Feature/drift monitor (#1) #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release | |
| on: | |
| push: | |
| branches: ["main"] | |
| jobs: | |
| preconditions: | |
| runs-on: ubuntu-latest | |
| outputs: | |
| repo_name: ${{ steps.repo_ids.outputs.REPO_NAME }} | |
| org_name: ${{ steps.repo_ids.outputs.ORG_NAME }} | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Check token | |
| run: | | |
| if [ -z "${{ secrets.GITHUB_TOKEN }}"]; then | |
| echo "Must provide a GITHUB_TOKEN secret in order to run release workflow" | |
| exit 1 | |
| fi | |
| - name: Get repository identifiers | |
| id: repo_ids | |
| run: | | |
| REPO_NAME=$(echo "${{ github.event.repository.name }}" | tr '[:upper:]' '[:lower:]') | |
| ORG_NAME=$(echo "${{ github.event.repository.owner.name }}" | tr '[:upper:]' '[:lower:]') | |
| echo "REPO_NAME=$REPO_NAME" >> $GITHUB_OUTPUT | |
| echo "ORG_NAME=$ORG_NAME" >> $GITHUB_OUTPUT | |
| lint: | |
| name: Run lint | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install poetry | |
| run: pipx install poetry | |
| - uses: actions/setup-python@v4 | |
| with: | |
| python-version: "3.12" | |
| cache: poetry | |
| - name: Install Packages | |
| run: poetry install --no-interaction --no-ansi | |
| - name: Lint | |
| run: poetry run flake8 | |
| tests: | |
| name: Run tests | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Install poetry | |
| run: pipx install poetry | |
| - uses: actions/setup-python@v4 | |
| with: | |
| python-version: "3.12" | |
| cache: poetry | |
| - name: Install Packages | |
| run: poetry install --no-interaction --no-ansi | |
| - name: Run unit and integration tests | |
| run: poetry run pytest -v -s -W ignore::DeprecationWarning | |
| check-version: | |
| name: "Check version" | |
| runs-on: ubuntu-latest | |
| outputs: | |
| is_new_version: ${{ steps.get_version.outputs.IS_NEW_VERSION }} | |
| version: ${{ steps.get_version.outputs.VERSION }} | |
| build_date: ${{ steps.get_version.outputs.BUILD_DATE }} | |
| is_prerelease: ${{ steps.get_version.outputs.IS_PRERELEASE }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Check version | |
| id: get_version | |
| uses: digicatapult/check-version@v1 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| package_manager: "poetry" | |
| tag_regex: "^v?\\d+\\.\\d+\\.\\d+$" | |
| publish: | |
| name: "Publish package" | |
| needs: [preconditions, lint, tests, check-version] | |
| runs-on: ubuntu-latest-m | |
| permissions: write-all | |
| if: ${{ needs.check-version.outputs.is_new_version == 'true' }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Setup QEMU | |
| uses: docker/setup-qemu-action@v3 | |
| with: | |
| platforms: all | |
| - name: Setup Docker Buildx | |
| id: buildx | |
| uses: docker/setup-buildx-action@v3 | |
| with: | |
| buildkitd-flags: "--debug" | |
| - name: Generate tags | |
| id: generate-tags | |
| env: | |
| VERSION: ${{ needs.check-version.outputs.version }} | |
| IS_NEW_VERSION: ${{ needs.check-version.outputs.is_new_version }} | |
| IS_PRERELEASE: ${{ needs.check-version.outputs.is_prerelease }} | |
| # if it's a new non prerelease version tag with hash, version latest-dev and latest | |
| # if it's a new prerelease version tag with hash, version and latest-dev | |
| # if it's a non new version tag with hash and latest-dev | |
| run: | | |
| if [ "$IS_NEW_VERSION" == "true" ]; then | |
| echo "GHCR_VERSION_TAG=ghcr.io/${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:$VERSION" >> $GITHUB_OUTPUT | |
| if [ "$IS_PRERELEASE" == "false" ]; then | |
| echo "GHCR_LATEST_TAG=ghcr.io/${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:latest" >> $GITHUB_OUTPUT | |
| else | |
| echo "GHCR_LATEST_TAG=" >> $GITHUB_OUTPUT | |
| fi; | |
| else | |
| echo "GHCR_VERSION_TAG=" >> $GITHUB_OUTPUT | |
| echo "GHCR_LATEST_TAG=" >> $GITHUB_OUTPUT | |
| fi; | |
| - name: Login to GitHub Container Registry | |
| uses: docker/login-action@v3 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.repository_owner }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Build image | |
| uses: docker/build-push-action@v5 | |
| with: | |
| builder: ${{ steps.buildx.outputs.name }} | |
| context: . | |
| file: ./Dockerfile | |
| platforms: linux/amd64, linux/arm64 | |
| push: true | |
| tags: | | |
| ghcr.io/${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:${{ github.sha }} | |
| ${{ steps.generate-tags.outputs.GHCR_VERSION_TAG }} | |
| ${{ steps.generate-tags.outputs.GHCR_LATEST_TAG }} | |
| labels: | | |
| org.opencontainers.image.title=${{ needs.preconditions.outputs.repo_name }} | |
| org.opencontainers.image.description=${{ github.event.repository.description }} | |
| org.opencontainers.image.source=${{ github.event.repository.html_url }} | |
| org.opencontainers.image.url=${{ github.event.repository.html_url }} | |
| org.opencontainers.image.revision=${{ github.sha }} | |
| org.opencontainers.image.version=${{ needs.check-version.outputs.version }} | |
| org.opencontainers.image.created=${{ needs.check-version.outputs.build_date }} | |
| # Build github release | |
| - name: Build release version | |
| uses: "marvinpinto/action-automatic-releases@latest" | |
| with: | |
| repo_token: "${{ secrets.GITHUB_TOKEN }}" | |
| automatic_release_tag: ${{ needs.check-version.outputs.version }} | |
| prerelease: false | |
| title: Release ${{ needs.check-version.outputs.version }} | |
| - name: Build release latest | |
| uses: "marvinpinto/action-automatic-releases@latest" | |
| with: | |
| repo_token: "${{ secrets.GITHUB_TOKEN }}" | |
| automatic_release_tag: latest | |
| prerelease: false | |
| title: Latest Release ${{ needs.check-version.outputs.version }} |