Bump actions/checkout from 4.2.0 to 4.2.2 #1344
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow will build a Java project with Gradle and cache/restore any dependencies to improve the workflow execution time | |
| # For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-gradle | |
| name: Build | |
| on: | |
| push: | |
| branches: [ main ] | |
| tags: [ "v*.*.*" ] | |
| pull_request: | |
| branches: [ main ] | |
| workflow_dispatch: | |
| inputs: | |
| publish_artifacts: | |
| description: "Publish artifacts: true or false?" | |
| default: "true" | |
| permissions: | |
| contents: read | |
| jobs: | |
| build: | |
| permissions: | |
| packages: write | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
| - uses: gradle/wrapper-validation-action@f9c9c575b8b21b6485636a91ffecd10e558c62f6 # v3.5.0 | |
| - name: Fetch version history | |
| # Do NOT want to fetch all tags if building a specific tag. | |
| # Doing so could result in code published with wrong version, if newer tags have been pushed | |
| if: (!startsWith(github.ref, 'refs/tags/')) | |
| run: git fetch --tag --unshallow | |
| - name: Set up JDK | |
| uses: actions/setup-java@b36c23c0d998641eff861008f374ee103c25ac73 # v4.4.0 | |
| with: | |
| java-version: 17 | |
| distribution: 'temurin' | |
| cache: gradle | |
| - name: Install Protoc | |
| run: sudo apt install protobuf-compiler | |
| - name: Build | |
| run: ./gradlew build | |
| - name: Publish | |
| if: github.event_name == 'push' || github.event.inputs.publish_artifacts == 'true' | |
| env: | |
| ORG_GRADLE_PROJECT_signingKey: ${{ secrets.ORG_GRADLE_PROJECT_SIGNINGKEY }} | |
| ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.ORG_GRADLE_PROJECT_SIGNINGPASSWORD }} | |
| ORG_GRADLE_PROJECT_SONA_USERNAME: ${{ secrets.SONA_USERNAME }} | |
| ORG_GRADLE_PROJECT_SONA_PASSWORD: ${{ secrets.SONA_PASSWORD }} | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| run: | | |
| ./gradlew cV | |
| ./gradlew publish closeAndReleaseStagingRepository | |
| - name: Login to GitHub Container Registry | |
| uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 | |
| with: | |
| registry: ghcr.io | |
| username: ${{ github.actor }} | |
| password: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Push Docker images | |
| if: startsWith(github.ref, 'refs/tags/') | |
| run: ./gradlew pushAppImage | |
| create-gh-release: | |
| if: startsWith(github.ref, 'refs/tags/') && !endsWith(github.ref, '-alpha') | |
| needs: build | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write | |
| steps: | |
| - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v3.0.0 | |
| - name: Create GitHut Release | |
| uses: softprops/action-gh-release@c062e08bd532815e2082a85e87e3ef29c3e6d191 # v2.0.8 | |
| with: | |
| generate_release_notes: true |