail(isbn_or_jpecode: str) -> str:
     """書影画像を取得するための URL を生成する
     例: https://ndlsearch.ndl.go.jp/thumbnail/9784422311074.jpg

backend/genai/src/constants.py

@@ -20,7 +20,7 @@ def parse_rss(url: str):
         # link = entry.get("link")
         # description = entry.get("description")
         # published = entry.get("published")
-        
+
         print(entry)
         print(type(entry))
         # {'title': 'はじめての\u3000シールえほん\u3000ぺたぺた\u3000ミッフィー / ディック・ブルーナ イラストほか', 'title_detail': {'type': 'text/plain', 'language': None, 'base': 'https://ndlsearch.ndl.go.jp/rss/ndls/bib.xml?cs=bib&display=panel&from=0&size=10&sort=published:desc&f-ht=ndl&f-ht=library&f-repository=R100000137&f-doc_style=digital&f-doc_style=paper&f-mt=dtbook&f-mt=dbook', 'value': 'はじめての\u3000シールえほん\u3000ぺたぺた\u3000ミッフィー / ディック・ブルーナ イラストほか'}, 'links': [{'rel': 'alternate', 'type': 'text/html', 'href': 'https://ndlsearch.ndl.go.jp/books/R100000137-I9784065386859'}], 'link': 'https://ndlsearch.ndl.go.jp/books/R100000137-I9784065386859', 'summary': 'ディック・ブルーナ イラスト; 講談社 編集. はじめての\u3000シールえほん\u3000ぺたぺた\u3000ミッフィー. 講談社. ISBN:9784065386859', 'summary_detail': {'type': 'text/html', 'language': None, 'base': 'https://ndlsearch.ndl.go.jp/rss/ndls/bib.xml?cs=bib&display=panel&from=0&size=10&sort=published:desc&f-ht=ndl&f-ht=library&f-repository=R100000137&f-doc_style=digital&f-doc_style=paper&f-mt=dtbook&f-mt=dbook', 'value': 'ディック・ブルーナ イラスト; 講談社 編集. はじめての\u3000シールえほん\u3000ぺたぺた\u3000ミッフィー. 講談社. ISBN:9784065386859'}, 'id': 'https://ndlsearch.ndl.go.jp/books/R100000137-I9784065386859', 'guidislink': False, 'tags': [{'term': '図書', 'scheme': None, 'label': None}], 'published': 'Sat, 21 Dec 2024 18:46:00 +0900', 'published_parsed': time.struct_time(tm_year=2024, tm_mon=12, tm_mday=21, tm_hour=9, tm_min=46, tm_sec=0, tm_wday=5, tm_yday=356, tm_isdst=0)}

backend/genai/src/feed.py

@@ -16,10 +16,14 @@
 
 from src.logger import logger
 
-weave.init(project_name=os.getenv("WEAVE_PROJECT_NAME", ""))
-L.initialize(project_api_key=os.getenv("LMNR_PROJECT_API_KEY"))
-
-
+if os.getenv("CI") == "true":
+    # CI 環境では weave と Laminar を初期化しない
+    pass
+else:
+    weave.init(project_name=os.getenv("WEAVE_PROJECT_NAME", ""))
+    L.initialize(project_api_key=os.getenv("LMNR_PROJECT_API_KEY"))
+
+# agents
 # see: https://docs.livekit.io/agents/integrations/google/#gemini-llm
 llm = livekit_google.LLM(
     model="gemini-2.0-flash-exp",

backend/genai/src/main.py

@@ -1,4 +1,5 @@
 from datetime import datetime
+
 from pydantic import BaseModel
 
 

backend/genai/src/types.py

@@ -1,4 +1,22 @@
 import os
 
-# テスト実行時は wandb を無効にする
-os.environ["WANDB_MODE"] = "disabled"
+import pytest
+
+from src.logger import logger
+
+
+def pytest_configure(config):
+    # pytest開始時に一度だけ呼び出されるフック
+    logger.info("Pytest is starting up...")
+
+
+@pytest.fixture(scope="session", autouse=True)
+def disable_wandb_and_weave():
+    os.environ["WANDB_DISABLED"] = "true"
+    os.environ["WANDB_SILENT"] = "true"
+    os.environ["WANDB_MODE"] = "offline"
+    logger.info("Wandb is disabled")
+
+    import weave
+
+    logger.info("Weave is imported")

backend/genai/tests/conftest.py

@@ -0,0 +1,15 @@
+#/-------------------[DOTENV_PUBLIC_KEY]--------------------/
+#/            public-key encryption for .env files          /
+#/       [how it works](https://dotenvx.com/encryption)     /
+#/----------------------------------------------------------/
+DOTENV_PUBLIC_KEY="02a33b6ab1419fbdce5ad6180a93970b61a1d26b5728554d35186700826d141f32"
+
+# .env
+TEST="encrypted:BBxrOwjcIzO7p0ysNaUGZbAWKuyaDSWcQhz9teqOZKiLori+aHi4741eB81O/qOWW24wRPbTAgluP2Pgeoo9FsETvDsB0+nbvJMewGgE1NnPVBpSom/sPO9gTQDyAytamzjig21G"
+# Generate a random secret: https://generate-secret.vercel.app/32 or `openssl rand -base64 32`
+AUTH_SECRET="encrypted:BDJgQJbwZBGGIrsj17zrQnK4LtwzUYGGrd6gFQlRI6QU3rXB6r/QZuC6J6Xg4Mrnx4sQf9xZLsHz4uVnHpMbVPuurYxwiK+DEiqSO+pua6usKdezLcKQ2quiYkp14knbC5z117F2+ARhILc7UAtv7uPLfEduT9eIzjdxkAb7Mk4ZnX9D8who75HjtXr+"
+# Google Vertex AI
+# see: https://sdk.vercel.ai/providers/ai-sdk-providers/google-vertex
+GOOGLE_VERTEX_PROJECT="advena-dev"
+GOOGLE_VERTEX_LOCATION="us-central1"
+POSTGRES_URL="postgresql://postgres:your_password@localhost:5432/your_database"