Skip to content
Release

Install zstd to restore cache on Fedora #30

Sign in to view logs

Install zstd to restore cache on Fedora

Install zstd to restore cache on Fedora #30

Workflow file for this run

.github/workflows/release.yml at c9b7a53
name: Release
on:
push:
branches: [main]
tags: v*
env:
ADD_DETERMINISM_VERSION: 0.5.0
jobs:
install-add-determinism:
runs-on: ubuntu-latest
steps:
- uses: actions/cache/restore@v4
id: cache-add-determinism
with:
path: ${{ runner.tool_cache }}/add-determinism
key: add-determinism-bin-${{ env.ADD_DETERMINISM_VERSION }}
lookup-only: true
- uses: dtolnay/rust-toolchain@stable
if: steps.cache-add-determinism.outputs.cache-hit != 'true'
- run: cargo install --root ${{ runner.tool_cache }}/add-determinism --version '${{ env.ADD_DETERMINISM_VERSION }}' add-determinism
if: steps.cache-add-determinism.outputs.cache-hit != 'true'
- uses: actions/cache/save@v4
if: steps.cache-add-determinism.outputs.cache-hit != 'true'
with:
path: ${{ runner.tool_cache }}/add-determinism
key: ${{ steps.cache-add-determinism.outputs.cache-primary-key }}
build:
# Run build on main as well to make sure it's working before we make a release
runs-on: ubuntu-latest
needs: install-add-determinism
container:
# Fedora 41 ships GNOME 47, i.e. the version we currently support
image: docker.io/fedora:41
steps:
# Install zstd to restore cache
- run: dnf install -y --setopt=install_weak_deps=False git gettext gnome-shell zstd
- uses: actions/cache/restore@v4
with:
path: ${{ runner.tool_cache }}/add-determinism
key: add-determinism-bin-${{ env.ADD_DETERMINISM_VERSION }}
fail-on-cache-miss: true
- run: echo "${{ runner.tool_cache }}/add-determinism/bin" >> $GITHUB_PATH
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: latest
cache: "npm"
- run: npm ci
- run: npm run pack
- run: env OURCE_DATE_EPOCH="$(git show --no-patch --format=%ct HEAD)" add-determinism dist/[email protected]
- run: b2sum *.zip > B2SUMS.txt
working-directory: dist
- uses: actions/upload-artifact@v4
with:
name: dist
path: "dist/*"
attest:
runs-on: ubuntu-latest
needs: build
permissions:
id-token: write
contents: read
attestations: write
# Only attest artifacts created for actual releases
if: ${{ startsWith(github.ref, 'refs/tags/') }}
steps:
- uses: actions/download-artifact@v4
with:
path: dist
name: dist
- uses: actions/attest-build-provenance@v1
with:
subject-path: dist/*
create-release:
runs-on: ubuntu-latest
needs: build
permissions:
contents: write
# Only create a release on a tag
if: ${{ startsWith(github.ref, 'refs/tags/') }}
steps:
- uses: actions/checkout@v4
with:
# This makes sure we actually get the tag message body down below,
# see https://github.com/actions/runner/issues/712
ref: "${{ github.ref }}"
- uses: actions/download-artifact@v4
with:
path: dist
name: dist
- run: echo "RELEASE_SUBJECT=$(git tag -ln1 --format='%(contents:subject)' "${GITHUB_REF_NAME}")" >> "$GITHUB_ENV"
- run: git tag -ln1 --format='%(contents:body)' "${GITHUB_REF_NAME}" > ${{ github.workspace }}-body.txt
- uses: softprops/action-gh-release@v2
with:
name: "${{ env.RELEASE_SUBJECT }}"
body_path: "${{ github.workspace }}-body.txt"
files: "dist/*"
fail_on_unmatched_files: true
upload-ego:
runs-on: ubuntu-latest
needs: build
# Only upload releases from tags which denote a version, i.e. start with v
if: ${{ startsWith(github.ref, 'refs/tags/v') }}
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: latest
cache: "npm"
- run: npm ci
- uses: actions/download-artifact@v4
with:
path: dist
name: dist
- run: "npx gsebuild upload --no-interaction -c ./.ego-confirmation.json ./dist/[email protected]"
env:
EGO_USERNAME: ${{ secrets.EGO_USERNAME }}
EGO_PASSWORD: ${{ secrets.EGO_PASSWORD }}