-
Notifications
You must be signed in to change notification settings - Fork 0
127 lines (118 loc) · 3.76 KB
/
ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
---
name: CI & Release
on:
# Build on pushes branches that have a PR (including drafts)
pull_request:
branches:
- main
- canary
# Build on commits pushed to branches without a PR if it's in the allowlist
push:
branches:
- main
- canary
# https://docs.github.com/en/actions/managing-workflow-runs/manually-running-a-workflow
# https://github.com/sanity-io/semantic-release-preset/actions/workflows/ci.yml
workflow_dispatch:
inputs:
test:
description: 'Run tests'
required: true
default: true
type: boolean
release:
description: 'Publish new release'
required: true
default: false
type: boolean
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
permissions:
contents: read # for checkout
jobs:
# log-the-inputs:
# runs-on: ubuntu-latest
# steps:
# - run: |
# echo "concurrency.group: $GROUP"
# echo "Publish new release: $RELEASE"
# echo "Run tests: $TEST"
# env:
# GROUP: ${{ github.workflow }}-${{ github.head_ref || github.ref }}-${{ github.event.inputs.release || 'no-release' }}
# RELEASE: ${{ inputs.release }}
# TEST: ${{ inputs.test }}
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: lts/*
cache: npm
- run: npm ci
- run: npm run lint --if-present
- run: npm run prepublishOnly --if-present
test:
needs: build
if: github.event.inputs.test != 'false'
runs-on: ${{ matrix.os }}
strategy:
fail-fast: false
matrix:
os: [macos-latest, ubuntu-latest, windows-latest]
node: [lts/*, current]
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node }}
cache: npm
- run: npm ci
- run: npm test --if-present
# test-needs-success:
# needs: test
# if: always() && github.event.inputs.release == 'true' && needs.test.result == 'success'
# runs-on: ubuntu-latest
# steps:
# - env:
# NEEDS: ${{ toJSON(needs) }}
# run: |
# echo "$NEEDS"
# test-needs-skipped:
# needs: test
# if: always() && github.event.inputs.release == 'true' && needs.test.result == 'skipped'
# runs-on: ubuntu-latest
# steps:
# - env:
# NEEDS: ${{ toJSON(needs) }}
# run: |
# echo "$NEEDS"
release:
permissions:
contents: write # to be able to publish a GitHub release
issues: write # to be able to comment on released issues
pull-requests: write # to be able to comment on released pull requests
id-token: write # to enable use of OIDC for npm provenance
needs: test
# only run if opt-in during workflow_dispatch
# needs.test.result: 'success' | 'failure' | 'skipped' | 'cancelled'
# If the state is success or skipped it's safe to do the release
if: always() && github.event.inputs.release == 'true' && needs.test.result != 'failure' && needs.test.result != 'cancelled'
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: actions/setup-node@v4
with:
node-version: lts/*
cache: npm
- run: npm ci
- run: npx semantic-release
# Don't allow interrupting the release step if the job is cancelled, as it can lead to an inconsistent state
# e.g. git tags were pushed but it exited before `npm publish`
if: always()
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NPM_TOKEN: ${{ secrets.NPM_PUBLISH_TOKEN }}