-
-
Notifications
You must be signed in to change notification settings - Fork 0
40 lines (33 loc) · 1.15 KB
/
fetch.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
name: Fetch and release
on:
workflow_dispatch:
inputs:
version:
description: 'Enter release version'
required: true
jobs:
release:
name: Create the release
runs-on: ubuntu-latest
permissions:
contents: write # to upload assets to releases
attestations: write # to upload assets attestation for build provenance
id-token: write # grant additional permission to attestation action to mint the OIDC token permission
steps:
- name: Checkout the repository
uses: actions/checkout@v4
- name: Fetch Deb packages
run: bash get-debs.sh "${{ github.event.inputs.version }}"
- name: Create the release
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: gh release create --title "${{ github.event.inputs.version }}" --generate-notes
- name: Upload packages
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: gh release upload "${{ github.event.inputs.version }}" *.deb
- name: Attest release files
id: attest
uses: actions/attest-build-provenance@v1
with:
subject-path: '*.deb'