circle-check
Meet Soda 4.0 – Unlock Data Quality Automation |
Check the Announcementarrow-up-right
search

Github

Learn how to integrate GitHub with Soda.

This page explains the GitHub Actions workflows that integrate with Sodaarrow-up-right to manage data contracts automatically. It covers two key workflows:

  1. Publish Contracts on Merge to Main

  2. Verify Contracts on Pull Request

hashtag
Publish Contracts on Merge

hashtag
Overview

The Publish Contracts on Merge workflow automates the publishing of any updated or new Soda contracts when changes are pushed to the main branch.

This ensures that all contract changes are automatically deployed to Soda Cloud whenever they're merged into the production branch.

hashtag
Action

name: Publish Updated Contracts on Merge

on:
  push:
    branches:
      - main

jobs:
  publish-contracts:
    runs-on: ubuntu-latest

    steps:
      - name: Checkout repository
        uses: actions/checkout@v4
        with:
          fetch-depth: 0

      - name: Set up Python
        uses: actions/setup-python@v4
        with:
          python-version: '3.10'

      - name: Install soda-postgres
        run: pip install -i https://pypi.dev.sodadata.io "soda>=4.0.0.dev1" -U

      - name: Get all changed files
        id: changed-files
        uses: tj-actions/changed-files@v46

      - name: List all changed files
        env:
          ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
        run: |
          for file in ${ALL_CHANGED_FILES}; do
            echo "$file was changed"
          done

      - name: Debug environment variables
        env:
          SODA_CLOUD_API_KEY: ${{ secrets.SODA_CLOUD_API_KEY }}
          SODA_CLOUD_API_SECRET: ${{ secrets.SODA_CLOUD_API_SECRET }}
        run: |
          echo "Environment variables status:"
          echo "SODA_CLOUD_API_KEY: $(if [ -n "$SODA_CLOUD_API_KEY" ]; then echo "✅ Set (${#SODA_CLOUD_API_KEY} chars)"; else echo "❌ Not set"; fi)"
          echo "SODA_CLOUD_API_SECRET: $(if [ -n "$SODA_CLOUD_API_SECRET" ]; then echo "✅ Set (${#SODA_CLOUD_API_SECRET} chars)"; else echo "❌ Not set"; fi)"

      - name: Filter and publish contracts
        env:
          ALL_CHANGED_FILES: ${{ steps.changed-files.outputs.all_changed_files }}
          SODA_CLOUD_CONFIG_FILE_PATH: soda-cloud.yaml
          SODA_CLOUD_API_KEY: ${{ secrets.SODA_CLOUD_API_KEY }}
          SODA_CLOUD_API_SECRET: ${{ secrets.SODA_CLOUD_API_SECRET }}
        run: |
          for file in ${ALL_CHANGED_FILES}; do
            if [[ "$file" == contracts/*.yml || "$file" == contracts/*.yaml ]]; then
              echo "Publishing $file"
              echo "Executing: soda contract publish --contract \"$file\" --soda-cloud ${SODA_CLOUD_CONFIG_FILE_PATH}"
              soda contract publish --contract "$file" --soda-cloud ${SODA_CLOUD_CONFIG_FILE_PATH}
            else
              echo "Skipping $file (not a contract)"
            fi
          done

hashtag
What It Does

  1. Checks out the repo

  2. Sets up Python

  3. Installs the latest version of soda

  4. Identifies changed files

  5. Filters YAML files in the contracts/ directory

  6. Publishes valid contracts to Soda Cloud

hashtag
Required GitHub Secrets

Make sure these are set in your repository’s GitHub Secrets:

  • SODA_CLOUD_API_KEY

  • SODA_CLOUD_API_SECRET

Learn more about how to Generate API keys

hashtag
Customization Options

Option
Description

Change the Action trigger.

pip install

Can specify a fixed version of soda for stability.

SODA_CLOUD_CONFIG_FILE_PATH

Path to your Soda Cloud config. Can be replaced if your setup uses a different config file name or location.

contracts/*.yml or contracts/*.yaml

Modify file pattern to match a different directory or naming convention.

hashtag
Example output

hashtag
Verify Contracts on Pull Request

hashtag
Overview

The Verify Contracts on Pull Request workflow ensures that contract changes in PRs are valid and do not break expectations before merging.

The workflow runs when a PR is opened, updated, or reopened.

hashtag
Action

hashtag
What It Does

  1. Checks out the PR branch

  2. Sets up Python

  3. Installs latest soda-postgres

  4. Identifies changed files

  5. Filters contracts in the contracts/ directory

  6. Runs verification checks against a configured data source

hashtag
Required Secrets

Make sure these are set in your repository’s GitHub Secrets:

  • DATASOURCE_USERNAME

  • DATASOURCE_PASSWORD

These secrets can be customized depending on the data source type and your needs.

hashtag
Customization Options

Option
Description

Change the Action trigger

pip install

Adapt the install command to install the necessary package for your data source.

Data source reference for Soda Core

You can specify a fixed version of soda for stability.

contracts/*.yml or contracts/*.yaml

Change to match your directory structure.

DATASOURCE_CONFIG_FILE_PATH

Replace with the path to your data source configuration

DATASOURCE_USERNAME and DATASOURCE_PASSWORD

Adapt the secrets used to connect to your data source depending on the data source type and security requirements.

hashtag
Example output

circle-info

You are not logged in to Soda and are viewing the default public documentation. Learn more about Documentation access & licensing.

PreviousOperations & advanced usageNextJira

Last updated

Was this helpful?