Skip to content
Strøm

CI Pipeline

This example creates a CI pipeline triggered by GitHub webhooks with parallel lint and test steps.

Workflow file

Section titled “Workflow file”

Create workspace/.workflows/ci.yaml:

actions:
  lint:
    type: script
    runner: docker
    script: |
      cd /workspace
      npm ci
      npm run lint


  test:
    type: script
    runner: docker
    script: |
      cd /workspace
      npm ci
      npm test


  build:
    type: script
    runner: docker
    script: |
      cd /workspace
      npm ci
      npm run build
      echo "OUTPUT: {\"artifact\": \"dist/app.tar.gz\"}"


  notify-ci:
    type: script
    script: |
      echo "CI result: {{ input.status }} for {{ input.ref }}"
      # In production, call Slack/Teams/GitHub API here


    input:
      status: { type: string }
      ref: { type: string }


tasks:
  ci-pipeline:
    mode: distributed
    input:
      body: { type: string }
    flow:
      lint:
        action: lint
      test:
        action: test
      # lint and test run in parallel (no mutual dependencies)
      build:
        action: build
        depends_on: [lint, test]
      notify:
        action: notify-ci
        depends_on: [build]
        continue_on_failure: true
        input:
          status: "success"
          ref: "{{ input.body.ref }}"


triggers:
  github-push:
    type: webhook
    name: github-ci
    task: ci-pipeline
    secret: "whsec_your_secret_here"
    enabled: true

What this does

Section titled “What this does”
  1. lint and test run in parallel (no dependency between them)
  2. build waits for both lint and test to complete
  3. notify sends a notification after build, with continue_on_failure: true so it runs even if build fails

The DAG looks like:

lint  ──┐
        ├──> build ──> notify
test  ──┘

Key concepts demonstrated

Section titled “Key concepts demonstrated”
  • Parallel steps: lint and test have no mutual dependencies, so they run concurrently
  • Docker runner: runner: docker runs steps inside containers with workspace at /workspace
  • continue_on_failure: The notify step runs regardless of build success/failure
  • Webhook trigger: External systems (GitHub) can trigger the pipeline via POST /hooks/github-ci
  • Webhook input: {{ input.body.ref }} accesses the parsed JSON body from the webhook request

Setting up the GitHub webhook

Section titled “Setting up the GitHub webhook”
  1. Go to your GitHub repo → Settings → Webhooks → Add webhook
  2. Set the Payload URL to https://stroem.example.com/hooks/github-ci?secret=whsec_your_secret_here
  3. Set Content type to application/json
  4. Select “Just the push event”

Now every push to the repository triggers the CI pipeline.

Running manually

Section titled “Running manually”
Terminal window
# Via API (simulating a webhook payload)
curl -X POST http://localhost:8080/api/workspaces/default/tasks/ci-pipeline/execute \
  -H "Content-Type: application/json" \
  -d '{"input": {"body": {"ref": "refs/heads/main"}}}'


# Via CLI
stroem trigger ci-pipeline --input '{"body": {"ref": "refs/heads/main"}}'

Test matrix with for_each

Section titled “Test matrix with for_each”

Use for_each to run the same tests across multiple Node.js versions:

actions:
  lint:
    type: script
    runner: docker
    script: |
      cd /workspace
      npm ci
      npm run lint


  test-version:
    type: docker
    image: "node:{{ input.node_version }}"
    cmd: |
      cd /app && npm ci && npm test &&
      echo "OUTPUT: {\"node\": \"{{ input.node_version }}\", \"passed\": true}"
    input:
      node_version: { type: string }


  build:
    type: script
    runner: docker
    script: |
      cd /workspace
      npm ci
      npm run build
      echo "OUTPUT: {\"artifact\": \"dist/app.tar.gz\"}"


  notify-ci:
    type: script
    script: |
      echo "CI result: {{ input.status }}"
      echo "Test results: {{ input.results }}"
    input:
      status: { type: string }
      results: { type: string }


tasks:
  ci-matrix:
    mode: distributed
    input:
      body: { type: string }
    flow:
      lint:
        action: lint
      test:
        action: test-version
        for_each: ["18", "20", "22"]
        input:
          node_version: "{{ each.item }}"
      # lint and test run in parallel; build waits for both
      build:
        action: build
        depends_on: [lint, test]
      notify:
        action: notify-ci
        depends_on: [build]
        continue_on_failure: true
        input:
          status: "success"
          results: "{{ test.output }}"

This creates test[0] (Node 18), test[1] (Node 20), test[2] (Node 22) — all running in parallel alongside lint. The test-version action uses type: docker to run each Node.js version’s image directly — note that type: docker does not mount workspace files, so the application source must be baked into the image. The lint and build actions use type: script + runner: docker instead, which mounts the workspace at /workspace. The notify step receives test.output as an aggregated array of results.

Adding error hooks

Section titled “Adding error hooks”
tasks:
  ci-pipeline:
    flow:
      # ... steps as above
    on_error:
      - action: notify-ci
        input:
          status: "FAILED: {{ hook.error_message }}"
          ref: "unknown"
    on_success:
      - action: notify-ci
        input:
          status: "All checks passed"
          ref: "{{ hook.task_name }}"