Skip to content
Plugin-publish

Automatic workflows update from ASF-PluginTemplate #5

Sign in to view logs

Automatic workflows update from ASF-PluginTemplate

Automatic workflows update from ASF-PluginTemplate #5

Workflow file for this run

.github/workflows/publish.yml at 57cc1da
name: Plugin-publish
on: [push, pull_request]
env:
CONFIGURATION: Release
DOTNET_CLI_TELEMETRY_OPTOUT: true
DOTNET_NOLOGO: true
DOTNET_SDK_VERSION: 8.0
GPG_PRIVATE_KEY: ${{ secrets.ARCHIBOT_GPG_PRIVATE_KEY }} # Optional, if secret not provided, will skip signing SHA512SUMS with GPG key. You can specify your own credentials if you'd like to, simply change ARCHIBOT_GPG_PRIVATE_KEY here to the one you want to use
permissions:
contents: read
jobs:
publish:
strategy:
fail-fast: false
matrix:
os: [macos-latest, ubuntu-latest, windows-latest]
runs-on: ${{ matrix.os }}
outputs:
PLUGIN_NAME: ${{ steps.plugin-name.outputs.info }}
steps:
- name: Checkout code
uses: actions/checkout@v4.2.0
with:
show-progress: false
submodules: recursive
- name: Parse plugin name from Directory.Build.props
id: plugin-name
uses: mavrosxristoforos/get-xml-info@2.0
with:
xml-file: 'Directory.Build.props'
xpath: '//PluginName'
- name: Setup .NET Core
uses: actions/setup-dotnet@v4.0.1
with:
dotnet-version: ${{ env.DOTNET_SDK_VERSION }}
- name: Verify .NET Core
run: dotnet --info
- name: Publish plugin on Unix
if: startsWith(matrix.os, 'macos-') || startsWith(matrix.os, 'ubuntu-')
env:
PLUGIN_NAME: ${{ steps.plugin-name.outputs.info }}
shell: sh
run: |
set -eu
dotnet publish "$PLUGIN_NAME" -c "$CONFIGURATION" -o "out/plugin/${PLUGIN_NAME}" -p:ContinuousIntegrationBuild=true -p:TargetLatestRuntimePatch=false -p:UseAppHost=false --nologo
# By default use fastest compression
seven_zip_args="-mx=1"
zip_args="-1"
# Include extra logic for builds marked for release
case "$GITHUB_REF" in
"refs/tags/"*)
# Tweak compression args for release publishing
seven_zip_args="-mx=9 -mfb=258 -mpass=15"
zip_args="-9"
;;
esac
# Create the final zip file
case "$(uname -s)" in
"Darwin")
# We prefer to use zip on OS X as 7z implementation on that OS doesn't handle file permissions (chmod +x)
if command -v zip >/dev/null; then
(
cd "${GITHUB_WORKSPACE}/out/plugin/${PLUGIN_NAME}"
zip -q -r $zip_args "../../${PLUGIN_NAME}.zip" .
)
else
7z a -bd -slp -tzip -mm=Deflate $seven_zip_args "out/${PLUGIN_NAME}.zip" "${GITHUB_WORKSPACE}/out/plugin/${PLUGIN_NAME}/*"
fi
;;
*)
if command -v 7z >/dev/null; then
7z a -bd -slp -tzip -mm=Deflate $seven_zip_args "out/${PLUGIN_NAME}.zip" "${GITHUB_WORKSPACE}/out/plugin/${PLUGIN_NAME}/*"
else
(
cd "${GITHUB_WORKSPACE}/out/plugin/${PLUGIN_NAME}"
zip -q -r $zip_args "../../${PLUGIN_NAME}.zip" .
)
fi
;;
esac
- name: Publish plugin on Windows
if: startsWith(matrix.os, 'windows-')
env:
PLUGIN_NAME: ${{ steps.plugin-name.outputs.info }}
shell: pwsh
run: |
Set-StrictMode -Version Latest
$ErrorActionPreference = 'Stop'
$ProgressPreference = 'SilentlyContinue'
Set-Location "$env:GITHUB_WORKSPACE"
dotnet publish "$env:PLUGIN_NAME" -c "$env:CONFIGURATION" -o "out\plugin\$env:PLUGIN_NAME" -p:ContinuousIntegrationBuild=true -p:TargetLatestRuntimePatch=false -p:UseAppHost=false --nologo
if ($LastExitCode -ne 0) {
throw "Last command failed."
}
# By default use fastest compression
$compressionArgs = '-mx=1'
# Include extra logic for builds marked for release
if ($env:GITHUB_REF -like 'refs/tags/*') {
# Tweak compression args for release publishing
$compressionArgs = '-mx=9', '-mfb=258', '-mpass=15'
}
# Create the final zip file
7z a -bd -slp -tzip -mm=Deflate $compressionArgs "out\$env:PLUGIN_NAME.zip" "$env:GITHUB_WORKSPACE\out\plugin\$env:PLUGIN_NAME\*"
if ($LastExitCode -ne 0) {
throw "Last command failed."
}
- name: Upload plugin artifact
uses: actions/upload-artifact@v4.4.0
with:
if-no-files-found: error
name: ${{ matrix.os }}_${{ steps.plugin-name.outputs.info }}
path: out/${{ steps.plugin-name.outputs.info }}.zip
release:
if: ${{ github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') }}
needs: publish
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- name: Checkout code
uses: actions/checkout@v4.2.0
with:
show-progress: false
- name: Download plugin artifact from ubuntu-latest
uses: actions/download-artifact@v4.1.8
with:
name: ubuntu-latest_${{ needs.publish.outputs.PLUGIN_NAME }}
path: out
- name: Import GPG key for signing
uses: crazy-max/ghaction-import-gpg@v6.1.0
if: ${{ env.GPG_PRIVATE_KEY != null }}
with:
gpg_private_key: ${{ env.GPG_PRIVATE_KEY }}
- name: Generate SHA-512 checksums and signature
shell: sh
run: |
set -eu
(
cd "out"
sha512sum *.zip > SHA512SUMS
if [ -n "$GPG_PRIVATE_KEY" ]; then
gpg -a -b -o SHA512SUMS.sign SHA512SUMS
fi
)
- name: Upload SHA512SUMS
uses: actions/upload-artifact@v4.4.0
with:
if-no-files-found: error
name: SHA512SUMS
path: out/SHA512SUMS
- name: Upload SHA512SUMS.sign
uses: actions/upload-artifact@v4.4.0
if: ${{ env.GPG_PRIVATE_KEY != null }}
with:
if-no-files-found: error
name: SHA512SUMS.sign
path: out/SHA512SUMS.sign
- name: Create GitHub release
uses: ncipollo/release-action@v1.14.0
with:
allowUpdates: true
artifactErrorsFailBuild: true
artifacts: "out/*"
bodyFile: .github/RELEASE_TEMPLATE.md
makeLatest: false
name: ${{ needs.publish.outputs.PLUGIN_NAME }} V${{ github.ref_name }}
prerelease: true
token: ${{ secrets.GITHUB_TOKEN }}
updateOnlyUnreleased: true