Skip to content

test overriding version to exclude build for npm registry publish #23

test overriding version to exclude build for npm registry publish

test overriding version to exclude build for npm registry publish #23

Workflow file for this run

on:
push:
branches:
- feat/jd/BUILD-5492-test-release
jobs:
publish_existing_package:
permissions:
contents: read
id-token: write # required for SonarSource/vault-action-wrapper
runs-on: ubuntu-latest
env:
# RELEASE_TAG: ${{ github.event.release.tag_name }}
NPM_REPOSITORY: 'sonarsource-npm-public'
PACKAGE: 'sonarqube-scanner'
RELEASE_TAG: '4.2.0.2280'
steps:
- name: Vault
id: secrets
uses: SonarSource/vault-action-wrapper@v3
with:
secrets:
development/artifactory/token/SonarSource-sonar-scanner-npm-promoter access_token | promoter_access_token;
development/kv/data/npmjs sonartech_npm_token | npm_token;
development/kv/data/repox artifactory_url | repox_url;
- name: Setup JFrog for deploy
uses: SonarSource/jfrog-setup-wrapper@907e87c3d2081a98d2ab8cb03284ee6711f1ee83 # tag=3.2.3
with:
jfrogAccessToken: ${{ fromJSON(steps.secrets.outputs.vault).promoter_access_token }}
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: 18
- name: Create local repository directory
id: local_repo
run: echo "dir=$(mktemp -d repo.XXXXXXXX)" >> $GITHUB_OUTPUT
- name: Get the version
id: get_version
run: |
IFS=. read -r major minor patch build <<< "$RELEASE_TAG"
echo "build=${build}" >> $GITHUB_OUTPUT
echo "patch=${patch}" >> $GITHUB_OUTPUT
echo "minor=${minor}" >> $GITHUB_OUTPUT
echo "major=${major}" >> $GITHUB_OUTPUT
- name: Download Artifacts
uses: SonarSource/gh-action_release/download-build@master
with:
build-number: ${{ steps.get_version.outputs.build }}
local-repo-dir: ${{ steps.local_repo.outputs.dir }}
remote-repo: sonarsource-npm-public-builds
flat-download: true
download-checksums: false
- name: Publish npm package to npmjs
working-directory: ${{ steps.local_repo.outputs.dir }}
env:
NPM_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).npm_token }}
run: |
file=$(find -name "*.tgz" -printf "%f")
npm version --no-git-tag-version ${{ steps.get_version.outputs.major }}.${{ steps.get_version.outputs.minor }}.${{ steps.get_version.outputs.patch }}
npm publish --dry-run "$file"
- name: Promote npm package
env:
REPOX_URL: ${{ fromJSON(steps.secrets.outputs.vault).repox_url }}
PROMOTE_ACCESS_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).promoter_access_token }}
CI: true
run: |
jfrog config add repox --artifactory-url $REPOX_URL --access-token $PROMOTE_ACCESS_TOKEN
jfrog config use repox
jfrog rt bpr --status released ${{ github.event.repository.name }} ${{ steps.get_version.outputs.build }} sonarsource-npm-public-releases