Skip to content
Snapshot Release

CI: add provenance statements #8

Sign in to view logs

CI: add provenance statements

CI: add provenance statements #8

Workflow file for this run

.github/workflows/snapshot-release.yml at 9f5ba17
name: Snapshot Release
on:
pull_request:
types: [labeled]
concurrency: ${{ github.workflow }}-${{ github.ref }}
permissions:
id-token: write
contents: read
pull-requests: write
issues: write
env:
NPM_CONFIG_PROVENANCE: true
jobs:
release:
if: |
(github.event.label.name == 'release: snapshot')
name: Snapshot Release
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4
- uses: pnpm/action-setup@v2
- uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4
with:
node-version-file: '.nvmrc'
cache: 'pnpm'
registry-url: 'https://registry.npmjs.org'
- name: Unlabel PR
run: |
gh pr edit $GITHUB_HEAD_REF --remove-label='release: snapshot'
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- run: pnpm i
- run: pnpm -r test
- run: pnpm -r run build
- name: Prepare snapshot releases
run: |
pnpm changeset version --snapshot
pnpm install --lockfile-only
- name: Publish snapshot releases
run: pnpm -r publish --tag=next --no-git-checks
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
- name: Create or update the snapshot release PR
run: |
VERSIONS=$(pnpm -r ls --json --depth=-1 | jq -r 'map(select(.version // "" | contains ("0.0.0-"))) | .[] | (.name + "@" + .version)')
echo "Changesets published the following snapshots:" >> msg_body
echo "\`\`\`" >> msg_body
echo "$VERSIONS" >> msg_body
echo "\`\`\`" >> msg_body
echo "--------"
cat msg_body
echo "--------"
gh pr comment $BRANCH_NAME --body-file msg_body
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
BRANCH_NAME: ${{ github.head_ref }}