pantry/.github/workflows/build.yml

name: build

on:
  workflow_call:
    inputs:
      projects:
        required: true
        type: string
      platform:
        required: true
        type: string
      new-version:
        type: boolean
        required: false
        default: false

jobs:
  get-platform:
    runs-on: ubuntu-latest
    outputs:
      os: ${{ steps.platform.outputs.os }}
      build-os: ${{ steps.platform.outputs.build-os }}
      container: ${{ steps.platform.outputs.container }}
      test-matrix: ${{ steps.platform.outputs.test-matrix }}
      cache-set: ${{ steps.platform.outputs.cache-set }}
    steps:
      - uses: teaxyz/pantry.core/.github/actions/get-platform@main
        id: platform
        with:
          platform: ${{ inputs.platform }}

  build:
    runs-on: ${{ fromJson(needs.get-platform.outputs.build-os) }}
    container: ${{ fromJson(needs.get-platform.outputs.container) }}
    needs: [get-platform]
    steps:
      - uses: actions/checkout@v3

      - uses: teaxyz/pantry.core/.github/actions/setup-brewkit@main
        id: tea
        with:
          prefix: /opt

      - name: sanitize macOS runners
        if: fromJson(needs.get-platform.outputs.build-os) == 'macos-11'
        run: sudo mv /usr/local/bin/* /tmp/

      - run: pkg build ${{ inputs.projects }}
        id: build
        env:
          GITHUB_TOKEN: ${{ github.token }}
          FORCE_UNSAFE_CONFIGURE: 1  # some configure scripts refuse to run as root

      - run: |
          ABS_PATHS=$(echo $PATHS | tr ' ' '\n' | sed -e "s_^_$TEA_PREFIX/_" | tr '\n' ' ')
          echo "paths=$ABS_PATHS" >> $GITHUB_OUTPUT
        if: startsWith(inputs.platform, 'darwin+')
        id: absolute-paths
        env:
          PATHS: ${{ steps.build.outputs.relative-paths }}
          TEA_PREFIX: ${{ steps.tea.outputs.prefix }}

      # sign macOS binaries
      - uses: teaxyz/pantry.core/.github/actions/codesign@main
        if: startsWith(inputs.platform, 'darwin+') && github.event.pull_request.head.repo.full_name == github.event.pull_request.base.repo.full_name
        with:
            p12-file-base64: ${{ secrets.APPLE_CERTIFICATE_P12 }}
            p12-password: ${{ secrets.APPLE_CERTIFICATE_P12_PASSWORD }}
            identity: "Developer ID Application: Tea Inc. (7WV56FL599)"
            paths: ${{ steps.absolute-paths.outputs.paths }}

      # cache data we'll need in the bottling job
      - name: assemble artifact metadata
        run: |
          echo ${{ steps.build.outputs.pkgs }} >built
          echo ${{ steps.build.outputs.srcs-relative-paths }} >srcs
        working-directory: ${{ steps.tea.outputs.prefix }}

      # tarring ourselves ∵ GHA-artifacts (ludicrously) lose permissions
      # /ref https://github.com/actions/upload-artifact/issues/38
      - name: create artifacts.tgz
        run:
          tar czvf $GITHUB_WORKSPACE/artifacts.tgz
            ${{ steps.build.outputs.relative-paths }}
            ${{ steps.build.outputs.srcs-relative-paths }}
            built srcs
        working-directory: ${{ steps.tea.outputs.prefix }}

      - name: upload artifacts
        uses: actions/upload-artifact@v3
        with:
          name: ${{ inputs.platform }}
          path: artifacts.tgz
          if-no-files-found: error

  test:
    needs: [get-platform, build]
    runs-on: ${{ matrix.platform.os }}
    strategy:
      matrix:
        platform: ${{ fromJson(needs.get-platform.outputs.test-matrix) }}
    outputs:
      HAS_SECRETS: ${{ env.HAS_SECRETS }}
    container: ${{ matrix.platform.container }}
    steps:
      - uses: actions/checkout@v3
      - uses: teaxyz/pantry.core/.github/actions/setup-brewkit@main

