Skip to content
Release

v0.23.0 #464

Sign in to view logs

v0.23.0

v0.23.0 #464

Workflow file for this run

.github/workflows/release.yaml at 36839e4
name: Release
on:
release:
types: [created]
jobs:
publish:
if: startsWith(github.ref, 'refs/tags/v') == true
name: Publish vcluster
runs-on: ubuntu-22.04
outputs:
release_version: ${{ steps.get_version.outputs.release_version }}
previous_tag: ${{ steps.get_version.outputs.previous_tag }}
permissions:
id-token: write # This is the key for OIDC cosign!
packages: write
contents: write
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- run: git fetch --force --tags
- name: Set up Go
uses: actions/setup-go@v5
with:
cache: false
go-version-file: go.mod
- name: Setup Just
uses: extractions/setup-just@v2
- name: Setup Cosgin
uses: sigstore/cosign-installer@main
with:
cosign-release: "v2.2.3"
- name: Setup Syft
uses: anchore/sbom-action/[email protected]
- name: Set up QEMU
uses: docker/setup-qemu-action@v3
- name: Set up Docker Buildx
uses: docker/setup-buildx-action@v3
- uses: azure/setup-helm@v4
with:
version: "v3.0.2"
- id: get_version
run: |
RELEASE_VERSION=$(echo $GITHUB_REF | sed -nE 's!refs/tags/!!p')
echo "release_version=$RELEASE_VERSION" >> "$GITHUB_OUTPUT"
echo "previous_tag=$(git describe --abbrev=0 --tags $(git rev-list --tags --skip=1 --max-count=1))" >> "$GITHUB_OUTPUT"
- name: Login to DockerHub
uses: docker/login-action@v3
with:
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.DOCKER_PASSWORD }}
- name: Login to ghcr.io
uses: docker/login-action@v3
with:
registry: ghcr.io
username: ${{ secrets.DOCKER_USERNAME }}
password: ${{ secrets.GITHUB_TOKEN }}
- uses: "goreleaser/goreleaser-action@v6"
with:
args: release --clean --timeout 60m
version: "~> v2"
env:
GITHUB_TOKEN: ${{ secrets.GH_ACCESS_TOKEN }}
TELEMETRY_PRIVATE_KEY: ${{ secrets.VCLUSTER_TELEMETRY_PRIVATE_KEY }}
GORELEASER_CURRENT_TAG: ${{ steps.get_version.outputs.release_version }}
GORELEASER_PREVIOUS_TAG: ${{ steps.get_version.outputs.previous_tag }}
- name: Save release assets
uses: actions/upload-artifact@v4
with:
name: release-assets
path: release/
- name: Attach assets to release
uses: FabianKramm/release-asset-action@v1
with:
pattern: "release/*"
github-token: ${{ secrets.GITHUB_TOKEN }}
- name: Trigger cli-docs workflow
uses: actions/github-script@v7
continue-on-error: true
with:
github-token: ${{ secrets.GH_ACCESS_TOKEN }}
script: |
const version = '${{ steps.get_version.outputs.release_version }}';
const ref = '${{ github.ref }}';
const response = await github.rest.actions.createWorkflowDispatch({
owner: 'loft-sh',
repo: 'vcluster-docs',
workflow_id: 'cli-docs.yaml',
ref: 'main',
inputs: {
version,
ref,
}
});
console.log(response);
publish-chart:
if: startsWith(github.ref, 'refs/tags/v') == true
needs: [publish]
runs-on: ubuntu-22.04
steps:
- name: Check out code
uses: actions/checkout@v4
- uses: azure/setup-helm@v4
with:
version: "v3.0.2"
- run: |
RELEASE_VERSION=$(echo $GITHUB_REF | sed -nE 's!refs/tags/v!!p')
helm plugin install https://github.com/chartmuseum/helm-push.git
helm repo add chartmuseum $CHART_MUSEUM_URL --username $CHART_MUSEUM_USER --password $CHART_MUSEUM_PASSWORD
helm cm-push --force --version="$RELEASE_VERSION" --app-version="$RELEASE_VERSION" chart chartmuseum
env:
CHART_MUSEUM_URL: "https://charts.loft.sh/"
CHART_MUSEUM_USER: ${{ secrets.CHART_MUSEUM_USER }}
CHART_MUSEUM_PASSWORD: ${{ secrets.CHART_MUSEUM_PASSWORD }}
# The workflow will only trigger on non-draft releases
# https://docs.github.com/en/actions/writing-workflows/choosing-when-your-workflow-runs/events-that-trigger-workflows#release
notify_release:
needs:
- publish
runs-on: ubuntu-22.04
steps:
- name: Notify \#product-releases Slack channel
uses: loft-sh/github-actions/.github/actions/release-notification@v1
with:
version: ${{ needs.publish.outputs.version }}
previous_tag: ${{ needs.publish.outputs.previous_tag }}
target_repo: 'loft-sh/vcluster'
product: 'vCluster'
webhook_url: ${{ secrets.SLACK_WEBHOOK_URL_PRODUCT_RELEASES }}