-
Notifications
You must be signed in to change notification settings - Fork 128
170 lines (139 loc) · 5.79 KB
/
publish.yml
File metadata and controls
170 lines (139 loc) · 5.79 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
name: publish
on:
push:
tags:
- 'v*'
workflow_run:
workflows: ['ci']
types:
- completed
branches:
- main
permissions:
contents: read
id-token: write # Required for OIDC trusted publishing
jobs:
publish:
name: publish to npm
runs-on: ubuntu-latest
# Only run if CI workflow succeeded (for workflow_run trigger)
if: ${{ github.event.workflow_run.conclusion == 'success' || github.event_name == 'push' }}
steps:
- name: Checkout code
uses: actions/checkout@v4
with:
ref: ${{ github.ref }}
fetch-depth: 0 # Required for git describe to find tags
submodules: recursive
- name: Setup Bun
uses: oven-sh/setup-bun@v1
with:
bun-version: latest
- name: Setup Zig
uses: ./.github/actions/setup-zig
with:
version: 0.15.2
- name: Build WASM
run: ./scripts/build-wasm.sh
- name: Install dependencies
run: bun install
- name: Check formatting
run: bun run fmt
- name: Run linter
run: bun run lint
- name: Check types
run: bun run typecheck
- name: Run tests
run: bun test
- name: Build library
run: bun run build
- name: Setup Node.js for npm
uses: actions/setup-node@v4
with:
node-version: '20'
registry-url: 'https://registry.npmjs.org'
# Ensure npm 11.5.1 or later for trusted publishing
- run: npm install -g npm@latest
- name: Detect trigger type
id: detect
run: |
if [[ $GITHUB_REF == refs/tags/* ]]; then
echo "is_tag=true" >> $GITHUB_OUTPUT
echo "trigger_type=tag" >> $GITHUB_OUTPUT
echo "trigger_name=${GITHUB_REF#refs/tags/}" >> $GITHUB_OUTPUT
echo "📦 Detected tag push: ${GITHUB_REF#refs/tags/}"
else
echo "is_tag=false" >> $GITHUB_OUTPUT
echo "trigger_type=branch" >> $GITHUB_OUTPUT
echo "trigger_name=${GITHUB_REF#refs/heads/}" >> $GITHUB_OUTPUT
echo "🚧 Detected branch push: ${GITHUB_REF#refs/heads/}"
fi
- name: Generate version
id: version
run: |
# Get base version from package.json
BASE_VERSION=$(jq -r .version package.json)
if [[ "${{ steps.detect.outputs.is_tag }}" == "true" ]]; then
# For tags, use the base version as-is (stable release)
NPM_VERSION="${BASE_VERSION}"
NPM_TAG="latest"
echo "📦 Publishing stable release: ${NPM_VERSION}"
else
# For main branch, create a pre-release version using git describe
# Format: 0.3.0-next.5.g1a2b3c4 (base-next.commits.hash)
GIT_COMMIT=$(git rev-parse --short HEAD)
COMMITS_SINCE_TAG=$(git rev-list --count HEAD ^$(git describe --tags --abbrev=0 2>/dev/null || echo HEAD) 2>/dev/null || echo "0")
NPM_VERSION="${BASE_VERSION}-next.${COMMITS_SINCE_TAG}.g${GIT_COMMIT}"
NPM_TAG="next"
echo "🚧 Publishing pre-release: ${NPM_VERSION}"
fi
echo "version=${NPM_VERSION}" >> $GITHUB_OUTPUT
echo "tag=${NPM_TAG}" >> $GITHUB_OUTPUT
# Update package.json with the new version
node -e "const fs = require('fs'); const pkg = JSON.parse(fs.readFileSync('package.json')); pkg.version = '${NPM_VERSION}'; fs.writeFileSync('package.json', JSON.stringify(pkg, null, 2) + '\n');"
echo "Updated package.json to version ${NPM_VERSION}"
- name: Validate tag matches package.json version
if: steps.detect.outputs.is_tag == 'true'
run: |
# Extract version from package.json
PKG_VERSION=$(jq -r .version package.json)
# Extract version from git tag (strip 'v' prefix)
TAG_VERSION=${GITHUB_REF#refs/tags/v}
echo "Package version: $PKG_VERSION"
echo "Tag version: $TAG_VERSION"
if [ "$PKG_VERSION" != "$TAG_VERSION" ]; then
echo "❌ Error: Version mismatch!"
echo " package.json version: $PKG_VERSION"
echo " Git tag version: $TAG_VERSION"
echo ""
echo "Please ensure the git tag matches the version in package.json"
exit 1
fi
echo "✅ Version validation passed: $PKG_VERSION"
- name: Check if version exists
id: check-exists
run: |
PACKAGE_NAME=$(node -p "require('./package.json').name")
VERSION="${{ steps.version.outputs.version }}"
if npm view "${PACKAGE_NAME}@${VERSION}" version &>/dev/null; then
echo "exists=true" >> $GITHUB_OUTPUT
echo "Version ${VERSION} already exists on npm"
else
echo "exists=false" >> $GITHUB_OUTPUT
echo "Version ${VERSION} does not exist, will publish"
fi
- name: Publish to npm (with OIDC trusted publishing)
if: steps.check-exists.outputs.exists == 'false'
run: npm publish --tag ${{ steps.version.outputs.tag }} --provenance --access public
- name: Update dist-tag (version already exists)
if: steps.check-exists.outputs.exists == 'true' && steps.detect.outputs.is_tag == 'true'
run: |
PACKAGE_NAME=$(node -p "require('./package.json').name")
VERSION="${{ steps.version.outputs.version }}"
TAG="${{ steps.version.outputs.tag }}"
echo "Version ${VERSION} already published, updating dist-tag to ${TAG}"
npm dist-tag add "${PACKAGE_NAME}@${VERSION}" "${TAG}"
- name: Skip (pre-release already exists)
if: steps.check-exists.outputs.exists == 'true' && steps.detect.outputs.is_tag != 'true'
run: |
echo "⏭️ Pre-release version already exists, skipping"