joachim/FileRise
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ci(release): fix lint + harden release workflow

Browse Source
This commit is contained in:
Ryan
2025-10-28 02:44:13 -04:00
committed by GitHub
parent ab75381acb
commit 06c732971f
1 changed files with 156 additions and 150 deletions
Download Patch File Download Diff File Expand all files Collapse all files

306
.github/workflows/release-on-version.yml vendored
View File

@@ -1,153 +1,159 @@
--- ---
name: Release on version.js update name: Release on version.js update
on: on:
push: push:
branches: branches: ["master"]
- master paths:
paths: - public/js/version.js
- public/js/version.js workflow_run:
workflow_run: workflows: ["Bump version and sync Changelog to Docker Repo"]
workflows: "Bump version and sync Changelog to Docker Repo" types: [completed]
types: completed
permissions:
permissions: contents: write
contents: write
jobs:
jobs: release:
release: runs-on: ubuntu-latest
runs-on: ubuntu-latest concurrency:
concurrency: group: release-${{ github.ref }}-${{ github.sha }}
group: release-${{ github.ref }}-${{ github.sha }} cancel-in-progress: false
cancel-in-progress: false
steps:
steps: - name: Checkout
- name: Checkout uses: actions/checkout@v4
uses: actions/checkout@v4 with:
with: fetch-depth: 0
fetch-depth: 0
- name: Ensure tags available
- name: Read version from version.js run: |
id: ver git fetch --tags --force --prune --quiet
shell: bash
run: | - name: Read version from version.js
set -euo pipefail id: ver
VER=$(grep -Eo "APP_VERSION\s*=\s*['\"]v[^'\"]+['\"]" public/js/version.js | sed -E "s/.*['\"](v[^'\"]+)['\"].*/\1/") shell: bash
if [[ -z "$VER" ]]; then run: |
echo "Could not parse APP_VERSION from version.js" >&2 set -euo pipefail
exit 1 VER=$(grep -Eo "APP_VERSION\s*=\s*['\"]v[^'\"]+['\"]" public/js/version.js | sed -E "s/.*['\"](v[^'\"]+)['\"].*/\1/")
if [[ -z "$VER" ]]; then
echo "Could not parse APP_VERSION from version.js" >&2
exit 1
fi
echo "version=$VER" >> "$GITHUB_OUTPUT"
echo "Parsed version: $VER"
- name: Skip if tag already exists
id: tagcheck
shell: bash
run: |
set -euo pipefail
if git rev-parse -q --verify "refs/tags/${{ steps.ver.outputs.version }}" >/dev/null; then
echo "exists=true" >> "$GITHUB_OUTPUT"
echo "Tag ${{ steps.ver.outputs.version }} already exists. Skipping release."
else
echo "exists=false" >> "$GITHUB_OUTPUT"
fi
- name: Build zip artifact
if: steps.tagcheck.outputs.exists == 'false'
shell: bash
run: |
set -euo pipefail
ZIP="FileRise-${{ steps.ver.outputs.version }}.zip"
zip -r "$ZIP" . \
-x "./.git/*" "./.github/*" \
"./resources/*" "./resources/**" \
"./.dockerignore" "./.gitattributes" "./.gitignore" \
"$ZIP" "${ZIP}.sha256" >/dev/null
- name: Compute SHA-256 checksum
if: steps.tagcheck.outputs.exists == 'false'
id: sum
shell: bash
run: |
set -euo pipefail
ZIP="FileRise-${{ steps.ver.outputs.version }}.zip"
SHA=$(shasum -a 256 "$ZIP" | awk '{print $1}')
echo "$SHA $ZIP" > "${ZIP}.sha256"
echo "sha=$SHA" >> "$GITHUB_OUTPUT"
echo "Computed SHA-256: $SHA"
- name: Extract notes from CHANGELOG (optional)
if: steps.tagcheck.outputs.exists == 'false'
id: notes
shell: bash
run: |
set -euo pipefail
NOTES_PATH=""
if [[ -f CHANGELOG.md ]]; then
awk '
BEGIN{found=0}
/^## / && !found {found=1}
found && /^---$/ {exit}
found {print}
' CHANGELOG.md > CHANGELOG_SNIPPET.md || true
sed -i -e :a -e '/^\n*$/{$d;N;ba' -e '}' CHANGELOG_SNIPPET.md || true
if [[ -s CHANGELOG_SNIPPET.md ]]; then
NOTES_PATH="CHANGELOG_SNIPPET.md"
fi fi
echo "version=$VER" >> "$GITHUB_OUTPUT" fi
echo "Parsed version: $VER" echo "path=$NOTES_PATH" >> "$GITHUB_OUTPUT"
- name: Skip if tag already exists - name: Compute previous tag (for Full Changelog link)
id: tagcheck if: steps.tagcheck.outputs.exists == 'false'
shell: bash id: prev
run: | shell: bash
set -euo pipefail run: |
git fetch --tags --quiet set -euo pipefail
if git rev-parse -q --verify "refs/tags/${{ steps.ver.outputs.version }}" >/dev/null; then VER="${{ steps.ver.outputs.version }}"
