chore: Add yamllint (#1528)

This commit adds yamllint. A YAML linter that is
designed to keep our YAML consistently formatted
and to ensure we avoid common syntax errors.

Signed-off-by: Dave Tucker <[email protected]>

Author: dave-tucker

.github/release.yml

@@ -2,13 +2,13 @@ changelog:
   categories:
     - title: 🏕 Features
       labels:
-        - '^feat.*'
+        - ^feat.*
     - title: 🧑‍💻 Dev
       labels:
-        - '^dev.*'
+        - ^dev.*
     - title: 🔧 Fix
       labels:
-        - '^fix.*'
+        - ^fix.*
     - title: 👒 Chores
       labels:
-        - '^chore.*'
+        - ^chore.*

.github/workflows/baseimage_dispatch.yml

@@ -1,6 +1,6 @@
 name: baseimage_dispatch
 
-on:
+on: # yamllint disable-line rule:truthy
   workflow_dispatch:
 
 jobs:
@@ -9,5 +9,5 @@ jobs:
     with:
       pushImage: true
     secrets:
-        username: ${{ secrets.BOT_NAME }}
-        password: ${{ secrets.BOT_TOKEN }}
+      username: ${{ secrets.BOT_NAME }}
+      password: ${{ secrets.BOT_TOKEN }}

.github/workflows/c.yml

@@ -1,6 +1,6 @@
 name: c
 # for c basic checks - it builds and is correctly formatted
-on:
+on: # yamllint disable-line rule:truthy
   workflow_call:
 
 permissions:
@@ -14,7 +14,7 @@ jobs:
       - uses: jidicula/[email protected]
         with:
           clang-format-version: "17"
-          check-path: "bpfassets/libbpf/src"
+          check-path: bpfassets/libbpf/src
 
   build:
     runs-on: ubuntu-latest

.github/workflows/commitMsg.yml

@@ -1,5 +1,5 @@
-name: 'Commit Message Check'
-on:
+name: Commit Message Check
+on: # yamllint disable-line rule:truthy
   pull_request:
     types:
       - opened
@@ -21,21 +21,21 @@ jobs:
       - name: Try to keep the subject line to 50 characters or less; do not exceed 72 characters
         uses: gsactions/commit-message-checker@v2
         with:
-          pattern: '^[^#].{72}'
-          error: 'The maximum line length of 72 characters is exceeded.'
-          excludeDescription: 'true' # optional: this excludes the description body of a pull request
-          excludeTitle: 'true' # optional: this excludes the title of a pull request
+          pattern: ^[^#].{72}
+          error: The maximum line length of 72 characters is exceeded.
+          excludeDescription: "true" # optional: this excludes the description body of a pull request
+          excludeTitle: "true" # optional: this excludes the title of a pull request
       - name: Providing additional context if I am right means formatting in topic":" something
         uses: gsactions/commit-message-checker@v2
         with:
-          pattern: '^.*:\s.*'
-          error: 'topic: someting for example commit msg as [CI: enhancement xxx]'
-          excludeDescription: 'true' # optional: this excludes the description body of a pull request
-          excludeTitle: 'true' # optional: this excludes the title of a pull request
+          pattern: ^.*:\s.*
+          error: "topic: someting for example commit msg as [CI: enhancement xxx]"
+          excludeDescription: "true" # optional: this excludes the description body of a pull request
+          excludeTitle: "true" # optional: this excludes the title of a pull request
       - name: The first word in the commit message subject should be capitalized unless it starts with a lowercase symbol or other identifier
         uses: gsactions/commit-message-checker@v2
         with:
-          pattern: '^[^].*'
-          error: 'topic: someting for example commit msg as [CI: enhancement xxx]'
-          excludeDescription: 'true' # optional: this excludes the description body of a pull request
-          excludeTitle: 'true' # optional: this excludes the title of a pull request
+          pattern: ^[^].*
+          error: "topic: someting for example commit msg as [CI: enhancement xxx]"
+          excludeDescription: "true" # optional: this excludes the description body of a pull request
+          excludeTitle: "true" # optional: this excludes the title of a pull request

.github/workflows/daily.yml

@@ -1,10 +1,10 @@
 # This workflow would be run on sustainable-computing-io/kepler only.
 name: Scheduled build
-on:
+on: # yamllint disable-line rule:truthy
   workflow_dispatch:
   branch_protection_rule:
   schedule:
-    - cron: "12 9 * * *"
+    - cron: 12 9 * * *
 
 jobs:
   # daily go security
@@ -16,14 +16,14 @@ jobs:
     if: github.repository == 'sustainable-computing-io/kepler'
     uses: ./.github/workflows/image_base.yml
     secrets:
-        username: ${{ secrets.BOT_NAME }}
-        password: ${{ secrets.BOT_TOKEN }}
+      username: ${{ secrets.BOT_NAME }}
+      password: ${{ secrets.BOT_TOKEN }}
   image:
     needs: [image_base]
     uses: ./.github/workflows/image.yml
     secrets:
-        username: ${{ secrets.BOT_NAME }}
-        password: ${{ secrets.BOT_TOKEN }}
+      username: ${{ secrets.BOT_NAME }}
+      password: ${{ secrets.BOT_TOKEN }}
   # daily openSSF scan
   scorecard:
     if: github.repository == 'sustainable-computing-io/kepler'

