Merge pull request #133 from pulumiverse/renovate/github.com-pulumi-p… #53
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
name: Release | |
on: | |
push: | |
branches: | |
- main | |
workflow_dispatch: | |
permissions: | |
contents: read | |
pull-requests: read | |
env: | |
PROVIDER: buildkite | |
GO111MODULE: "on" | |
NUGET_FEED_URL: https://api.nuget.org/v3/index.json | |
jobs: | |
release: | |
runs-on: ubuntu-latest | |
name: Release | |
outputs: | |
release_created: ${{ steps.release.outputs.release_created }} | |
permissions: | |
contents: write | |
pull-requests: write | |
steps: | |
- uses: google-github-actions/release-please-action@v4 | |
id: release | |
publish_provider: | |
if: needs.release.outputs.release_created | |
runs-on: ubuntu-latest | |
name: Publish Provider | |
permissions: | |
id-token: write | |
contents: write | |
needs: | |
- release | |
strategy: | |
max-parallel: 4 | |
matrix: | |
go-version: [1.21.x] | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Install Go | |
uses: actions/setup-go@v5 | |
with: | |
go-version: "${{ matrix.go-version }}" | |
- name: Install pulumictl | |
uses: jaxxstorm/[email protected] | |
with: | |
repo: pulumi/pulumictl | |
- name: Install Pulumi CLI | |
uses: pulumi/actions@v5 | |
- name: Install cosign | |
uses: sigstore/[email protected] | |
- name: Download Syft | |
uses: anchore/sbom-action/[email protected] | |
- name: Release via GoReleaser | |
uses: goreleaser/goreleaser-action@v5 | |
with: | |
args: -p 3 release --clean --timeout 60m0s | |
version: latest | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
publish_sdk: | |
if: needs.release.outputs.release_created | |
runs-on: ubuntu-latest | |
name: Publish SDK | |
permissions: | |
id-token: write | |
contents: read | |
needs: | |
- release | |
- publish_provider | |
strategy: | |
max-parallel: 10 | |
fail-fast: true | |
matrix: | |
go-version: [1.21.x] | |
node-version: [18.x] | |
dotnet-version: [3.1.301] | |
python-version: [3.9] | |
language: | |
- go | |
- nodejs | |
- python | |
- dotnet | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Install Go | |
uses: actions/setup-go@v5 | |
with: | |
go-version: "${{ matrix.go-version }}" | |
- name: Install pulumictl | |
uses: jaxxstorm/[email protected] | |
with: | |
repo: pulumi/pulumictl | |
- name: Install Pulumi CLI | |
uses: pulumi/actions@v5 | |
- name: Setup DotNet | |
uses: actions/setup-dotnet@v4 | |
with: | |
dotnet-version: "${{ matrix.dotnet-version }}" | |
if: matrix.language == 'dotnet' | |
- name: Setup Python | |
uses: actions/setup-python@v5 | |
with: | |
python-version: "${{ matrix.python-version }}" | |
if: matrix.language == 'python' | |
- name: Use Node.js | |
uses: actions/setup-node@v4 | |
with: | |
node-version: "${{ matrix.node-version }}" | |
if: matrix.language == 'nodejs' | |
- name: Install Plugins | |
run: make install_plugins | |
- name: Update Path | |
run: echo "${{ github.workspace }}/bin" >> $GITHUB_PATH | |
- name: Build SDK | |
run: make build_${{ matrix.language }} | |
- name: Publish .NET SDK | |
run: | | |
dotnet nuget push -s "${{ env.NUGET_FEED_URL }}" -k "${{ secrets.NUGET_PUBLISH_KEY }}" ${{github.workspace}}/sdk/dotnet/bin/Debug/*.nupkg | |
if: matrix.language == 'dotnet' | |
- name: Publish Python SDK | |
uses: pypa/gh-action-pypi-publish@release/v1 | |
with: | |
password: "${{ secrets.PYPI_PASSWORD }}" | |
skip-existing: true | |
packages-dir: "${{ github.workspace }}/sdk/python/bin/dist/" | |
if: matrix.language == 'python' | |
- name: Publish NodeJS SDK | |
uses: JS-DevTools/npm-publish@v3 | |
with: | |
package: ./sdk/nodejs/bin/package.json | |
access: public | |
token: ${{ secrets.NPM_TOKEN }} | |
provenance: true | |
if: matrix.language == 'nodejs' | |
tag_sdk: | |
if: needs.release.outputs.release_created | |
runs-on: ubuntu-latest | |
name: Tag SDK Release | |
permissions: | |
id-token: write | |
contents: write | |
needs: | |
- release | |
- publish_sdk | |
steps: | |
- name: Checkout repository | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Setup Git | |
run: | | |
git config --local user.email "${{ env.GITHUB_ACTION }}+github-actions[bot]@users.noreply.github.com" | |
git config --local user.name "github-actions[bot]" | |
- name: Get Tag Name | |
run: | | |
REF_NAME=`git describe --abbrev=0 --tags` | |
echo "REF_NAME=${REF_NAME}" >> $GITHUB_ENV | |
- name: Tag SDK Version | |
run: | | |
git tag -a sdk/${{ env.REF_NAME }} -m sdk/${{ env.REF_NAME }} | |
- name: Push to Repository | |
run: | | |
git push origin sdk/${{ env.REF_NAME }} |