-
Notifications
You must be signed in to change notification settings - Fork 1
219 lines (200 loc) · 6.67 KB
/
npm-manual-publish.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions
name: manual-publish
on:
workflow_dispatch:
inputs:
semver:
description: 'Leave empty or input major|minor|patch'
required: false
default: ''
jobs:
build:
runs-on: ${{ matrix.os }}
container: node:current
timeout-minutes: 60
strategy:
matrix:
node: ['lts/*']
os: [ubuntu-latest]
steps:
- uses: actions/checkout@v4
with:
# pulls all commits (needed for lerna / semantic release to correctly version)
fetch-depth: "0"
# Caution: disable fix below at FIRST publish, then enable
- name: Fix for semantic release
# pulls all tags (needed for lerna / semantic release to correctly version)
run: |
export cwd=`pwd`
git config --global --add safe.directory $cwd
git fetch --depth=1 origin +refs/tags/*:refs/tags/*
- name: Use Node.js ${{ matrix.node }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node }}
registry-url: 'https://registry.npmjs.org'
- name: Cache
uses: actions/cache@v4
id: cache-lerna
env:
cache-name: cache-lerna
with:
path: |
node_modules
package-lock.json
key: ${{ runner.OS }}-build-${{ env.cache-name }}-${{ github.ref }}-${{ hashFiles('**/package-lock.json') }}
restore-keys: |
${{ runner.OS }}-build-${{ env.cache-name }}-${{ github.ref }}-
- name: Prepare
run: |
uname -a
export DEBIAN_FRONTEND=noninteractive
apt-get update -qq --yes > /dev/null
# apt-get upgrade -qq --yes > /dev/null
apt-get install -qq --yes --no-install-recommends bash dnsutils git jq locales net-tools wget > /dev/null
apt-get install -qq --yes postgresql-client libpq-dev > /dev/null
uname -a
npm -v && node -v
git --version
openssl version
cat /etc/*release
sed -i 's/^# *\(en_US.UTF-8\)/\1/' /etc/locale.gen
locale-gen
locale -a
netstat -tunpl
chmod a+w -R .
dig jaeger
- name: Verify
run: |
echo $GITHUB_REF
# github project/settings/Secrets/New repository secret: NPM_TOKEN
npm ping
npm whoami
psql -V
dig postgres
echo "\l" | psql -h $POSTGRES_HOST -p $POSTGRES_PORT -U$POSTGRES_USER -d postgres
psql -h $POSTGRES_HOST -p $POSTGRES_PORT -U$POSTGRES_USER -d $POSTGRES_DB -c "\d+"
psql -h $POSTGRES_HOST -p $POSTGRES_PORT -U$POSTGRES_USER -d $POSTGRES_DB -c "SHOW TIMEZONE;"
env:
CI: true
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
POSTGRES_HOST: postgres
POSTGRES_PORT: ${{ job.services.postgres.ports[5432] }}
POSTGRES_DB: db_ci_test
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
PGPASSWORD: postgres
- name: Inatall Dependencies
timeout-minutes: 15
run: |
chmod a+w -R .
# DO NOT execute: npm config set unsafe-perm=true
export cwd=`pwd`
# .github/workflows/fix.sh
npm i --no-audit -g autocannon c8 lerna rollup tsx zx
# npm run purge
npm i --no-audit
env:
CI: true
- name: Build
run: |
chmod a+w -R .
whoami
export cwd=`pwd`
. .scripts/ci/ci-env.sh
.scripts/ci/ci-prepare.sh
npm run build --if-present
env:
CI: true
- name: Lint
run: |
export cwd=`pwd`
. .scripts/ci/ci-env.sh
.scripts/ci/ci-prepare.sh
npm run lint:nofix
npm run lint:cycle
env:
CI: true
# - name: Init Database
# run: |
# export cwd=`pwd`
# . .scripts/ci/ci-env.sh
# .scripts/ci/ci-prepare.sh
# .scripts/ci/ci-init-db.sh
# env:
# CI: true
# POSTGRES_HOST: postgres
# POSTGRES_PORT: ${{ job.services.postgres.ports[5432] }}
# POSTGRES_DB: db_ci_test
# POSTGRES_USER: postgres
# POSTGRES_PASSWORD: postgres
# PGPASSWORD: postgres
- name: Testing
run: |
export cwd=`pwd`
. .scripts/ci/ci-env.sh
.scripts/ci/ci-prepare.sh
# npm run ci
npm run test
env:
CI: true
# use `localhost` if running the job on the VM
# use `postgres` if running the job on a container
POSTGRES_HOST: postgres
POSTGRES_PORT: ${{ job.services.postgres.ports[5432] }}
POSTGRES_DB: db_ci_test
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
PGPASSWORD: postgres
# redis
REDIS_HOST: redis
REDIS_PORT: 6379
# otel
OTEL_EXPORTER_OTLP_ENDPOINT: http://jaeger:4317
- name: NPM Publish
run: |
npm ping
npm whoami
chmod a+w -R .
export cwd=`pwd`
. .scripts/ci/ci-env.sh
# fix: fatal: detected dubious ownership in repository
git config --global --add safe.directory $cwd
# git restore .
git reset --hard
git config user.name $GITHUB_ACTOR
git config user.email gh-actions-${GITHUB_ACTOR}@github.com
# npm run pub major
rm -rf package-lock.json
rm -rf packages/*/package-lock.json
.scripts/publish.sh --yes --no-private --conventional-commits --create-release github ${{ github.event.inputs.semver }}
git push -v origin --follow-tags
env:
CI: true
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
services:
postgres:
image: postgres:alpine
ports:
- 5432:5432
env:
POSTGRES_DB: db_ci_test
POSTGRES_USER: postgres
POSTGRES_PASSWORD: postgres
# needed because the postgres container does not provide a healthcheck
options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5
jaeger:
image: jaegertracing/all-in-one
env:
TZ: 'Asia/Chongqing'
COLLECTOR_OTLP_ENABLED: 'true'
ports:
- 4317:4317
- 4318:4318
- 5778:5778
- 6831:6831/udp
- 6832:6832/udp
- 14250:14250
- 16686:16686