Feat: Initial implementation of chart with argo workflows init hook (#1) #1
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ## Reference: https://github.com/helm/chart-releaser-action | |
| name: Chart Publish | |
| on: | |
| push: | |
| branches: | |
| - codefresh-main | |
| paths: | |
| - "script/helm/garage/**" | |
| permissions: | |
| contents: read | |
| jobs: | |
| publish: | |
| permissions: | |
| contents: write # for helm/chart-releaser-action to push chart release and create a release | |
| packages: write # to push OCI chart package to GitHub Registry | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4 | |
| with: | |
| fetch-depth: 0 | |
| - name: Install Helm | |
| uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0 | |
| with: | |
| version: v3.10.1 # Also update in lint-and-test.yaml | |
| - name: Configure Git | |
| run: | | |
| git config user.name "$GITHUB_ACTOR" | |
| git config user.email "$GITHUB_ACTOR@users.noreply.github.com" | |
| - name: Package chart | |
| run: | | |
| rm -rf .cr-release-packages | |
| mkdir .cr-release-packages | |
| helm package script/helm/garage -u -d .cr-release-packages/ | |
| # The GitHub repository secret `PGP_PRIVATE_KEY` contains the private key | |
| # in ASCII-armored format. To export a (new) key, run this command: | |
| # `gpg --armor --export-secret-key <my key>` | |
| - name: Prepare PGP key | |
| run: | | |
| IFS="" | |
| echo "$PGP_PRIVATE_KEY" | gpg --dearmor > $HOME/secring.gpg | |
| echo "$PGP_PASSPHRASE" > $HOME/passphrase.txt | |
| # Tell chart-releaser-action where to find the key and its passphrase | |
| echo "CR_KEYRING=$HOME/secring.gpg" >> "$GITHUB_ENV" | |
| echo "CR_PASSPHRASE_FILE=$HOME/passphrase.txt" >> "$GITHUB_ENV" | |
| env: | |
| PGP_PRIVATE_KEY: "${{ secrets.PGP_PRIVATE_KEY }}" | |
| PGP_PASSPHRASE: "${{ secrets.PGP_PASSPHRASE }}" | |
| - name: Run chart-releaser | |
| uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0 - currently there is a bug on 1.6.0 version, can upgrade back when it'll be solved - https://github.com/helm/chart-releaser-action/issues/171 | |
| with: | |
| config: "./.github/configs/cr.yaml" | |
| skip_packaging: true | |
| charts_dir: script/helm | |
| env: | |
| CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}" | |
| - name: Login to GHCR | |
| uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Push chart to GHCR | |
| run: | | |
| shopt -s nullglob | |
| for pkg in .cr-release-packages/*.tgz; do | |
| if [ -z "${pkg:-}" ]; then | |
| break | |
| fi | |
| helm push "${pkg}" oci://ghcr.io/${{ github.repository }} | |
| done |