Continuous Deployment #543
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Continuous Deployment | |
| on: | |
| workflow_run: | |
| workflows: ["Continuous Integration"] | |
| types: [completed] | |
| env: | |
| UV_CACHE_DIR: /tmp/.uv-cache | |
| jobs: | |
| cd: | |
| name: CD - Release Deployment | |
| runs-on: ubuntu-24.04 | |
| concurrency: cd-${{ github.ref }} | |
| if: ${{ github.event.workflow_run.conclusion == 'success' }} | |
| permissions: | |
| id-token: write | |
| contents: write | |
| packages: write | |
| attestations: write | |
| steps: | |
| - name: Checkout Repository | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| ref: ${{ github.sha }} | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| persist-credentials: false | |
| - name: Ensure Correct Release Branch | |
| run: | | |
| git checkout -B ${{ github.ref_name }} ${{ github.sha }} | |
| - name: Set Up UV Environment | |
| uses: astral-sh/setup-uv@v5 | |
| with: | |
| enable-cache: true | |
| cache-dependency-glob: uv.lock | |
| - name: Install Dependencies | |
| run: uv sync | |
| - name: Run Python Semantic Release | |
| id: release | |
| uses: python-semantic-release/python-semantic-release@v9 | |
| with: | |
| github_token: '${{ secrets.GH_PAT }}' | |
| - name: Publish to TestPyPI | |
| if: steps.release.outputs.released == 'true' | |
| uses: pypa/[email protected] | |
| with: | |
| repository-url: 'https://test.pypi.org/legacy/' | |
| attestations: false | |
| - name: Test Install from TestPyPI | |
| if: steps.release.outputs.released == 'true' | |
| run: uv pip install --index-url https://test.pypi.org/simple/ --extra-index-url https://pypi.org/simple chaturbate-poller | |
| - name: Publish to PyPI | |
| if: steps.release.outputs.released == 'true' | |
| uses: pypa/[email protected] | |
| - name: Publish Release to GitHub | |
| if: steps.release.outputs.released == 'true' | |
| uses: python-semantic-release/publish-action@v9 | |
| with: | |
| github_token: '${{ secrets.GH_PAT }}' | |
| - name: Attest Build Provenance | |
| if: steps.release.outputs.released == 'true' | |
| uses: actions/attest-build-provenance@v2 | |
| with: | |
| subject-path: | | |
| ${{ github.workspace }}/dist/chaturbate_poller-*.*.*.tar.gz, | |
| ${{ github.workspace }}/dist/chaturbate_poller-*.*.*-py3-none-any.whl | |
| github-token: ${{ secrets.GITHUB_TOKEN }} |