.github/workflows/developer_local.yml

@@ -1,26 +1,26 @@
 name: local dev env validation
 # for developer local environment script or test usage
-on:
+on: # yamllint disable-line rule:truthy
   workflow_call:
 
 jobs:
   unit_test_mac:
     runs-on: macos-latest
     steps:
-    - uses: actions/[email protected]
-      with:
-        persist-credentials: false
-        fetch-depth: 0
-    - uses: actions/setup-go@v5
-      with:
-        go-version-file: go.mod
-    - name: Prepare environment
-      run: |
+      - uses: actions/[email protected]
+        with:
+          persist-credentials: false
+          fetch-depth: 0
+      - uses: actions/setup-go@v5
+        with:
+          go-version-file: go.mod
+      - name: Prepare environment
+        run: |
           brew install cpuid
           cd doc/ && sudo ./dev/prepare_dev_env.sh && cd -
           git config --global --add safe.directory /kepler
-    - name: Run
-      run: make test-mac-verbose
+      - name: Run
+        run: make test-mac-verbose
 
   local_env:
     runs-on: ubuntu-latest

.github/workflows/equinix_metal_flow.yml

@@ -1,11 +1,11 @@
 name: Equinix Metal Action
 
-on:
+on: # yamllint disable-line rule:truthy
   workflow_dispatch:
 
 jobs:
   Create-runner:
-    name: "Create Runner"
+    name: Create Runner
     runs-on: ubuntu-latest
 
     steps:
@@ -15,12 +15,12 @@ jobs:
           github_token: ${{ secrets.GH_SELF_HOSTED_RUNNER_TOKEN }}
           metal_auth_token: ${{ secrets.EQUINIX_API_TOKEN }}
           metal_project_id: ${{ secrets.EQUINIX_PROJECT_ID }}
-          metro: "da"
-          plan: "c3.small.x86"
-          os: "rhel_9"
+          metro: da
+          plan: c3.small.x86
+          os: rhel_9
 
   Install:
-    name: "Install"
+    name: Install
     needs: Create-runner
     runs-on: self-hosted
     continue-on-error: true
@@ -136,7 +136,7 @@ jobs:
           curl "http://localhost:44322/metrics?names=openmetrics.kepler.kepler_node_package_joules_total"
 
   Cleanup:
-    name: "Cleanup"
+    name: Cleanup
     runs-on: ubuntu-latest
     needs: [Install]
 

.github/workflows/golang.yml

@@ -1,6 +1,6 @@
 name: golang
 # for golang basic checks with go command line tool
-on:
+on: # yamllint disable-line rule:truthy
   workflow_call:
 
 permissions:

.github/workflows/gosec.yml

@@ -2,14 +2,14 @@ name: Security Scan
 
 # Run workflow each time code is pushed to your repository and on a schedule.
 # The scheduled workflow runs every at 00:00 on Sunday UTC time.
-on:
+on: # yamllint disable-line rule:truthy
   workflow_call:
 
 jobs:
   tests:
     runs-on: ubuntu-latest
     env:
-      GO111MODULE: on
+      GO111MODULE: "on"
     steps:
       - name: Checkout Source
         uses: actions/[email protected]
@@ -18,7 +18,7 @@ jobs:
         uses: securego/gosec@master
         with:
           # Arguments for gosec, -no-fail to not fail the workflow based on findings
-          args: '-no-fail -fmt sarif -out gosec-results.sarif ./...'
+          args: -no-fail -fmt sarif -out gosec-results.sarif ./...
 
