-
Notifications
You must be signed in to change notification settings - Fork 7
106 lines (104 loc) · 3.36 KB
/
build-pipeline.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
name: CI pipeline
on:
push:
branches: [ master, "release/*", "maintenance/*", "ci/*", "ci-*" ]
pull_request:
branches: [ master ]
workflow_call:
secrets: {}
outputs:
hashes:
description: "Hashes of the artifacts that were built"
value: ${{ jobs.build.outputs.hashes }}
permissions:
actions: read
contents: read
env:
MAIN_PYTHON_VERSION: "3.10"
jobs:
build:
runs-on: ubuntu-latest
outputs:
hashes: ${{ steps.artifact-hashes.outputs.hashes }}
steps:
- uses: actions/checkout@v4
- name: Set up Python
uses: actions/setup-python@v5
with:
python-version: ${{ env.MAIN_PYTHON_VERSION }}
- name: Install build tools
run: pip install --upgrade build setuptools pip wheel
- name: build
run: python -m build
- name: Record release artifact hashes
id: artifact-hashes
run: cd dist && echo "hashes=$(sha256sum * | base64 -w0)" >> "$GITHUB_OUTPUT"
- name: Upload dist artifacts
uses: actions/upload-artifact@v4
with:
name: pyhanko-certvalidator-dist
path: dist/
pytest-coverage:
runs-on: ubuntu-latest
needs: build
strategy:
matrix:
python-version: ["3.7", "3.8", "3.9", "3.10", "3.11", "3.12", "3.13"]
steps:
- uses: actions/checkout@v4
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python-version }}
- name: Download dist artifacts
uses: actions/download-artifact@v4
with:
name: pyhanko-certvalidator-dist
path: dist/
- name: Disable Python problem matchers
shell: bash
# we remove setup-python's problem matchers because
# they aren't really an asset given the way pyhanko-certvalidator is tested
run: echo "::remove-matcher owner=python::"
- name: Install Python dependencies
shell: bash
run: |
python -m pip install --upgrade pip
WHEEL=(dist/*.whl)
REQ="${WHEEL[0]}[testing]"
python -m pip install $REQ
- name: Test with pytest
run: |
python -m pytest --cov=./ --cov-report=xml:python-${{ matrix.python-version }}-coverage.xml;
python -m pytest tests/legacy_live_tests/*.py --cov=./ --cov-report=xml:python-${{ matrix.python-version }}-legacy-live-coverage.xml;
- name: Stash coverage report
uses: actions/upload-artifact@v4
with:
name: coverage-${{ strategy.job-index }}
path: "*-coverage.xml"
codecov-upload:
permissions:
actions: write
contents: read
runs-on: ubuntu-latest
needs: pytest-coverage
steps:
# checkout necessary to ensure the uploaded report contains the correct paths
- uses: actions/checkout@v4
- name: Retrieve coverage reports
uses: actions/download-artifact@v4
with:
pattern: coverage-*
path: ./reports/
- name: Upload all coverage reports to Codecov
uses: codecov/codecov-action@v3
with:
directory: ./reports/
flags: unittests
env_vars: OS,PYTHON
name: codecov-umbrella
- name: Clean up coverage reports
continue-on-error: true
uses: GeekyEggo/delete-artifact@v5
with:
name: coverage-*