release.yml

---
name: Release

on:
  release:
    types:
      - published

jobs:
  build:
    if: github.repository_owner == 'PyCQA'
    name: Release
    runs-on: ubuntu-latest
    steps:
      - name: Check out the repository
        uses: actions/checkout@v6
        with:
          fetch-depth: 2

      - name: Set up Python
        uses: actions/setup-python@v6
        with:
          python-version: "3.14"

      - name: Install UV
        uses: astral-sh/setup-uv@v7
        with:
          version-file: "pyproject.toml"

      - name: Install dependencies
        run: |
          uv sync --all-extras --frozen

      - name: Build package
        run: |
          uv build

      - name: Upload release assets
        uses: actions/upload-artifact@v7.0.1
        with:
          name: release-assets
          path: dist/

  release-pypi:
    name: Upload release to PyPI
    runs-on: ubuntu-latest
    needs: ["build"]
    environment:
      name: pypi
      url: https://pypi.org/p/isort
    permissions:
      id-token: write
    steps:
      - name: Download release assets
        uses: actions/download-artifact@v8.0.1
        with:
          name: release-assets
          path: dist/

      - name: Publish package on PyPI
        if: github.event_name == 'release'
        uses: pypa/gh-action-pypi-publish@release/v1
  
  release-github:
    name: Upload assets to Github release
    runs-on: ubuntu-latest
    needs: ["build"]
    permissions:
      contents: write
      id-token: write
    steps:
      - name: Download release assets
        uses: actions/download-artifact@v8.0.1
        with:
          name: release-assets
          path: dist/
      - name: Sign the dists with Sigstore and upload assets to Github release
        if: github.event_name == 'release'
        uses: sigstore/gh-action-sigstore-python@v3.3.0
        with:
          inputs: |
            ./dist/*.tar.gz
            ./dist/*.whl