      - uses: teaxyz/setup@v0
        with:
          srcroot: null

      - uses: actions/download-artifact@v3
        with:
          name: ${{ inputs.platform }}

      - name: clean destination
        # Note: needed when changing a directory to a symlink, for example in
        # https://github.com/teaxyz/pantry.extra/pull/435
        run: |
          tar tzf $GITHUB_WORKSPACE/artifacts.tgz | \
            awk '{ print length, $0 }' | \
            sort -n -s -r | \
            cut -d" " -f2- | \
            xargs rm -rf
        working-directory: ${{ env.TEA_PREFIX }}

      - name: extract bottles
        run: tar xzvf artifacts.tgz -C $TEA_PREFIX

      - run: pkg test ${{ inputs.projects }}
        env:
          GITHUB_TOKEN: ${{ github.token }}
          # FIXME: this shouldn't be necessary, but it currently is for the
          # ubuntu+container test matrix entries. :/
          TEA_PANTRY_PATH: ${{ github.workspace }}

      - name: '[post]'
        run:
          echo "HAS_SECRETS=$HAS_SECRETS" >>$GITHUB_ENV
        env:
          HAS_SECRETS: ${{ secrets.AWS_S3_CACHE != null }}

  bottle:
    needs: [test]
    if: inputs.new-version == true
    uses: ./.github/workflows/bottle.yml
    with:
      new-version: ${{ inputs.new-version }}
      platform: ${{ inputs.platform }}
    secrets: inherit

  complain:
    needs: [test]
    if: inputs.new-version == true && failure()
    uses: ./.github/workflows/complain.yml
    with:
      projects: ${{ inputs.projects }}
      platform: ${{ inputs.platform }}
    secrets: inherit

  stage:
    needs: [test]
    # this only works for PRs from our team to our repo (security! :( )
    if: startsWith(github.ref, 'refs/pull/') && startsWith(github.repository, 'teaxyz/pantry.') && needs.test.outputs.HAS_SECRETS == 'true'
    runs-on: ubuntu-latest
    steps:
      - uses: actions/download-artifact@v3
        with:
          name: ${{ inputs.platform }}

      - uses: teaxyz/pantry.core/.github/actions/stage-build-artifacts@main
        with:
          platform: ${{ inputs.platform }}
          AWS_S3_BUCKET: ${{ secrets.AWS_S3_CACHE }}
          AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}
          AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`name: build`
Relax requirement to build to /opt (#19) Improve README somewhat. Don’t overlay files into pantry, use `TEA_PANTRY_PATH` instead. Requires tea/cli 0.11.6 for `env` key in YAML-FM 2022-11-04 15:59:20 +03:00
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`on:`
			`workflow_call:`
			`inputs:`
			`projects:`
			`required: true`
			`type: string`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`platform:`
			`required: true`
			`type: string`
			`new-version:`
			`type: boolean`
			`required: false`
			`default: false`
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00
			`jobs:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`get-platform:`
add `build.cores` yaml key to control min-required build machine 2023-01-13 00:43:08 +03:00			`runs-on: ubuntu-latest`
			`outputs:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`os: ${{ steps.platform.outputs.os }}`
			`build-os: ${{ steps.platform.outputs.build-os }}`
revert hosted linux+x86-64 for now 2023-02-03 01:36:03 +03:00			`container: ${{ steps.platform.outputs.container }}`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`test-matrix: ${{ steps.platform.outputs.test-matrix }}`
use actions/cache to reduce deno.land 500s 2023-02-05 02:49:21 +03:00			`cache-set: ${{ steps.platform.outputs.cache-set }}`
add `build.cores` yaml key to control min-required build machine 2023-01-13 00:43:08 +03:00			`steps:`
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- uses: teaxyz/pantry.core/.github/actions/get-platform@main`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`id: platform`
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`with:`
			`platform: ${{ inputs.platform }}`
add `build.cores` yaml key to control min-required build machine 2023-01-13 00:43:08 +03:00
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`build:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`runs-on: ${{ fromJson(needs.get-platform.outputs.build-os) }}`
revert hosted linux+x86-64 for now 2023-02-03 01:36:03 +03:00			`container: ${{ fromJson(needs.get-platform.outputs.container) }}`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`needs: [get-platform]`
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`steps:`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`- uses: actions/checkout@v3`
fix ci/cd 2023-02-11 17:59:00 +03:00
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- uses: teaxyz/pantry.core/.github/actions/setup-brewkit@main`
de-duplicate pantry scripts (#11) 2022-10-28 01:23:32 +03:00			`id: tea`
			`with:`
			`prefix: /opt`

