Add codebuild integrations for our workflows #69
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release | |
| on: | |
| push: | |
| tags: | |
| - 'v[0-9]+.[0-9]+.[0-9]+' | |
| pull_request: | |
| branches: ['main', 'release/**'] | |
| paths: | |
| - '.github/workflows/releases.yml' | |
| - 'scripts/**' | |
| - 'Makefile' | |
| env: | |
| GO_VERSION: '1.21.10' | |
| permissions: | |
| contents: write | |
| deployments: write | |
| jobs: | |
| generate-artifacts: | |
| runs-on: codebuild-soci-release-workflow-${{ github.run_id }}-${{ github.run_attempt }}-ubuntu-7.0-xlarge | |
| env: | |
| # Set during setup. | |
| RELEASE_TAG: '' | |
| DYNAMIC_BINARY_NAME: '' | |
| STATIC_BINARY_NAME: '' | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-go@v5 | |
| with: | |
| go-version: ${{ env.GO_VERSION }} | |
| - name: Export cleaned release tag | |
| run: | | |
| export release_tag=${GITHUB_REF#refs/*/} # Strip down to raw tag name | |
| echo "RELEASE_TAG=${release_tag}" >> $GITHUB_ENV | |
| - name: Create dummy environment for release | |
| if: github.event_name == 'pull_request' | |
| run: | | |
| touch THIRD_PARTY_LICENSES | |
| echo "RELEASE_TAG=v0.0.0" >> $GITHUB_ENV | |
| - name: Setup variables and release directories | |
| run: | | |
| export release_tag=${{ env.RELEASE_TAG }} | |
| export release_version=${release_tag/v/} # Remove v from tag name | |
| echo "DYNAMIC_BINARY_NAME=soci-snapshotter-${release_version}-linux-amd64.tar.gz" >> $GITHUB_ENV | |
| echo "STATIC_BINARY_NAME=soci-snapshotter-${release_version}-linux-amd64-static.tar.gz" >> $GITHUB_ENV | |
| mkdir release | |
| - name: Create release binaries | |
| run: make RELEASE_TAG=${{ env.RELEASE_TAG }} release | |
| - uses: actions/upload-artifact@v4 | |
| with: | |
| name: artifacts | |
| path: release/ | |
| if-no-files-found: error | |
| outputs: | |
| release_tag: ${{ env.RELEASE_TAG }} | |
| dynamic_binary_name: ${{ env.DYNAMIC_BINARY_NAME }} | |
| static_binary_name: ${{ env.STATIC_BINARY_NAME }} | |
| validate-artifacts: | |
| needs: generate-artifacts | |
| runs-on: codebuild-soci-release-workflow-${{ github.run_id }}-${{ github.run_attempt }}-ubuntu-7.0-xlarge | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/download-artifact@v4 | |
| with: | |
| name: artifacts | |
| path: release/ | |
| - run: bash scripts/verify-release-artifacts.sh ${{ needs.generate-artifacts.outputs.release_tag }} | |
| create-release: | |
| if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/v') | |
| needs: [generate-artifacts, validate-artifacts] | |
| runs-on: codebuild-soci-release-workflow-${{ github.run_id }}-${{ github.run_attempt }}-ubuntu-7.0-xlarge | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/download-artifact@v4 | |
| with: | |
| name: artifacts | |
| - uses: softprops/action-gh-release@v2 | |
| with: | |
| draft: true | |
| prerelease: false | |
| generate_release_notes: false | |
| files: | | |
| ${{ needs.generate-artifacts.outputs.dynamic_binary_name }} | |
| ${{ needs.generate-artifacts.outputs.dynamic_binary_name }}.sha256sum | |
| ${{ needs.generate-artifacts.outputs.static_binary_name }} | |
| ${{ needs.generate-artifacts.outputs.static_binary_name }}.sha256sum |