-
Notifications
You must be signed in to change notification settings - Fork 0
132 lines (115 loc) · 5 KB
/
tf-release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
---
#
# PLEASE NOTE: Managed workflow - do not change manually
#
name: Release
on:
workflow_dispatch:
inputs:
dryRun:
type: boolean
description: "Dry-Run"
default: false
concurrency:
# only run one publishing at a time to avoid conflicts
group: publish-${{ github.ref }}
env:
# renovate: datasource=npm depName=@semantic-release/changelog
SEMANTIC_RELEASE_CHANGELOG_VERSION: 6.0.3
# renovate: datasource=npm depName=@semantic-release/git
SEMANTIC_RELEASE_GIT_VERSION: 10.0.1
# renovate: datasource=npm depName=conventional-changelog-conventionalcommits
CONVENTIONAL_CHANGELOG_CONVENTIONALCOMMITS_VERSION: 8.0.0
jobs:
release:
# Only on main repository (don't release on forks)
if: github.repository_owner == 'wetransform-os'
name: Release
runs-on: ubuntu-latest
outputs:
release-published: ${{ steps.release.outputs.new_release_published }}
release-version: ${{ steps.release.outputs.new_release_version }}
steps:
- name: Determine app token for release
uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0
id: app-token
with:
app-id: ${{ secrets.WE_RELEASE_GITHUB_APP_ID }}
private-key: ${{ secrets.WE_RELEASE_GITHUB_PRIVATE_KEY }}
- name: Checkout
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
token: ${{ steps.app-token.outputs.token }}
# fetch-depth 0 is required to fetch all tags (and to determine the version based on tags)
fetch-depth: 0
- name: Create release configuration file
if: ${{ hashFiles('.releaserc.yml') == '' }}
shell: bash
# TODO rather use a template?
run: |
cat <<EOF > .releaserc.yml
---
branches: ${{ github.head_ref || github.ref_name }}
plugins:
- - "@semantic-release/commit-analyzer"
# see https://github.com/semantic-release/commit-analyzer?tab=readme-ov-file#options
- preset: conventionalcommits
- - "@semantic-release/release-notes-generator"
# see https://github.com/semantic-release/release-notes-generator?tab=readme-ov-file#options
- preset: conventionalcommits
presetConfig:
issuePrefixes: ['ING-', 'WGS-', 'SVC-']
issueUrlFormat: 'https://wetransform.atlassian.net/browse/{{prefix}}{{id}}'
parserOpts:
# https://github.com/conventional-changelog/conventional-changelog/tree/master/packages/conventional-commits-parser#referenceactions
# set to null to reference an issue without action (but will still show it "closes" the issue in the changelog)
# referenceActions: null
- "@semantic-release/changelog"
- - "@semantic-release/git"
- assets:
- CHANGELOG.md
- "@semantic-release/github"
EOF
- name: Install NodeJs
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0
with:
node-version: 20
- name: Release
id: release
uses: cycjimmy/semantic-release-action@b1b432f13acb7768e0c8efdec416d363a57546f2 # v4.1.1
env:
# Permissions needed
# contents: write
# issues: write
# pull-requests: write
GITHUB_TOKEN: ${{ steps.app-token.outputs.token }}
GIT_AUTHOR_NAME: wetransform Bot
GIT_AUTHOR_EMAIL: [email protected]
GIT_COMMITTER_NAME: wetransform Bot
GIT_COMMITTER_EMAIL: [email protected]
RUNNER_DEBUG: 1
with:
dry_run: ${{ inputs.dryRun }}
semantic_version: 24.2.0
extra_plugins:
"@semantic-release/changelog@\
${{ env.SEMANTIC_RELEASE_CHANGELOG_VERSION }} \
@semantic-release/git@\
${{ env.SEMANTIC_RELEASE_GIT_VERSION }} \
conventional-changelog-conventionalcommits@\
${{ env.CONVENTIONAL_CHANGELOG_CONVENTIONALCOMMITS_VERSION }} \
"
# Note: This does not push "latest" tag, only the version tag (it is assumed that latest is pushed before the release with the same content)
push:
name: Build and push released Docker image
needs: [release]
if: ${{ !inputs.dryRun && needs.release.outputs.release-published != 'false' }}
uses: wetransform/gha-workflows/.github/workflows/dockerfile-publish.yml@39472b0820006f75ebd19b348939b163d7bd8a6a # v3.3.2
with:
checkout-ref: refs/tags/v${{needs.release.outputs.release-version}} # check out release tag
tag: ${{needs.release.outputs.release-version}}
image: wetransform/zip
secrets:
DOCKER_HUB_USERNAME: ${{ secrets.DOCKER_HUB_USERNAME }}
DOCKER_HUB_PASSWORD: ${{ secrets.DOCKER_HUB_PASSWORD }}
SLACK_NOTIFICATIONS_BOT_TOKEN: ${{ secrets.SLACK_NOTIFICATIONS_BOT_TOKEN }}