Merge pull request #48 from cortexapps/47-add-showdrafts-option-for-s… #11

Workflow file for this run

.github/workflows/publish.yml at 2795f6f

	name: Publish

	on:
	push:
	branches:
	- main
	paths:
	- 'cortexapps_cli/cortex.py'
	- '.github/workflows/publish.yml'

	env:
	CORTEX_API_KEY: ${{ secrets.CORTEX_API_KEY_PRODUCTION }}
	DOCKER_USERNAME: jeffschnittercortex
	DOCKER_PASSWORD: ${{ secrets.DOCKER_PASSWORD }}
	DOCKER_ORGANIZATION: cortexapp

	jobs:
	pypi:
	runs-on: ubuntu-latest
	outputs:
	EMAIL: ${{ steps.git-details.outputs.EMAIL }}
	PUSHER: ${{ steps.git-details.outputs.PUSHER }}
	SHA: ${{ steps.publish.outputs.SHA }}
	URL: ${{ steps.git-details.outputs.URL }}
	VERSION: ${{ steps.git-details.outputs.VERSION }}
	steps:
	- uses: actions/checkout@v3

	- name: Bump version and push tag
	uses: anothrNick/[email protected]
	env:
	GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}
	WITH_V: false

	- name: Set up Python 3.11
	uses: actions/setup-python@v4
	with:
	python-version: 3.11

	- name: Install dependencies
	run: \|
	python -m pip install --upgrade pip
	pip install poetry

	- name: Git details about version
	id: git-details
	env:
	GITHUB_CONTEXT: ${{ toJson(github) }}
	run: \|
	version=$(git describe --tags --abbrev=0)
	echo "VERSION=${version}" >> $GITHUB_ENV
	echo "VERSION=${version}" >> $GITHUB_OUTPUT
	pusher=$(echo "$GITHUB_CONTEXT" \| jq -r ".event.pusher.name")
	email=$(echo "$GITHUB_CONTEXT" \| jq -r ".event.pusher.email")
	echo "PUSHER=${pusher}" >> $GITHUB_OUTPUT
	echo "EMAIL=${email}" >> $GITHUB_OUTPUT
	echo "URL=https://pypi.org/project/cortexapps-cli/${version}/" >> $GITHUB_OUTPUT

	- name: Publish
	id: publish
	run: \|
	poetry config pypi-token.pypi ${{ secrets.PYPI_API_TOKEN }}
	poetry version ${{ env.VERSION }}
	poetry build
	poetry publish
	sha=$(sha256sum dist/*.tar.gz \| awk '{ print $1 }')
	echo "SHA=${sha}" >> $GITHUB_OUTPUT

	pypi-deploy-event:
	needs: pypi
	runs-on: ubuntu-latest
	container:
	image: cortexapp/cli:latest
	steps:

	- name: Post pypi deploy event to Cortex
	run: \|
	cat << EOF > /tmp/deploy.json
	{
	"customData": {},
	"deployer": {
	"email": "${{needs.pypi.outputs.EMAIL}}",
	"name": "${{needs.pypi.outputs.PUSHER}}"
	},
	"environment": "PyPI.org",
	"sha": "${{needs.pypi.outputs.SHA}}",
	"timestamp": "$(date +'%Y-%m-%dT%H:%M:%S').000Z",
	"title": "${{needs.pypi.outputs.VERSION}}",
	"type": "DEPLOY",
	"url": "${{needs.pypi.outputs.URL}}"
	}
	EOF
	cortex deploys add -t cli -f /tmp/deploy.json
	docker:
	needs: pypi
	runs-on: ubuntu-latest
	outputs:
	SHA: ${{ steps.build-docker-image.outputs.SHA }}
	URL: ${{ steps.build-docker-image.outputs.URL }}
	steps:
	- uses: actions/checkout@v3

	- name: Get version info
	env:
	VERSION: ${{needs.pypi.outputs.VERSION}}
	run: \|
	echo "VERSION=${VERSION}" >> $GITHUB_ENV
	echo "DOCKER_IMAGE=${{ env.DOCKER_ORGANIZATION }}/cli:${VERSION}" >> $GITHUB_ENV
	echo "DOCKER_IMAGE_LATEST=${{ env.DOCKER_ORGANIZATION }}/cli:latest" >> $GITHUB_ENV

	- name: build docker image
	id: build-docker-image
	working-directory: ./docker
	run: \|
	docker build -t ${{ env.DOCKER_IMAGE }} .
	sha=$(docker images --format {{.ID}} --no-trunc ${{ env.DOCKER_ORGANIZATION }}/cli:${{ env.VERSION }})
	echo "SHA=${sha}" >> $GITHUB_OUTPUT
	echo "URL=https://hub.docker.com/layers/${{ env.DOCKER_ORGANIZATION }}/cli/${{ env.VERSION }}/images/${sha}" >> $GITHUB_OUTPUT

	- name: Run Trivy on Root Image
	uses: aquasecurity/trivy-action@master
	with:
	image-ref: ${{ env.DOCKER_IMAGE }}
	format: table
	exit-code: '1'
	ignore-unfixed: true
	severity: CRITICAL,HIGH

	- name: push docker image
	run: \|
	docker login -u ${{ env.DOCKER_USERNAME }} -p ${{ env.DOCKER_PASSWORD }}
	docker tag ${{ env.DOCKER_IMAGE }} ${{ env.DOCKER_IMAGE_LATEST }}
	docker push ${{ env.DOCKER_IMAGE }}
	docker push ${{ env.DOCKER_IMAGE_LATEST }}

	docker-deploy-event:
	needs:
	- docker
	- pypi
	runs-on: ubuntu-latest
	container:
	image: cortexapp/cli:latest
	steps:

	- name: Post docker deploy event to Cortex
	run: \|
	cat << EOF > /tmp/deploy.json
	{
	"customData": {},
	"deployer": {
	"email": "${{needs.pypi.outputs.EMAIL}}",
	"name": "${{needs.pypi.outputs.PUSHER}}"
	},
	"environment": "docker",
	"sha": "${{needs.docker.outputs.SHA}}",
	"timestamp": "$(date +'%Y-%m-%dT%H:%M:%S').000Z",
	"title": "${{needs.pypi.outputs.VERSION}}",
	"type": "DEPLOY",
	"url": "${{needs.docker.outputs.URL}}"
	}
	EOF
	cortex deploys add -t cli -f /tmp/deploy.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #48 from cortexapps/47-add-showdrafts-option-for-s… #11

Workflow file

Merge pull request #48 from cortexapps/47-add-showdrafts-option-for-s… #11

Jobs

Run details

Workflow file for this run