Automatic release #12
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Automatic release | |
| on: | |
| pull_request: | |
| branches: | |
| - master | |
| - main | |
| types: | |
| - closed | |
| workflow_dispatch: | |
| jobs: | |
| release: | |
| if: | | |
| github.event.pull_request.merged == true && contains(github.event.pull_request.labels.*.name, 'Type: Release') | |
| permissions: | |
| contents: write | |
| id-token: write # OIDC | |
| pull-requests: write # PR comment | |
| name: check version, add tag and release | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| with: | |
| persist-credentials: false | |
| - name: Setup Node | |
| uses: actions/setup-node@v5 | |
| with: | |
| node-version: 'lts/*' | |
| registry-url: 'https://registry.npmjs.org' | |
| scope : 'aappstore-connect-jwt-generator-cli' | |
| package-manager-cache: false | |
| - name: Can Publish | |
| run : npx can-npm-publish --verbose | |
| - name: Get package info | |
| id: package | |
| run: | | |
| VERSION=$(jq -r '.version' package.json) | |
| PACKAGE_NAME=$(jq -r '.name' package.json) | |
| echo "version=$VERSION" >> $GITHUB_OUTPUT | |
| echo "name=$PACKAGE_NAME" >> $GITHUB_OUTPUT | |
| - name: Install latest npm | |
| run: | | |
| echo "Current npm version: $(npm -v)" | |
| npm install -g npm@latest | |
| echo "Updated npm version: $(npm -v)" | |
| - name: Install pnpm | |
| uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda # v4.1.0 | |
| with: | |
| run_install: | | |
| - recursive: true | |
| args: [--no-frozen-lockfile] | |
| - name: Build | |
| run : pnpm build | |
| - name: Publish | |
| run : pnpm -r publish --no-git-checks --access public --provenance | |
| - name: Create GitHub Release with tag | |
| id: create-release | |
| run: | | |
| RELEASE_URL=$(gh release create "v$VERSION" \ | |
| --title "v$VERSION" \ | |
| --target "$SHA" \ | |
| --notes "$PR_BODY") | |
| echo "url=$RELEASE_URL" >> $GITHUB_OUTPUT | |
| env: | |
| GH_TOKEN: ${{ github.token }} | |
| VERSION: ${{ steps.package.outputs.version }} | |
| SHA: ${{ github.sha }} | |
| PR_BODY: ${{ github.event.pull_request.body }} | |
| - name: Comment on PR - Success | |
| if: | | |
| always() && | |
| github.event_name == 'pull_request' && | |
| success() | |
| run: | | |
| gh pr comment "$PR_NUMBER" \ | |
| --body "✅ **Release v$VERSION completed successfully!** | |
| - 📦 npm package: https://www.npmjs.com/package/$PACKAGE_NAME/v/$VERSION | |
| - 🏷️ GitHub Release: $RELEASE_URL | |
| - 🔗 Workflow run: $SERVER_URL/$REPOSITORY/actions/runs/$RUN_ID" | |
| env: | |
| GH_TOKEN: ${{ github.token }} | |
| PR_NUMBER: ${{ github.event.pull_request.number }} | |
| VERSION: ${{ steps.package.outputs.version }} | |
| PACKAGE_NAME: ${{ steps.package.outputs.name }} | |
| RELEASE_URL: ${{ steps.create-release.outputs.url }} | |
| SERVER_URL: ${{ github.server_url }} | |
| REPOSITORY: ${{ github.repository }} | |
| RUN_ID: ${{ github.run_id }} | |
| - name: Comment on PR - Failure | |
| if: | | |
| always() && | |
| github.event_name == 'pull_request' && | |
| failure() | |
| run: | | |
| gh pr comment "$PR_NUMBER" \ | |
| --body "❌ **Release v$VERSION failed** | |
| Please check the workflow logs for details. | |
| 🔗 Workflow run: $SERVER_URL/$REPOSITORY/actions/runs/$RUN_ID" | |
| env: | |
| GH_TOKEN: ${{ github.token }} | |
| PR_NUMBER: ${{ github.event.pull_request.number }} | |
| VERSION: ${{ steps.package.outputs.version }} | |
| SERVER_URL: ${{ github.server_url }} | |
| REPOSITORY: ${{ github.repository }} | |
| RUN_ID: ${{ github.run_id }} |