-
-
Notifications
You must be signed in to change notification settings - Fork 0
161 lines (160 loc) · 5.55 KB
/
release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
# Release
#
# Publish a GitHub release when a `release/*` branch is merged into `main` or on workflow dispatch.
#
# References:
#
# - https://cli.github.com/manual/gh_release_create
# - https://docs.github.com/actions/learn-github-actions/contexts
# - https://docs.github.com/actions/learn-github-actions/expressions
# - https://docs.github.com/actions/using-workflows/events-that-trigger-workflows#pull_request
# - https://docs.github.com/actions/using-workflows/events-that-trigger-workflows#workflow_dispatch
# - https://docs.github.com/actions/using-workflows/using-github-cli-in-workflows
# - https://docs.github.com/webhooks-and-events/webhooks/webhook-events-and-payloads#pull_request
# - https://docs.github.com/webhooks-and-events/webhooks/webhook-events-and-payloads#workflow_dispatch
# - https://github.com/actions/checkout
# - https://github.com/bdougie/close-issues-based-on-label
# - https://github.com/crazy-max/ghaction-import-gpg
# - https://github.com/dawidd6/action-delete-branch
# - https://github.com/hmarr/debug-action
---
name: release
on:
pull_request:
branches:
- main
types:
- closed
workflow_dispatch:
inputs:
sha:
description: pull request merge commit sha
required: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
jobs:
metadata:
if: |
github.event_name == 'workflow_dispatch' ||
(startsWith(github.head_ref, 'release/') && github.event.pull_request.merged)
runs-on: ubuntu-latest
env:
REF: ${{ github.event.inputs.sha || github.head_ref }}
outputs:
prerelease: ${{ steps.dist-tag.outputs.prerelease }}
tag: ${{ steps.tag.outputs.result }}
version: ${{ steps.version.outputs.result }}
steps:
- id: debug
name: Print environment variables and event payload
uses: hmarr/debug-action@v2.1.0
- id: checkout
name: Checkout ${{ env.REF }}
uses: actions/checkout@v3.6.0
with:
ref: ${{ env.REF }}
- id: version
name: Get version
run: echo "result=$(jq .version package.json -r)" >> $GITHUB_OUTPUT
- id: tag-prefix
name: Get release tag prefix
run: echo "result=$(jq .tagPrefix package.json -r)" >> $GITHUB_OUTPUT
- id: tag
name: Get release tag
run: |
echo "result=${{ format('{0}{1}', steps.tag-prefix.outputs.result, steps.version.outputs.result) }}" >> $GITHUB_OUTPUT
- id: dist-tag
name: Get dist tag
uses: flex-development/dist-tag-action@1.1.2
with:
target: ${{ steps.version.outputs.result }}
publish:
needs: metadata
permissions:
contents: write
packages: read
runs-on: ubuntu-latest
environment:
name: production
url:
${{ format('{0}/{1}/releases/tag/{2}', github.server_url, github.repository,
needs.metadata.outputs.tag) }}
env:
NOTES_FILE: ./RELEASE_NOTES.md
TAG: ${{ needs.metadata.outputs.tag }}
steps:
- id: checkout
name: Checkout ${{ github.event.inputs.sha || 'event.pull_request.merge_commit_sha' }}
uses: actions/checkout@v3.6.0
with:
fetch-depth: 0
ref: ${{ github.event.inputs.sha || github.event.pull_request.merge_commit_sha }}
- id: gpg-import
name: Import GPG key
uses: crazy-max/ghaction-import-gpg@v5.4.0
with:
git_config_global: true
git_tag_gpgsign: true
git_user_signingkey: true
gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
# todo: remove when https://github.com/crazy-max/ghaction-import-gpg/issues/118 is resolved
- id: gpg-trust
name: Set trust on GPG key
run: |
gpg --no-tty --command-fd 0 --edit-key ${{ steps.gpg-import.outputs.keyid }} << EOTRUST
trust
5
y
quit
EOTRUST
- id: yarn
name: Install dependencies
run: yarn
env:
HUSKY: 0
- id: pack
name: Pack project
run: yarn pack -o %s-%v.tgz
env:
NODE_ENV: production
- id: release-notes
name: Generate release notes
run: yarn changelog -w -o $NOTES_FILE
env:
NODE_NO_WARNINGS: 1
- id: tag
name: Create annotated tag
run: |
git tag --annotate --force --sign $TAG --message "release: $TAG"
git tag --verify $TAG
git push origin --tags
env:
GIT_AUTHOR_EMAIL: ${{ steps.gpg-import.outputs.email }}
GIT_AUTHOR_NAME: ${{ steps.gpg-import.outputs.name }}
GIT_COMMITTER_EMAIL: ${{ steps.gpg-import.outputs.email }}
GIT_COMMITTER_NAME: ${{ steps.gpg-import.outputs.name }}
- id: publish
name: Publish release
run: gh release create $TAG *.tgz -t=$TAG -F=$NOTES_FILE -p=$PRERELEASE
env:
GITHUB_TOKEN: ${{ secrets.PAT_REPO }}
PRERELEASE: ${{ needs.metadata.outputs.prerelease }}
cleanup:
needs: [metadata, publish]
permissions:
contents: write
issues: write
runs-on: ubuntu-latest
steps:
- id: close-released-issues
name: Close released issues
uses: bdougie/close-issues-based-on-label@master
env:
LABEL: status:${{ (needs.metadata.outputs.prerelease && 'prereleased') || 'released' }}
- id: delete-release-branch
name: Delete release/${{ needs.metadata.outputs.version }}
uses: dawidd6/action-delete-branch@v3.1.0
with:
branches: release/
soft_fail: true
suffix: ${{ needs.metadata.outputs.version }}