don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`- name: sanitize macOS runners`
fix(ruby/rubygems) (#319) * fix(ruby/rubygems) Ruby is pulling in system gmp * missed this in all the updates 2023-02-18 05:07:30 +03:00			`if: fromJson(needs.get-platform.outputs.build-os) == 'macos-11'`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`run: sudo mv /usr/local/bin/* /tmp/`

Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- run: pkg build ${{ inputs.projects }}`
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`id: build`
			`env:`
No @jheider this is not redundant 2022-11-11 04:42:08 +03:00			`GITHUB_TOKEN: ${{ github.token }}`
stub in new_version workflow Must be in main to be dispatchable. 2022-08-09 02:50:24 +03:00			`FORCE_UNSAFE_CONFIGURE: 1 # some configure scripts refuse to run as root`

move codesigning before tests, since it can affect them 2023-02-22 02:23:47 +03:00			`- run: \|`
			`ABS_PATHS=$(echo $PATHS \| tr ' ' '\n' \| sed -e "s_^_$TEA_PREFIX/_" \| tr '\n' ' ')`
			`echo "paths=$ABS_PATHS" >> $GITHUB_OUTPUT`
			`if: startsWith(inputs.platform, 'darwin+')`
			`id: absolute-paths`
			`env:`
			`PATHS: ${{ steps.build.outputs.relative-paths }}`
			`TEA_PREFIX: ${{ steps.tea.outputs.prefix }}`

			`# sign macOS binaries`
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- uses: teaxyz/pantry.core/.github/actions/codesign@main`
workable test for remote PRs 2023-02-23 03:07:17 +03:00			`if: startsWith(inputs.platform, 'darwin+') && github.event.pull_request.head.repo.full_name == github.event.pull_request.base.repo.full_name`
move codesigning before tests, since it can affect them 2023-02-22 02:23:47 +03:00			`with:`
			`p12-file-base64: ${{ secrets.APPLE_CERTIFICATE_P12 }}`
			`p12-password: ${{ secrets.APPLE_CERTIFICATE_P12_PASSWORD }}`
			`identity: "Developer ID Application: Tea Inc. (7WV56FL599)"`
			`paths: ${{ steps.absolute-paths.outputs.paths }}`

use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`# cache data we'll need in the bottling job`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`- name: assemble artifact metadata`
			`run: \|`
use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`echo ${{ steps.build.outputs.pkgs }} >built`
use relatative-srcs (which can be empty) 2023-03-03 01:38:39 +03:00			`echo ${{ steps.build.outputs.srcs-relative-paths }} >srcs`
use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`working-directory: ${{ steps.tea.outputs.prefix }}`

