FilesExpand file tree

 master

/

release_test_pypi.yml

Copy path

View Runs

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

146 lines (133 loc) · 4.73 KB

 master

/

release_test_pypi.yml

Top

File metadata and controls

• Code
• Blame

146 lines (133 loc) · 4.73 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

name: Publish to Test PyPI

on:

# manually trigger the workflow

workflow_dispatch:

permissions: {}

jobs:

build:

name: Build Distribution

runs-on: ubuntu-latest

outputs:

TAG: ${{ steps.get_tag.outputs.TAG }}

permissions:

# for uploading artifacts

actions: write

steps:

- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

with:

persist-credentials: false

- name: Set up Python

uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0

with:

python-version: "3.x"

- name: Install pypa/build

run: >-

python3 -m pip install build --user

- name: Build a binary wheel and a source tarball

run: python3 -m build

- name: Store the distribution packages

uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0

with:

name: python-package-distributions

path: dist/

- name: Get Tag Name

id: get_tag

run: |

pip install .

TAG=$(python -c "from telegram import __version__; print(f'v{__version__}')")

echo "TAG=$TAG" >> $GITHUB_OUTPUT

publish-to-test-pypi:

name: Publish to Test PyPI

needs:

- build

runs-on: ubuntu-latest

environment:

name: release_test_pypi

url: https://test.pypi.org/p/python-telegram-bot

permissions:

id-token: write # IMPORTANT: mandatory for trusted publishing

actions: read # for downloading artifacts

steps:

- name: Download all the dists

uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1

with:

name: python-package-distributions

path: dist/

- name: Publish to Test PyPI

uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0

with:

repository-url: https://test.pypi.org/legacy/

compute-signatures:

name: Compute SHA1 Sums and Sign with Sigstore

runs-on: ubuntu-latest

needs:

- publish-to-test-pypi

permissions:

id-token: write # IMPORTANT: mandatory for sigstore

actions: write # for up/downloading artifacts

steps:

- name: Download all the dists

uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1

with:

name: python-package-distributions

path: dist/

- name: Compute SHA1 Sums

run: |

# Compute SHA1 sum of the distribution packages and save it to a file with the same name,

# but with .sha1 extension

for file in dist/*; do

sha1sum $file > $file.sha1

done

- name: Sign the dists with Sigstore

uses: sigstore/gh-action-sigstore-python@a5caf349bc536fbef3668a10ed7f5cd309a4b53d # v3.2.0

with:

inputs: >-

./dist/*.tar.gz

./dist/*.whl

- name: Store the distribution packages and signatures

uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0

with:

name: python-package-distributions-and-signatures

path: dist/

github-test-release:

name: Upload to GitHub Release Draft

needs:

- build

- compute-signatures

runs-on: ubuntu-latest

permissions:

contents: write # IMPORTANT: mandatory for making GitHub Releases

actions: read # for downloading artifacts

steps:

- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2

with:

persist-credentials: false

- name: Download all the dists

uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1

with:

name: python-package-distributions-and-signatures

path: dist/

- name: Create GitHub Release

env:

GITHUB_TOKEN: ${{ github.token }}

TAG: ${{ needs.build.outputs.TAG }}

# Create a tag and a GitHub Release *draft*. The description is filled by the static

# template, we just insert the correct tag in the template.

run: >-

sed "s/{tag}/$TAG/g" .github/workflows/assets/release_template.html |

gh release create

"$TAG"

--repo '${{ github.repository }}'

--draft

--notes-file -

- name: Upload artifact signatures to GitHub Release

env:

GITHUB_TOKEN: ${{ github.token }}

TAG: ${{ needs.build.outputs.TAG }}

# Upload to GitHub Release using the `gh` CLI.

# `dist/` contains the built packages, and the

# sigstore-produced signatures and certificates.

run: >-

gh release upload

"$TAG" dist/**

--repo '${{ github.repository }}'