update nix packaging #39
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Publish Python π sdwire π¦ to PyPI and TestPyPI | |
| on: push | |
| jobs: | |
| build: | |
| name: Build SDWire CLI App. | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Setup Python | |
| uses: actions/setup-python@v5 | |
| with: | |
| python-version: '3.x' | |
| - name: Install pipx | |
| run: | | |
| sudo apt update | |
| sudo apt install pipx | |
| pipx ensurepath | |
| - name: Install Poetry | |
| run: | | |
| pipx install poetry==1.8.3 | |
| - name: Build | |
| run: | | |
| poetry build | |
| - name: Upload artifacts | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: python-sdwire-dists | |
| path: dist/ | |
| pypi-publish: | |
| name: Publish Python π sdwire π¦ to PyPI | |
| runs-on: ubuntu-latest | |
| if: startsWith(github.ref, 'refs/tags/') # only publish to PyPI on tag pushes | |
| needs: | |
| - build | |
| environment: | |
| name: pypi | |
| url: https://pypi.org/p/sdwire | |
| permissions: | |
| id-token: write | |
| steps: | |
| - name: Download dists | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: python-sdwire-dists | |
| path: dist/ | |
| - name: Publish sdwire π¦ to PyPI | |
| uses: pypa/gh-action-pypi-publish@release/v1 | |
| test-pypi-publish: | |
| name: Publish Python π sdwire π¦ to TestPyPI | |
| needs: | |
| - build | |
| runs-on: ubuntu-latest | |
| continue-on-error: true | |
| environment: | |
| name: testpypi | |
| url: https://test.pypi.org/p/sdwire | |
| permissions: | |
| id-token: write | |
| steps: | |
| - name: Download dists | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: python-sdwire-dists | |
| path: dist/ | |
| - name: Publish sdwire π¦ to TestPyPI | |
| uses: pypa/gh-action-pypi-publish@release/v1 | |
| with: | |
| repository-url: https://test.pypi.org/legacy/ | |
| github-release: | |
| name: >- | |
| Sign the Python π sdwire π¦ with Sigstore and upload them to GitHub Release | |
| needs: | |
| - pypi-publish | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write # IMPORTANT: mandatory for making GitHub Releases | |
| id-token: write # IMPORTANT: mandatory for sigstore | |
| steps: | |
| - name: Download dists | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: python-sdwire-dists | |
| path: dist/ | |
| - name: Sign the dists with Sigstore | |
| uses: sigstore/gh-action-sigstore-python@v3.0.0 | |
| with: | |
| inputs: >- | |
| ./dist/*.tar.gz ./dist/*.whl | |
| - name: Create GitHub Release | |
| env: | |
| GITHUB_TOKEN: ${{ github.token }} | |
| run: >- | |
| gh release create '${{ github.ref_name }}' --repo '${{ github.repository }}' --notes "" | |
| - name: Upload artifact signatures to GitHub Release | |
| env: | |
| GITHUB_TOKEN: ${{ github.token }} | |
| # Upload to GitHub Release using the `gh` CLI. | |
| # `dist/` contains the built packages, and the | |
| # sigstore-produced signatures and certificates. | |
| run: >- | |
| gh release upload '${{ github.ref_name }}' dist/** --repo '${{ github.repository }}' |