feat: update action scripts (#26)

Co-authored-by: itmustbemagic <49156114+itmustbemagic@users.noreply.github.com>

Author: allthings-bot

.github/actions/ddb-pipeline-status/action.yml

@@ -0,0 +1,70 @@
+name: ddb-pipeline-status
+description: 'Changes the pipeline status and checks it'
+inputs:
+  action:
+    description: 'Action of progress, passed, status'
+    required: true
+  project:
+    description: 'Name of project'
+    required: true
+
+runs:
+  using: "composite"
+  steps:
+    - name: Set to in progress
+      env:
+        BRANCH_NAME: ${{ github.ref_name }}
+        COMMAND_ACTION: ${{ inputs.action }}
+        PROJECT: ${{ inputs.project }}
+        TABLE_NAME: allthings-github-actions-status
+      shell: bash
+      run: |
+        if [ "${{ env.COMMAND_ACTION }}" != "progress" ]; then exit 0; fi
+
+        keyJson="{\"pk\":{\"S\":\"${{ env.PROJECT }}-${{ env.BRANCH_NAME }}\"}}"
+        {
+          aws-vault exec --backend=pass allthings-development-github-role -- aws dynamodb update-item \
+            --table-name "${{ env.TABLE_NAME }}" \
+            --update-expression "SET passed = :status" \
+            --expression-attribute-values '{":status":{"BOOL":false}}' \
+            --key="$keyJson"
+        } || {
+          exit 1
+        }
+        exit 0
+
+    - name: Set to in passed
+      env:
+        BRANCH_NAME: ${{ github.ref_name }}
+        COMMAND_ACTION: ${{ inputs.action }}
+        PROJECT: ${{ inputs.project }}
+        TABLE_NAME: allthings-github-actions-status
+      shell: bash
+      run: |
+        if [ "${{ env.COMMAND_ACTION }}" != "passed" ]; then exit 0; fi
+
+        keyJson="{\"pk\":{\"S\":\"${{ env.PROJECT }}-${{ env.BRANCH_NAME }}\"}}"
+        {
+          aws-vault exec --backend=pass allthings-development-github-role -- aws dynamodb update-item \
+            --table-name "${{ env.TABLE_NAME }}" --key="$keyJson" \
+            --update-expression "SET passed = :status" \
+            --expression-attribute-values '{":status":{"BOOL":true}}'
+        } || {
+          exit 1
+        }
+        exit 0
+
+    - name: Set to in passed
+      env:
+        BRANCH_NAME: ${{ github.ref_name }}
+        COMMAND_ACTION: ${{ inputs.action }}
+        PROJECT: ${{ inputs.project }}
+        TABLE_NAME: allthings-github-actions-status
+      shell: bash
+      run: |
+        if [ "${{ env.COMMAND_ACTION }}" != "status" ]; then exit 0; fi
+
+        keyJson="{\"pk\":{\"S\":\"${{ env.PROJECT }}-${{ env.BRANCH_NAME }}\"}}"
+        aws-vault exec --backend=pass allthings-development-github-role -- aws dynamodb get-item \
+          --table-name "${{ env.TABLE_NAME }}" --key="$keyJson" | grep "\"BOOL\": true" || exit 1
+        exit 0

.github/actions/docker-setup/action.yml

@@ -0,0 +1,16 @@
+name: docker-setup
+description: 'Setup up docker and login'
+runs:
+  using: "composite"
+  steps:
+    - name: Set up Docker Buildx
+      uses: docker/setup-buildx-action@v3
+
+    - name: Set up QEMU
+      uses: docker/setup-qemu-action@v3
+
+    - name: Login to Docker Hub
+      uses: docker/login-action@v3
+      with:
+        username: '${{ env.DOCKER_LOGIN_USER }}'
+        password: '${{ env.DOCKER_LOGIN_PASSWORD }}'

.github/actions/slack-notifications/action.yml

@@ -0,0 +1,23 @@
+name: slack-notifications
+description: 'Sends slack notification'
+inputs:
+  notification-type:
+    description: 'Type of notification like nightly-security-check'
+    required: true
+
+runs:
+  using: "composite"
+  steps:
+    - name: Set to in progress
+      env:
+        PROJECT: ${{ env.PROJECT }}
+        BUILD_NUMBER: ${{ github.run_id }}
+        SLACK_GITHUB_ACTIONS_WEBHOOK: ${{ env.SLACK_GITHUB_ACTIONS_WEBHOOK }}
+        NOTIFICATION_TYPE: ${{ inputs.notification-type }}
+      shell: bash
+      run: |
+        if [ "${{ env.NOTIFICATION_TYPE }}" = "nightly-security-check" ]; then
+          JOB_URL="https://github.com/allthings/${{ env.PROJECT }}/actions/runs/${{ env.BUILD_NUMBER }}"
+          curl -X POST "${{ env.SLACK_GITHUB_ACTIONS_WEBHOOK }}" -H "Content-Type: application/json" \
+            -d "{\"blocks\":[{\"text\":{\"text\":\"*Name:* ${{ env.PROJECT }} nightly security check\\n*Type:* cron-job\\n*Text:* Security check failed\\n><$JOB_URL|View failing job>\",\"type\":\"mrkdwn\"},\"type\":\"section\"}],\"text\":\"\"}"        
+        fi