test on more linuxes (#164) 2022-09-29 19:07:07 +03:00			`# tarring ourselves ∵ GHA-artifacts (ludicrously) lose permissions`
			`# /ref https://github.com/actions/upload-artifact/issues/38`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`- name: create artifacts.tgz`
			`run:`
fix ci/cd 2023-02-11 17:59:00 +03:00			`tar czvf $GITHUB_WORKSPACE/artifacts.tgz`
“superenv” (#185) * fixes for dylib ids on darwin (sadly elaborate) * wip 2022-10-17 20:45:32 +03:00			`${{ steps.build.outputs.relative-paths }}`
Fix uploads 2022-10-17 22:20:42 +03:00			`${{ steps.build.outputs.srcs-relative-paths }}`
move codesigning before tests, since it can affect them 2023-02-22 02:23:47 +03:00			`built srcs`
test on more linuxes (#164) 2022-09-29 19:07:07 +03:00			`working-directory: ${{ steps.tea.outputs.prefix }}`

...but only once 2022-09-10 11:09:40 +03:00			`- name: upload artifacts`
			`uses: actions/upload-artifact@v3`
			`with:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`name: ${{ inputs.platform }}`
test on more linuxes (#164) 2022-09-29 19:07:07 +03:00			`path: artifacts.tgz`
...but only once 2022-09-10 11:09:40 +03:00			`if-no-files-found: error`

fix making tar.xz bottles (#158) 2022-09-28 18:14:46 +03:00			`test:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`needs: [get-platform, build]`
use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`runs-on: ${{ matrix.platform.os }}`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00			`strategy:`
			`matrix:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`platform: ${{ fromJson(needs.get-platform.outputs.test-matrix) }}`
Properly deal with contexts at various levels memorize https://docs.github.com/en/actions/learn-github-actions/contexts#context-availability 2023-01-06 03:05:18 +03:00			`outputs:`
need to test for 'true'/'false' 2023-01-12 01:00:05 +03:00			`HAS_SECRETS: ${{ env.HAS_SECRETS }}`
use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`container: ${{ matrix.platform.container }}`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00			`steps:`
less hacks (#162) 2022-09-29 02:19:56 +03:00			`- uses: actions/checkout@v3`
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- uses: teaxyz/pantry.core/.github/actions/setup-brewkit@main`
fixes because pantries changed (#2) 2022-10-26 04:55:49 +03:00
+cJSON using +tea.xyz/brewkit 2023-02-11 13:52:24 +03:00			`- uses: teaxyz/setup@v0`
fix tests pantry.core sets TEA_PREFIX for local dev which confuses things Which is other bugs but I'm fixing those separately 2023-02-22 16:11:06 +03:00			`with:`
			`srcroot: null`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00
fix making tar.xz bottles (#158) 2022-09-28 18:14:46 +03:00			`- uses: actions/download-artifact@v3`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00			`with:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`name: ${{ inputs.platform }}`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00
extra fancy version 2023-03-04 02:09:23 +03:00			`- name: clean destination`
			`# Note: needed when changing a directory to a symlink, for example in`
Use `--unlink` when extracting build artifacts to prevent issues 2023-03-04 01:30:33 +03:00			`# https://github.com/teaxyz/pantry.extra/pull/435`
extra fancy version 2023-03-04 02:09:23 +03:00			`run: \|`
fix making certain changes in packages 2023-03-04 03:17:12 +03:00			`tar tzf $GITHUB_WORKSPACE/artifacts.tgz \| \`
extra fancy version 2023-03-04 02:09:23 +03:00			`awk '{ print length, $0 }' \| \`
			`sort -n -s -r \| \`
			`cut -d" " -f2- \| \`
			`xargs rm -rf`
all the duck in a row 2023-03-04 02:23:29 +03:00			`working-directory: ${{ env.TEA_PREFIX }}`
extra fancy version 2023-03-04 02:09:23 +03:00
			`- name: extract bottles`
cleanup 2023-03-04 02:18:05 +03:00			`run: tar xzvf artifacts.tgz -C $TEA_PREFIX`
test on more linuxes (#164) 2022-09-29 19:07:07 +03:00
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- run: pkg test ${{ inputs.projects }}`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`env:`
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`GITHUB_TOKEN: ${{ github.token }}`
restore brewkit to ^0.7.1 also hack to get tests working again 2023-03-10 03:11:11 +03:00			`# FIXME: this shouldn't be necessary, but it currently is for the`
			`# ubuntu+container test matrix entries. :/`
			`TEA_PANTRY_PATH: ${{ github.workspace }}`
making things relocatable (#122) 2022-09-08 23:40:35 +03:00
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- name: '[post]'`
don’t need cli checkouts anymore (#146) * don’t need cli checkouts anymore * tidy Co-authored-by: Jacob Heider <jacob@tea.xyz> 2023-02-02 17:00:52 +03:00			`run:`
need to test for 'true'/'false' 2023-01-12 01:00:05 +03:00			`echo "HAS_SECRETS=$HAS_SECRETS" >>$GITHUB_ENV`
			`env:`
			`HAS_SECRETS: ${{ secrets.AWS_S3_CACHE != null }}`

