mirror of
https://github.com/wavetermdev/waveterm
synced 2026-05-18 06:18:28 +00:00
e72ddf1dfc
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5 to 6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-node/releases">actions/setup-node's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>What's Changed</h2> <p><strong>Breaking Changes</strong></p> <ul> <li>Limit automatic caching to npm, update workflows and documentation by <a href="https://github.com/priyagupta108"><code>@priyagupta108</code></a> in <a href="https://redirect.github.com/actions/setup-node/pull/1374">actions/setup-node#1374</a></li> </ul> <p><strong>Dependency Upgrades</strong></p> <ul> <li>Upgrade ts-jest from 29.1.2 to 29.4.1 and document breaking changes in v5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-node/pull/1336">#1336</a></li> <li>Upgrade prettier from 2.8.8 to 3.6.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-node/pull/1334">#1334</a></li> <li>Upgrade actions/publish-action from 0.3.0 to 0.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-node/pull/1362">#1362</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-node/compare/v5...v6.0.0">https://github.com/actions/setup-node/compare/v5...v6.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="2028fbc5c2"><code>2028fbc</code></a> Limit automatic caching to npm, update workflows and documentation (<a href="https://redirect.github.com/actions/setup-node/issues/1374">#1374</a>)</li> <li><a href="13427813f7"><code>1342781</code></a> Bump actions/publish-action from 0.3.0 to 0.4.0 (<a href="https://redirect.github.com/actions/setup-node/issues/1362">#1362</a>)</li> <li><a href="89d709d423"><code>89d709d</code></a> Bump prettier from 2.8.8 to 3.6.2 (<a href="https://redirect.github.com/actions/setup-node/issues/1334">#1334</a>)</li> <li><a href="cd2651c462"><code>cd2651c</code></a> Bump ts-jest from 29.1.2 to 29.4.1 (<a href="https://redirect.github.com/actions/setup-node/issues/1336">#1336</a>)</li> <li>See full diff in <a href="https://github.com/actions/setup-node/compare/v5...v6">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
89 lines
3.7 KiB
YAML
89 lines
3.7 KiB
YAML
# Workflow to manage bumping the package version and pushing it to the target branch with a new tag.
|
|
# This workflow uses a GitHub App to bypass branch protection and uses the GitHub API directly to ensure commits and tags are signed.
|
|
# For more information, see this doc: https://github.com/Nautilus-Cyberneering/pygithub/blob/main/docs/how_to_sign_automatic_commits_in_github_actions.md
|
|
|
|
name: Bump Version
|
|
run-name: "branch: ${{ github.ref_name }}; semver-bump: ${{ inputs.bump }}; prerelease: ${{ inputs.is-prerelease }}"
|
|
on:
|
|
workflow_dispatch:
|
|
inputs:
|
|
bump:
|
|
description: SemVer Bump
|
|
required: true
|
|
type: choice
|
|
default: none
|
|
options:
|
|
- none
|
|
- patch
|
|
- minor
|
|
- major
|
|
is-prerelease:
|
|
description: Is Prerelease
|
|
required: true
|
|
type: boolean
|
|
default: true
|
|
env:
|
|
NODE_VERSION: 22
|
|
jobs:
|
|
bump-version:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Get App Token
|
|
uses: actions/create-github-app-token@v2
|
|
id: app-token
|
|
with:
|
|
app-id: ${{ vars.WAVE_BUILDER_APPID }}
|
|
private-key: ${{ secrets.WAVE_BUILDER_KEY }}
|
|
- uses: actions/checkout@v5
|
|
with:
|
|
token: ${{ steps.app-token.outputs.token }}
|
|
|
|
# General build dependencies
|
|
- uses: actions/setup-node@v6
|
|
with:
|
|
node-version: ${{env.NODE_VERSION}}
|
|
cache: npm
|
|
cache-dependency-path: package-lock.json
|
|
- uses: nick-fields/retry@v3
|
|
name: npm ci
|
|
with:
|
|
command: npm ci --no-audit --no-fund
|
|
retry_on: error
|
|
max_attempts: 3
|
|
timeout_minutes: 5
|
|
- name: Install Task
|
|
uses: arduino/setup-task@v2
|
|
with:
|
|
version: 3.x
|
|
repo-token: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
- name: "Bump Version: ${{ inputs.bump }}"
|
|
id: bump-version
|
|
run: echo "WAVETERM_VERSION=$( task version -- ${{ inputs.bump }} ${{inputs.is-prerelease}} )" >> "$GITHUB_OUTPUT"
|
|
shell: bash
|
|
|
|
- name: "Push version bump: ${{ steps.bump-version.outputs.WAVETERM_VERSION }}"
|
|
if: github.ref_protected
|
|
run: |
|
|
# Create a new commit for the package version bump in package.json
|
|
export VERSION=${{ steps.bump-version.outputs.WAVETERM_VERSION }}
|
|
export MESSAGE="chore: bump package version to $VERSION"
|
|
export FILE=package.json
|
|
export BRANCH=${{github.ref_name}}
|
|
export SHA=$( git rev-parse $BRANCH:$FILE )
|
|
export CONTENT=$( base64 -i $FILE )
|
|
gh api --method PUT /repos/:owner/:repo/contents/$FILE \
|
|
--field branch="$BRANCH" \
|
|
--field message="$MESSAGE" \
|
|
--field content="$CONTENT" \
|
|
--field sha="$SHA"
|
|
|
|
# Fetch the new commit and create a tag referencing it
|
|
git fetch
|
|
export TAG_SHA=$( git rev-parse origin/$BRANCH )
|
|
gh api --method POST /repos/:owner/:repo/git/refs \
|
|
--field ref="refs/tags/v$VERSION" \
|
|
--field sha="$TAG_SHA"
|
|
shell: bash
|
|
env:
|
|
GH_TOKEN: ${{ steps.app-token.outputs.token }}
|