Upload Python Package to jfrog #15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# SPDX-FileCopyrightText: 2024 Ledger SAS | |
# | |
# SPDX-License-Identifier: Apache-2.0 | |
name: Upload Python Package to jfrog | |
on: | |
release: | |
types: [released] | |
workflow_dispatch: | |
jobs: | |
deploy: | |
runs-on: outpost-os-shared-small | |
environment: ledger-publish | |
permissions: | |
id-token: write | |
contents: read | |
attestations: write | |
steps: | |
- name: Set up Python 3.10 | |
uses: actions/setup-python@v5 | |
with: | |
python-version: '3.10' | |
- name: Install build basics | |
run: | | |
pip install build wheel-filename blob | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
fetch-tags: true | |
- name: build package | |
run: python3 -m build . --sdist --wheel | |
- name: get back local build version | |
id: get_pkg_version | |
run: | | |
from wheel_filename import parse_wheel_filename | |
import glob | |
import os | |
from random import choices | |
from string import ascii_letters | |
whl = str(glob.glob('dist/*.whl')[0]); | |
pwf = parse_wheel_filename('dist/' + whl); | |
with open(os.environ["GITHUB_OUTPUT"], "a") as gh_output: | |
delimiter = "".join(choices(ascii_letters, k=16)) | |
gh_output.writelines([ | |
f"pkg_version<<{delimiter}\n", | |
f"{pwf.version}\n", | |
delimiter + "\n", | |
]) | |
shell: python | |
- name: Login to JFrog Ledger | |
uses: LedgerHQ/actions-security/actions/jfrog-login@actions/jfrog-login-1 | |
- name: set jfrog Repo URL | |
run: jf pip-config --repo-resolve=${{ secrets.JFROG_PYPI_REPO_URL }} | |
- name: upload package | |
run: jf rt u --build-name=dts-util-devel --build-number=1 --module=dts-utils 'dist/*.tar.gz' 'outpost-pypi-dev-green/outpost-pypi-dev-green/' | |
- name: Attest | |
id: attest | |
uses: LedgerHQ/actions-security/actions/attest@actions/attest-1 | |
with: | |
subject-path: 'dist/*.tar.gz' | |
push-to-registry: false | |
- name: test install from jfrog | |
run: | | |
jf pip install dts-utils==${{ steps.get_pkg_version.outputs.pkg_version }} | |
pip show dts-utils |