       - name: Upload SARIF file
         uses: github/codeql-action/upload-sarif@v3

.github/workflows/image.yml

@@ -1,10 +1,10 @@
 name: image
 
-on:
+on: # yamllint disable-line rule:truthy
   workflow_call:
     inputs:
       imageTag:
-        default: 'latest'
+        default: latest
         type: string
       pushImage:
         default: true
@@ -22,55 +22,55 @@ jobs:
       fail-fast: false
       matrix:
         include:
-        - IMAGE_NAME: kepler
-          IMAGE_FILE: build/Dockerfile
-          PLATFORMS:  linux/amd64,linux/arm64
-          BUILD_ARGS: |
-                INSTALL_DCGM=false
-                INSTALL_HABANA=false
-                VERSION=${{ inputs.imageTag }}
-          LABEL:      ${{ inputs.imageTag }}
-        - IMAGE_NAME: kepler
-          IMAGE_FILE: build/Dockerfile
-          PLATFORMS:  linux/amd64
-          BUILD_ARGS: |
-                INSTALL_DCGM=true
-                INSTALL_HABANA=false
-                VERSION=${{ inputs.imageTag }}-dcgm
-          LABEL:      ${{ inputs.imageTag }}-dcgm
-        - IMAGE_NAME: kepler
-          IMAGE_FILE: build/Dockerfile
-          PLATFORMS:  linux/amd64
-          BUILD_ARGS: |
-                INSTALL_DCGM=false
-                INSTALL_HABANA=true
-                VERSION=${{ inputs.imageTag }}-habana
-          LABEL:      ${{ inputs.imageTag }}-habana
-        - IMAGE_NAME: kepler-validator
-          IMAGE_FILE: build/Dockerfile.kepler-validator
-          BUILD_ARGS: ""
-          PLATFORMS:  linux/amd64
-          LABEL:      ${{ inputs.imageTag }}
+          - IMAGE_NAME: kepler
+            IMAGE_FILE: build/Dockerfile
+            PLATFORMS: linux/amd64,linux/arm64
+            BUILD_ARGS: |
+              INSTALL_DCGM=false
+              INSTALL_HABANA=false
+              VERSION=${{ inputs.imageTag }}
+            LABEL: ${{ inputs.imageTag }}
+          - IMAGE_NAME: kepler
+            IMAGE_FILE: build/Dockerfile
+            PLATFORMS: linux/amd64
+            BUILD_ARGS: |
+              INSTALL_DCGM=true
+              INSTALL_HABANA=false
+              VERSION=${{ inputs.imageTag }}-dcgm
+            LABEL: ${{ inputs.imageTag }}-dcgm
+          - IMAGE_NAME: kepler
+            IMAGE_FILE: build/Dockerfile
+            PLATFORMS: linux/amd64
+            BUILD_ARGS: |
+              INSTALL_DCGM=false
+              INSTALL_HABANA=true
+              VERSION=${{ inputs.imageTag }}-habana
+            LABEL: ${{ inputs.imageTag }}-habana
+          - IMAGE_NAME: kepler-validator
+            IMAGE_FILE: build/Dockerfile.kepler-validator
+            BUILD_ARGS: ""
+            PLATFORMS: linux/amd64
+            LABEL: ${{ inputs.imageTag }}
     steps:
-    - name: Checkout
-      uses: actions/[email protected]
-    - name: Set up QEMU
-      uses: docker/setup-qemu-action@v3
-      with:
-        image: tonistiigi/binfmt:qemu-v8.1.5
-    - name: Set up Docker Buildx
-      uses: docker/setup-buildx-action@v3
-    - name: Login to Quay
-      if: ${{ inputs.pushImage }}
-      uses: docker/login-action@v3
-      with:
-        registry: quay.io/sustainable_computing_io
-        username: ${{ secrets.username }}
-        password: ${{ secrets.password }}
+      - name: Checkout
+        uses: actions/[email protected]
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v3
+        with:
+          image: tonistiigi/binfmt:qemu-v8.1.5
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+      - name: Login to Quay
+        if: ${{ inputs.pushImage }}
+        uses: docker/login-action@v3
+        with:
+          registry: quay.io/sustainable_computing_io
+          username: ${{ secrets.username }}
+          password: ${{ secrets.password }}
 
-    - name: Build and push image
-      uses: docker/build-push-action@v5
-      with:
+      - name: Build and push image
+        uses: docker/build-push-action@v5
+        with:
           context: .
           platforms: ${{matrix.PLATFORMS}}
           push: ${{ inputs.pushImage }}
@@ -79,17 +79,17 @@ jobs:
           labels: ${{matrix.LABEL}}
           file: ${{matrix.IMAGE_FILE}}
 
-    - name: Generate SBOM
-      uses: anchore/[email protected]
-      with:
-        image: quay.io/sustainable_computing_io/${{matrix.IMAGE_NAME}}:${{matrix.LABEL}}
-        artifact-name: sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.json
-        output-file: ./sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.spdx.json
+      - name: Generate SBOM
+        uses: anchore/[email protected]
+        with:
+          image: quay.io/sustainable_computing_io/${{matrix.IMAGE_NAME}}:${{matrix.LABEL}}
+          artifact-name: sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.json
+          output-file: ./sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.spdx.json
 
-    - name: save Kepler image SBOM as artifact
-      if: ${{ inputs.pushImage }}
-      uses: actions/[email protected]
-      with:
+      - name: save Kepler image SBOM as artifact
+        if: ${{ inputs.pushImage }}
+        uses: actions/[email protected]
+        with:
           name: sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.spdx.json
           path: ./sbom-${{matrix.IMAGE_NAME}}-${{matrix.LABEL}}.spdx.json
           retention-days: 1