Release Packages #74
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release Packages | |
| on: | |
| workflow_dispatch: | |
| workflow_run: | |
| workflows: ["Run tests"] | |
| branches: [main] | |
| types: | |
| - completed | |
| concurrency: ${{ github.workflow }}-${{ github.ref }} | |
| permissions: | |
| contents: read | |
| id-token: write | |
| jobs: | |
| release: | |
| name: Release Packages | |
| runs-on: ubuntu-latest | |
| if: ${{ github.event.workflow_run.conclusion == 'success' || github.event_name == 'workflow_dispatch' }} | |
| outputs: | |
| published: ${{ steps.changesets.outputs.published }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| persist-credentials: false | |
| - uses: pnpm/action-setup@v4 | |
| - uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: package.json | |
| cache: "pnpm" | |
| registry-url: "https://registry.npmjs.org" | |
| - name: Install dependencies | |
| run: pnpm install --frozen-lockfile | |
| shell: bash | |
| - name: Create release pull request or publish | |
| id: changesets | |
| uses: changesets/action@v1 | |
| with: | |
| version: pnpm run ci:version | |
| commit: "chore: Update versions" | |
| title: "chore: Update versions" | |
| publish: pnpm run ci:publish | |
| env: | |
| # When you use the repository's GITHUB_TOKEN to perform tasks, events | |
| # triggered by the GITHUB_TOKEN will not create a new workflow run. | |
| # This means that checks won't run on the release PRs. We work around | |
| # this by using our own GH_TOKEN_REPO_ACCESS organization secret. | |
| GITHUB_TOKEN: ${{ secrets.GH_TOKEN_REPO_ACCESS }} | |
| # Use OIDC for npm authentication instead of NPM_TOKEN | |
| NPM_TOKEN: '' |