-
-
Notifications
You must be signed in to change notification settings - Fork 229
66 lines (59 loc) · 1.62 KB
/
push_release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
name: Push & Release 🌍
concurrency:
group: ${{ github.workflow }}-${{ github.event_name == 'push' && github.ref }}
cancel-in-progress: true
on:
release:
types:
- released
- prereleased
push:
branches:
- master
paths-ignore:
- '**/*.md'
jobs:
label:
name: Label conflicted PRs 🏷️⛔
if: ${{ always() && !cancelled() }}
runs-on: ubuntu-latest
steps:
- name: Check all PRs for merge conflicts and label them ⛔
uses: eps1lon/[email protected]
with:
dirtyLabel: "merge conflict"
repoToken: ${{ secrets.JF_BOT_TOKEN }}
main:
name: ${{ github.event_name == 'push' && 'Unstable 🚀⚠️' || 'Stable 🏷️✅' }}
uses: ./.github/workflows/__package.yml
secrets: inherit
# Needed for attestation publication
permissions:
id-token: write
attestations: write
with:
commit: ${{ github.event_name == 'push' && github.sha }}
is_prerelease: ${{ github.event_name == 'release' && github.event.action == 'prereleased' }}
tag_name: ${{ github.event_name == 'release' && github.event.release.tag_name }}
push: true
codeql:
name: GitHub CodeQL 🔬
uses: ./.github/workflows/__codeql.yml
permissions:
actions: read
contents: read
security-events: write
with:
commit: ${{ github.sha }}
deploy:
name: Deploy 🚀
uses: ./.github/workflows/__deploy.yml
needs:
- main
permissions:
contents: read
deployments: write
secrets: inherit
with:
branch: ${{ github.ref_name }}
comment: false