feat: update to 3.14, uv, beet/bolt

Author: rx-dev

.github/workflows/main.yml

@@ -5,10 +5,16 @@ on:
   pull_request:
   workflow_dispatch:
 
+env:
+  PYTHON_VERSION: "3.14"
+
 jobs:
   main:
     name: Test and release
     runs-on: ubuntu-latest
+    outputs:
+      released: ${{ steps.release.outputs.released }}
+      tag: ${{ steps.release.outputs.tag }}
 
     steps:
       - uses: actions/checkout@v6
@@ -18,24 +24,37 @@ jobs:
       - name: Set up Python 3.14
         uses: actions/setup-python@v6
         with:
-          python-version: "3.14"
+          python-version: ${{ env.PYTHON_VERSION }}
 
       - name: Install uv
         uses: astral-sh/setup-uv@v7
         with:
           enable-cache: true
 
       - name: Install dependencies
-        run: uv sync
+        run: uv sync --all-groups
 
       - name: Run tests
         run: uv run pytest -v
 
-      - name: Check formatting
-        run: uv run ruff format --check bolt_control_flow examples tests
+      - name: Check linting, formatting, imports
+        run: uv run ruff check
+
+      - name: Action | Semantic Version Release
+        id: release
+        run: |
+          # 1. Run the versioning logic
+          uv run semantic-release version
 
-      - name: Check imports
-        run: uv run ruff check --select I bolt_control_flow examples tests
+          # 2. Extract version info for subsequent steps
+          echo "tag=$(uv run semantic-release version --print-tag)" >> $GITHUB_OUTPUT
+
+          # 3. Check if a release actually happened
+          if [ -d "dist" ] && [ "$(ls -A dist)" ]; then
+            echo "released=true" >> $GITHUB_OUTPUT
+          fi
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Build docs
         run: |
@@ -45,22 +64,44 @@ jobs:
           poetry run make html
           cp -r build/* ../gh-pages/
 
-      - name: Release
-        if: |
-          github.repository == 'vdvman1/bolt-control-flow'
-          && github.event_name == 'push'
-          && github.ref == 'refs/heads/main'
-        env:
-          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          PYPI_TOKEN: ${{ secrets.PYPI_TOKEN }}
-        run: |
-          git config --global user.name "github-actions"
-          git config --global user.email "action@github.com"
-          uv run semantic-release publish -v DEBUG -D commit_author="github-actions <action@github.com>"
+      - name: Publish | Upload to GitHub Release Assets
+        uses: python-semantic-release/publish-action@v10.5.3
+        if: steps.release.outputs.released == 'true'
+        with:
+          github_token: ${{ secrets.GITHUB_TOKEN }}
+          tag: ${{ steps.release.outputs.tag }}
+
+      - name: Upload | Distribution Artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: distribution-artifacts
+          path: dist
+          if-no-files-found: error
+
+  deploy:
+    # 1. Separate out the deploy step from the publish step to run each step at
+    #    the least amount of token privilege
+    # 2. Also, deployments can fail, and its better to have a separate job if you need to retry
+    #    and it won't require reversing the release.
+    runs-on: ubuntu-latest
+    needs: release
+    if: ${{ needs.release.outputs.released == 'true' }}
+
+    permissions:
+      contents: read
+      id-token: write
+
+    steps:
+      - name: Setup | Download Build Artifacts
+        uses: actions/download-artifact@v4
+        id: artifact-download
+        with:
+          name: distribution-artifacts
+          path: dist
 
-      - name: Publish docs
-        if: github.event_name == 'push' && github.ref == 'refs/heads/main'
-        uses: JamesIves/github-pages-deploy-action@4.1.4
+      - name: Publish package distributions to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1
         with:
-          branch: gh-pages
-          folder: gh-pages
+          packages-dir: dist
+          print-hash: true
+          verbose: true

README.md

@@ -13,4 +13,3 @@ pip install bolt_control_flow
 ---
 
 License - [MIT](https://github.com/vdvman1/bolt-control-flow/blob/main/LICENSE)
-

bolt_control_flow/helpers.py

@@ -55,7 +55,7 @@ def binary_logical(
                             case BinaryLogicalFallback():
                                 # Avoid calling the original right function again
                                 # Reuse existing value instead
-                                right = lambda: fallback_right_value
+                                right = lambda: fallback_right_value  # noqa: E731  (use def instead of lambda)
                             case res:
                                 return res
             case res:

pyproject.toml

@@ -38,7 +38,7 @@ dev = [
   "pytest>=7.1.3,<8",
   "pytest-insta>=0.1.11,<0.2",
   "lectern>=0.25.0",
-  "python-semantic-release>=7.32.1,<8",
+  "python-semantic-release>=9.21.0",
   "ruff>=0.14.13",
 ]
 docs = [
@@ -55,6 +55,9 @@ default-groups = ["dev"]
 module-root = ""
 source-include = ["bolt_control_flow/py.typed"]
 
+[tool.ruff.lint]
+ignore = ["F403", "F405"] # allows "*" imports
+
 [build-system]
 build-backend = "uv_build"
 requires = ["uv_build>=0.9.26,<0.10.0"]
@@ -63,9 +66,9 @@ requires = ["uv_build>=0.9.26,<0.10.0"]
 addopts = "tests --import-mode=importlib"
 
 [tool.semantic_release]
-branch = "main"
 build_command = "uv build"
 major_on_zero = false
-upload_to_repository = true
-version_toml = "pyproject.toml:project.version"
-version_variable = "bolt_control_flow/__init__.py:__version__"
+
+commit_author = "github-actions <action@github.com>"
+version_toml = ["pyproject.toml:project.version"]
+version_variables = ["bolt_control_flow/__init__.py:__version__"]