-
-
Notifications
You must be signed in to change notification settings - Fork 169
141 lines (137 loc) · 4.31 KB
/
npm-release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
name: Release npm package and container image
on:
push:
branches:
- master
tags:
- 'v*'
workflow_dispatch:
env:
REGISTRY: ghcr.io
jobs:
pkg:
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
id-token: write
steps:
- uses: actions/checkout@v4
- name: Use Node.js
uses: actions/setup-node@v3
with:
node-version: 18.x
registry-url: https://registry.npmjs.org/
- name: Trim CI agent
run: |
chmod +x contrib/free_disk_space.sh
./contrib/free_disk_space.sh
- name: Release npm package
if: startsWith(github.ref, 'refs/tags/')
run: |
npm config set //npm.pkg.github.com/:_authToken=$GITHUB_TOKEN
npm config set //registry.npmjs.org/:_authToken=$NODE_AUTH_TOKEN
echo "cyclonedx:registry=https://npm.pkg.github.com" > ~/.npmrc
npm publish --access=public --@cyclonedx:registry='https://npm.pkg.github.com'
echo "cyclonedx:registry=https://registry.npmjs.org" > ~/.npmrc
npm publish --provenance --access=public --@cyclonedx:registry='https://registry.npmjs.org'
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
containers:
runs-on: ubuntu-latest
permissions:
contents: read
packages: write
id-token: write
steps:
- uses: actions/checkout@v4
- name: Use Node.js
uses: actions/setup-node@v3
with:
node-version: 18.x
registry-url: https://registry.npmjs.org/
- name: Trim CI agent
run: |
chmod +x contrib/free_disk_space.sh
./contrib/free_disk_space.sh
- name: Set up QEMU
uses: docker/setup-qemu-action@v2
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v2
- name: Log in to the Container registry
uses: docker/login-action@v2
with:
registry: ghcr.io
username: ${{ github.actor }}
password: ${{ secrets.GITHUB_TOKEN }}
- name: Extract metadata (tags, labels) for Docker
id: meta
uses: docker/metadata-action@v4
with:
images: |
ghcr.io/cyclonedx/cdxgen
- name: Build and push Docker images
uses: docker/build-push-action@v4
with:
context: .
file: ci/Dockerfile
platforms: linux/amd64,linux/arm64
push: true
tags: ${{ steps.meta.outputs.tags }}
labels: ${{ steps.meta.outputs.labels }}
cache-from: type=gha,scope=cdxgen
cache-to: type=gha,mode=max,scope=cdxgen
- name: Extract metadata (tags, labels) for Docker
id: meta2
uses: docker/metadata-action@v4
with:
images: |
ghcr.io/cyclonedx/cdxgen-deno
- name: Build and push Docker images
uses: docker/build-push-action@v4
with:
context: .
file: ci/Dockerfile-deno
platforms: linux/amd64
push: true
tags: ${{ steps.meta2.outputs.tags }}
labels: ${{ steps.meta2.outputs.labels }}
cache-from: type=gha,scope=cdxgen-deno
cache-to: type=gha,mode=max,scope=cdxgen-deno
- name: Extract metadata (tags, labels) for Docker
id: meta3
uses: docker/metadata-action@v4
with:
images: |
ghcr.io/cyclonedx/cdxgen-ppc64
- name: Build and push Docker images
uses: docker/build-push-action@v4
with:
context: .
file: ci/Dockerfile-ppc64
platforms: linux/ppc64le
push: true
tags: ${{ steps.meta3.outputs.tags }}
labels: ${{ steps.meta3.outputs.labels }}
cache-from: type=gha,scope=cdxgen-ppc64
cache-to: type=gha,mode=max,scope=cdxgen-ppc64
- name: Extract metadata (tags, labels) for Docker
id: meta4
uses: docker/metadata-action@v4
with:
images: |
ghcr.io/cyclonedx/cdxgen-next
if: github.ref == 'refs/heads/master'
- name: Build and push Docker images
uses: docker/build-push-action@v4
with:
context: .
file: ci/Dockerfile-fedora
platforms: linux/amd64
push: true
tags: ${{ steps.meta4.outputs.tags }}
labels: ${{ steps.meta4.outputs.labels }}
cache-from: type=gha,scope=cdxgen-next
cache-to: type=gha,mode=max,scope=cdxgen-next
if: github.ref == 'refs/heads/master'