make branches actually parallel (#167) * make branches actually parallel * more * wut * wip * wip 2023-02-03 04:07:32 +03:00			`bottle:`
			`needs: [test]`
			`if: inputs.new-version == true`
			`uses: ./.github/workflows/bottle.yml`
			`with:`
			`new-version: ${{ inputs.new-version }}`
			`platform: ${{ inputs.platform }}`
			`secrets: inherit`

			`complain:`
			`needs: [test]`
			`if: inputs.new-version == true && failure()`
			`uses: ./.github/workflows/complain.yml`
			`with:`
			`projects: ${{ inputs.projects }}`
			`platform: ${{ inputs.platform }}`
			`secrets: inherit`

use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`stage:`
			`needs: [test]`
better ci/cd for 3rd-party contributions 2023-01-06 02:31:35 +03:00			`# this only works for PRs from our team to our repo (security! :( )`
need to test for 'true'/'false' 2023-01-12 01:00:05 +03:00			`if: startsWith(github.ref, 'refs/pull/') && startsWith(github.repository, 'teaxyz/pantry.') && needs.test.outputs.HAS_SECRETS == 'true'`
use PR build artifacts on merge (#78) * Uploads artifacts to S3, bottles on a different workflow * rip slack notifications * be more explicit about AWS_S3_CACHE * Revert "fix build-deps outputting stuff we need to build" This reverts commit 972f0715f40794693dc53d5ea2df39cf99fa6732. Co-authored-by: Max Howell <mxcl@me.com> 2022-12-21 00:54:26 +03:00			`runs-on: ubuntu-latest`
Upload .tar.xz bottles too 2022-09-26 17:56:15 +03:00			`steps:`
fix making tar.xz bottles (#158) 2022-09-28 18:14:46 +03:00			`- uses: actions/download-artifact@v3`
Upload .tar.xz bottles too 2022-09-26 17:56:15 +03:00			`with:`
make each platform build independently (#148) * simplify index-packages * Fix import map location * sqs modules needs permission :x * move matrices up a level * move `complain:` to bottle/build * more cleanup * add build-os key to get-platform.ts for self-hosted x86-64 (x64) runners * needs arrays not strings * implement testMatrix * review changes --------- Co-authored-by: Max Howell <mxcl@me.com> 2023-02-03 01:13:38 +03:00			`name: ${{ inputs.platform }}`
separate upload logic from bottling logic to deal with S3 503s ??? sync script changes amazingly close wip wip wip 2022-12-07 22:33:13 +03:00
Actions Refactor (#336) 2023-02-24 23:50:10 +03:00			`- uses: teaxyz/pantry.core/.github/actions/stage-build-artifacts@main`
			`with:`
			`platform: ${{ inputs.platform }}`
			`AWS_S3_BUCKET: ${{ secrets.AWS_S3_CACHE }}`
fix making tar.xz bottles (#158) 2022-09-28 18:14:46 +03:00			`AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}`
			`AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}`