Skip to content
Build and Release

release v0.1.9 #8

Sign in to view logs

release v0.1.9

release v0.1.9 #8

Workflow file for this run

.github/workflows/build-and-release.yml at 4345f67
name: Build and Release
on:
push:
tags:
- 'v*'
workflow_dispatch:
jobs:
build:
runs-on: ${{ matrix.os }}
strategy:
matrix:
# os: [ubuntu-latest, windows-latest, macos-latest]
os: [macos-latest]
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: '22'
cache: 'npm'
- name: Install dependencies
run: npm ci
- name: Install native dependencies (Linux)
if: matrix.os == 'ubuntu-latest'
run: |
sudo apt-get update
sudo apt-get install -y libnss3-dev libatk-bridge2.0-dev libdrm2 libxcomposite1 libxdamage1 libxrandr2 libgbm1 libxss1 libasound2-dev
- name: Rebuild native dependencies
run: npx electron-rebuild
- name: Build application
run: npm run dist
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
CSC_IDENTITY_AUTO_DISCOVERY: false
- name: Ad-hoc sign macOS app
if: matrix.os == 'macos-latest'
run: |
# Find all .app bundles
find dist -name "*.app" -type d | while read -r APP_PATH; do
echo "Ad-hoc signing: $APP_PATH"
# Remove extended attributes
xattr -cr "$APP_PATH"
# Remove existing signatures
find "$APP_PATH" -type f -perm +111 -exec codesign --remove-signature {} \; 2>/dev/null || true
find "$APP_PATH" -name "*.dylib" -exec codesign --remove-signature {} \; 2>/dev/null || true
find "$APP_PATH" -name "*.framework" -exec codesign --remove-signature {} \; 2>/dev/null || true
find "$APP_PATH" -name "*.app" -exec codesign --remove-signature {} \; 2>/dev/null || true
# Sign frameworks
find "$APP_PATH/Contents/Frameworks" -name "*.framework" -type d | while read -r framework; do
codesign --force --deep --sign - "$framework"
done
# Sign helper apps
find "$APP_PATH/Contents" -name "*.app" -type d -not -path "$APP_PATH" | while read -r helper; do
codesign --force --deep --sign - "$helper"
done
# Sign libraries
find "$APP_PATH" -name "*.dylib" -o -name "*.so" | while read -r lib; do
codesign --force --sign - "$lib"
done
# Sign executables
find "$APP_PATH" -type f -perm +111 | while read -r exe; do
codesign --force --sign - "$exe" 2>/dev/null || true
done
# Sign main app
codesign --force --deep --sign - "$APP_PATH"
# Verify
codesign --verify --deep --verbose "$APP_PATH" || echo "Verification warning (expected for ad-hoc signing)"
done
- name: Upload artifacts (macOS)
if: matrix.os == 'macos-latest'
uses: actions/upload-artifact@v4
with:
name: macos-build
path: |
dist/*.dmg
dist/*.zip
dist/*-mac.zip
dist/*-mac-*.zip
- name: Upload artifacts (Windows)
if: matrix.os == 'windows-latest'
uses: actions/upload-artifact@v4
with:
name: windows-build
path: |
dist/*.exe
dist/*.msi
- name: Upload artifacts (Linux)
if: matrix.os == 'ubuntu-latest'
uses: actions/upload-artifact@v4
with:
name: linux-build
path: |
dist/*.AppImage
dist/*.deb
dist/*.rpm
dist/*.snap
release:
if: startsWith(github.ref, 'refs/tags/')
needs: build
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Download all artifacts
uses: actions/download-artifact@v4
with:
path: ./artifacts
- name: Display structure of downloaded files
run: ls -la artifacts/*/
- name: Create Release
uses: softprops/action-gh-release@v2
with:
files: |
artifacts/**/*.dmg
artifacts/**/*.zip
artifacts/**/*.exe
artifacts/**/*.msi
artifacts/**/*.AppImage
artifacts/**/*.deb
artifacts/**/*.rpm
artifacts/**/*.snap
draft: false
prerelease: false
generate_release_notes: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}