echo "exists=true" >> "$GITHUB_OUTPUT" PREV=$(git tag --list "v*" --sort=-v:refname | grep -v -F "$VER" | head -n1 || true)
echo "Tag ${{ steps.ver.outputs.version }} already exists. Skipping release." if [[ -z "$PREV" ]]; then
else PREV=$(git rev-list --max-parents=0 HEAD | tail -n1)
echo "exists=false" >> "$GITHUB_OUTPUT" fi
fi echo "prev=$PREV" >> "$GITHUB_OUTPUT"
echo "Previous tag or baseline: $PREV"
# Build the artifact first so we can checksum it
- name: Build zip artifact - name: Build release body (snippet + full changelog + checksum)
if: steps.tagcheck.outputs.exists == 'false' if: steps.tagcheck.outputs.exists == 'false'
shell: bash shell: bash
run: | run: |
set -euo pipefail set -euo pipefail
zip -r "FileRise-${{ steps.ver.outputs.version }}.zip" public/ README.md LICENSE >/dev/null || true VER="${{ steps.ver.outputs.version }}"
PREV="${{ steps.prev.outputs.prev }}"
- name: Compute SHA-256 checksum REPO="${GITHUB_REPOSITORY}"
if: steps.tagcheck.outputs.exists == 'false' COMPARE_URL="https://github.com/${REPO}/compare/${PREV}...${VER}"
id: sum ZIP="FileRise-${VER}.zip"
shell: bash SHA="${{ steps.sum.outputs.sha }}"
run: |
set -euo pipefail {
ZIP="FileRise-${{ steps.ver.outputs.version }}.zip" echo "## ${VER}"
SHA=$(shasum -a 256 "$ZIP" | awk '{print $1}') echo
echo "$SHA $ZIP" > "${ZIP}.sha256" if [[ -s CHANGELOG_SNIPPET.md ]]; then
echo "sha=$SHA" >> "$GITHUB_OUTPUT" cat CHANGELOG_SNIPPET.md
echo "Computed SHA-256: $SHA"
- name: Extract notes from CHANGELOG (optional)
if: steps.tagcheck.outputs.exists == 'false'
id: notes
shell: bash
run: |
set -euo pipefail
NOTES_PATH=""
if [[ -f CHANGELOG.md ]]; then
awk '
BEGIN{found=0}
/^## / && !found {found=1}
found && /^---$/ {exit}
found {print}
' CHANGELOG.md > CHANGELOG_SNIPPET.md || true
sed -i -e :a -e '/^\n*$/{$d;N;ba' -e '}' CHANGELOG_SNIPPET.md || true
if [[ -s CHANGELOG_SNIPPET.md ]]; then
NOTES_PATH="CHANGELOG_SNIPPET.md"
fi
fi
echo "path=$NOTES_PATH" >> "$GITHUB_OUTPUT"
- name: Compute previous tag (for Full Changelog link)
if: steps.tagcheck.outputs.exists == 'false'
id: prev
shell: bash
run: |
set -euo pipefail
git fetch --tags --quiet
PREV=$(git tag --list "v*" --sort=-v:refname | sed -n '2p' || true)
if [[ -z "$PREV" ]]; then
PREV=$(git rev-list --max-parents=0 HEAD | tail -n1)
fi
echo "prev=$PREV" >> "$GITHUB_OUTPUT"
echo "Previous tag or baseline: $PREV"
- name: Build release body (snippet + full changelog + checksum)
if: steps.tagcheck.outputs.exists == 'false'
shell: bash
run: |
set -euo pipefail
VER="${{ steps.ver.outputs.version }}"
PREV="${{ steps.prev.outputs.prev }}"
REPO="${GITHUB_REPOSITORY}"
COMPARE_URL="https://github.com/${REPO}/compare/${PREV}...${VER}"
ZIP="FileRise-${VER}.zip"
SHA="${{ steps.sum.outputs.sha }}"
{
echo "## ${VER}"
echo echo
if [[ -s CHANGELOG_SNIPPET.md ]]; then fi
cat CHANGELOG_SNIPPET.md echo "### Full Changelog"
echo echo "[${PREV} → ${VER}](${COMPARE_URL})"
fi echo
echo "### Full Changelog" echo "### SHA-256 (zip)"
echo "[${PREV} → ${VER}](${COMPARE_URL})" echo '```'
echo echo "${SHA} ${ZIP}"
echo "### SHA-256 (zip)" echo '```'
echo '```' } > RELEASE_BODY.md
echo "${SHA} ${ZIP}"
echo '```' echo "Release body:"
} > RELEASE_BODY.md sed -n '1,200p' RELEASE_BODY.md
echo "Release body:" - name: Create GitHub Release
sed -n '1,200p' RELEASE_BODY.md if: steps.tagcheck.outputs.exists == 'false'
uses: softprops/action-gh-release@v2
- name: Create GitHub Release with:
if: steps.tagcheck.outputs.exists == 'false' tag_name: ${{ steps.ver.outputs.version }}
uses: softprops/action-gh-release@v2 target_commitish: ${{ github.sha }}
with: name: ${{ steps.ver.outputs.version }}
tag_name: ${{ steps.ver.outputs.version }} body_path: RELEASE_BODY.md
target_commitish: ${{ github.sha }} generate_release_notes: false
name: ${{ steps.ver.outputs.version }} files: |
body_path: RELEASE_BODY.md FileRise-${{ steps.ver.outputs.version }}.zip
generate_release_notes: false FileRise-${{ steps.ver.outputs.version }}.zip.sha256
files: |
FileRise-${{ steps.ver.outputs.version }}.zip
FileRise-${{ steps.ver.outputs.version }}.zip.sha256