trigger.dev/.github/workflows/release.yml at a37197ac248ed115bb9ae7463c8a12e141b68cfa · triggerdotdev/trigger.dev · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
name: 🦋 Changesets Release

on:
  pull_request:
    types: [closed]
    branches:
      - main
  workflow_dispatch:
    inputs:
      ref:
        description: "The ref (branch, tag, or SHA) to checkout and release from"
        required: true
        type: string
      tag:
        description: "The npm dist-tag for the prerelease (e.g., 'v4-prerelease')"
        required: true
        type: string
        default: "prerelease"

concurrency:
  group: ${{ github.workflow }}
  cancel-in-progress: false

jobs:
  release:
    name: 🚀 Release npm packages
    runs-on: ubuntu-latest
    environment: npm-publish
    permissions:
      contents: read
      packages: write
      id-token: write
    if: |
      github.repository == 'triggerdotdev/trigger.dev' &&
      github.event_name != 'workflow_dispatch' &&
      github.event.pull_request.merged == true &&
      startsWith(github.event.pull_request.head.ref, 'changeset-release/')
    outputs:
      published: ${{ steps.changesets.outputs.published }}
      published_packages: ${{ steps.changesets.outputs.publishedPackages }}
      published_package_version: ${{ steps.get_version.outputs.package_version }}
    steps:
      - name: Checkout repo
        uses: actions/checkout@v4
        with:
          fetch-depth: 0

      - name: Setup pnpm
        uses: pnpm/action-setup@v4
        with:
          version: 10.23.0

      - name: Setup node
        uses: buildjet/setup-node@v4
        with:
          node-version: 20.19.0
          cache: "pnpm"

      - name: Install dependencies
        run: pnpm install --frozen-lockfile

      - name: Generate Prisma client
        run: pnpm run generate

      - name: Build
        run: pnpm run build --filter "@trigger.dev/*" --filter "trigger.dev"

      - name: Type check
        run: pnpm run typecheck --filter "@trigger.dev/*" --filter "trigger.dev"

      - name: Publish
        id: changesets
        uses: changesets/action@v1
        with:
          publish: pnpm run changeset:release
          createGithubReleases: true
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

      - name: Show package version
        if: steps.changesets.outputs.published == 'true'
        id: get_version
        run: |
          package_version=$(echo '${{ steps.changesets.outputs.publishedPackages }}' | jq -r '.[0].version')
          echo "package_version=${package_version}" >> "$GITHUB_OUTPUT"

      # this triggers the publish workflow for the docker images
      - name: Create and push Docker tag
        if: steps.changesets.outputs.published == 'true'
        run: |
          set -e
          git tag "v.docker.${{ steps.get_version.outputs.package_version }}"
          git push origin "v.docker.${{ steps.get_version.outputs.package_version }}"

  # The prerelease job needs to be on the same workflow file due to a limitation related to how npm verifies OIDC claims.
  prerelease:
    name: 🧪 Prerelease
    runs-on: ubuntu-latest
    environment: npm-publish
    permissions:
      contents: read
      id-token: write
    if: github.repository == 'triggerdotdev/trigger.dev' && github.event_name == 'workflow_dispatch'
    steps:
      - name: Checkout repo
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
          ref: ${{ github.event.inputs.ref }}

      - name: Validate ref is on main
        run: |
          if ! git merge-base --is-ancestor ${{ github.event.inputs.ref }} origin/main; then
            echo "Error: ref must be an ancestor of main (i.e., already merged)"
            exit 1
          fi

      - name: Setup pnpm
        uses: pnpm/action-setup@v4
        with:
          version: 10.23.0

      - name: Setup node
        uses: buildjet/setup-node@v4
        with:
          node-version: 20.19.0
          cache: "pnpm"

      # npm v11.5.1 or newer is required for OIDC support
      # https://github.blog/changelog/2025-07-31-npm-trusted-publishing-with-oidc-is-generally-available/#whats-new
      - name: Setup npm 11.x for OIDC
        run: npm install -g npm@11.6.4

      - name: Download deps
        run: pnpm install --frozen-lockfile

      - name: Generate Prisma Client
        run: pnpm run generate

      - name: Snapshot version
        run: pnpm exec changeset version --snapshot ${{ github.event.inputs.tag }}
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

      - name: Clean
        run: pnpm run clean --filter "@trigger.dev/*" --filter "trigger.dev"

      - name: Build
        run: pnpm run build --filter "@trigger.dev/*" --filter "trigger.dev"

      - name: Publish prerelease
        run: pnpm exec changeset publish --no-git-tag --snapshot --tag ${{ github.event.inputs.tag }}
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}