mirror of
https://github.com/ModernRelay/omnigraph.git
synced 2026-06-09 01:35:18 +02:00
96dbe9dec0
Some checks failed
CI / Classify Changes (push) Has been cancelled
CI / Check AGENTS.md Links (push) Has been cancelled
CI / Container Entrypoint (push) Has been cancelled
Release Edge / Prepare edge release (push) Has been cancelled
CI / Test Workspace (push) Has been cancelled
CI / Test omnigraph-server --features aws (push) Has been cancelled
CI / Test Windows release binaries (push) Has been cancelled
CI / RustFS S3 Integration (push) Has been cancelled
Release Edge / Build edge omnigraph-linux-x86_64 (push) Has been cancelled
Release Edge / Build edge omnigraph-macos-arm64 (push) Has been cancelled
Release Edge / Build edge omnigraph-windows-x86_64 (push) Has been cancelled
Release Edge / Smoke Windows installer (push) Has been cancelled
The v0.6.1 Release shipped binaries but the Homebrew tap update job died at the audit step (brew not on the ubuntu runner; exit 127), skipping the formula push so the tap stayed at 0.6.0. - Install Homebrew via Homebrew/actions/setup-homebrew so brew is available. - Make both the setup and audit steps continue-on-error: they are best-effort diagnostics (the formula is correct by construction via update-homebrew-formula.sh), so neither can skip the actual tap publish. - Drop --online from brew audit for deterministic, network-independent linting.
181 lines
6.6 KiB
YAML
181 lines
6.6 KiB
YAML
name: Release
|
|
|
|
on:
|
|
push:
|
|
tags:
|
|
- "v*"
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
build_release:
|
|
name: Build ${{ matrix.asset_name }}
|
|
runs-on: ${{ matrix.runner }}
|
|
permissions:
|
|
contents: write
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
include:
|
|
- runner: ubuntu-latest
|
|
asset_name: omnigraph-linux-x86_64
|
|
- runner: macos-14
|
|
asset_name: omnigraph-macos-arm64
|
|
- runner: windows-latest
|
|
asset_name: omnigraph-windows-x86_64
|
|
env:
|
|
CARGO_TERM_COLOR: always
|
|
steps:
|
|
- name: Checkout source
|
|
uses: actions/checkout@v5.0.1
|
|
|
|
- name: Install Linux dependencies
|
|
if: runner.os == 'Linux'
|
|
run: |
|
|
sudo apt-get update
|
|
sudo apt-get install -y protobuf-compiler libprotobuf-dev
|
|
|
|
- name: Install macOS dependencies
|
|
if: runner.os == 'macOS'
|
|
run: brew install protobuf
|
|
|
|
- name: Install Windows dependencies
|
|
if: runner.os == 'Windows'
|
|
run: choco install protoc -y
|
|
|
|
- name: Install Rust stable
|
|
uses: dtolnay/rust-toolchain@stable
|
|
with:
|
|
toolchain: stable
|
|
|
|
- name: Cache Rust build data
|
|
uses: Swatinem/rust-cache@v2
|
|
with:
|
|
workspaces: |
|
|
. -> target
|
|
|
|
- name: Build release binaries
|
|
run: cargo build --release --locked -p omnigraph-cli -p omnigraph-server
|
|
|
|
- name: Package Unix release archive
|
|
if: runner.os != 'Windows'
|
|
run: |
|
|
mkdir -p release
|
|
install -m 0755 target/release/omnigraph release/omnigraph
|
|
install -m 0755 target/release/omnigraph-server release/omnigraph-server
|
|
tar -C release -czf "${{ matrix.asset_name }}.tar.gz" omnigraph omnigraph-server
|
|
shasum -a 256 "${{ matrix.asset_name }}.tar.gz" > "${{ matrix.asset_name }}.sha256"
|
|
|
|
- name: Package Windows release archive
|
|
if: runner.os == 'Windows'
|
|
run: |
|
|
New-Item -ItemType Directory -Force -Path release | Out-Null
|
|
Copy-Item target/release/omnigraph.exe release/omnigraph.exe
|
|
Copy-Item target/release/omnigraph-server.exe release/omnigraph-server.exe
|
|
Compress-Archive -Path release/omnigraph.exe, release/omnigraph-server.exe -DestinationPath "${{ matrix.asset_name }}.zip" -Force
|
|
$hash = (Get-FileHash "${{ matrix.asset_name }}.zip" -Algorithm SHA256).Hash.ToLowerInvariant()
|
|
"$hash ${{ matrix.asset_name }}.zip" | Out-File -FilePath "${{ matrix.asset_name }}.sha256" -Encoding ascii
|
|
New-Item -ItemType Directory -Force -Path verify | Out-Null
|
|
Expand-Archive -Path "${{ matrix.asset_name }}.zip" -DestinationPath verify -Force
|
|
$items = Get-ChildItem -Path verify -File
|
|
if ($items.Count -ne 2 -or !(Test-Path verify/omnigraph.exe) -or !(Test-Path verify/omnigraph-server.exe)) {
|
|
throw "Windows release archive is missing expected binaries"
|
|
}
|
|
|
|
- name: Publish GitHub release assets
|
|
uses: softprops/action-gh-release@v2.5.0
|
|
with:
|
|
files: |
|
|
${{ matrix.asset_name }}.*
|
|
|
|
update_homebrew_tap:
|
|
name: Update Homebrew tap
|
|
needs: build_release
|
|
runs-on: ubuntu-latest
|
|
permissions:
|
|
contents: read
|
|
env:
|
|
HOMEBREW_TAP_TOKEN: ${{ secrets.HOMEBREW_TAP_TOKEN }}
|
|
steps:
|
|
- name: Skip if HOMEBREW_TAP_TOKEN is not configured
|
|
if: env.HOMEBREW_TAP_TOKEN == ''
|
|
run: |
|
|
echo "HOMEBREW_TAP_TOKEN is not set; skipping Homebrew tap update."
|
|
echo "HOMEBREW_TAP_SKIP=1" >> "$GITHUB_ENV"
|
|
|
|
- name: Checkout source
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
uses: actions/checkout@v5.0.1
|
|
|
|
- name: Checkout Homebrew tap
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
uses: actions/checkout@v5.0.1
|
|
with:
|
|
repository: ModernRelay/homebrew-tap
|
|
token: ${{ secrets.HOMEBREW_TAP_TOKEN }}
|
|
path: homebrew-tap
|
|
|
|
- name: Update formula from release assets
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
env:
|
|
GH_TOKEN: ${{ github.token }}
|
|
run: |
|
|
./scripts/update-homebrew-formula.sh "${GITHUB_REF_NAME}" homebrew-tap/Formula/omnigraph.rb
|
|
|
|
# Diagnostic only: brew is not on PATH on the ubuntu runner by default, so
|
|
# set it up explicitly. Both this setup and the audit below are best-effort
|
|
# canaries, not gates — continue-on-error on each keeps a failed/flaky brew
|
|
# (the action is pinned to a moving @master ref) from skipping the actual
|
|
# tap publish below. The formula is correct by construction
|
|
# (update-homebrew-formula.sh), so brew tooling must never block the push.
|
|
- name: Set up Homebrew
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
continue-on-error: true
|
|
uses: Homebrew/actions/setup-homebrew@master
|
|
|
|
- name: Audit generated formula
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
continue-on-error: true
|
|
run: |
|
|
# Audit the checked-out tap by name (brew audit rejects bare paths
|
|
# and needs tap context). Symlink the checkout into Homebrew's Taps
|
|
# tree so `modernrelay/tap/omnigraph` resolves to it. Offline audit
|
|
# (no --online) keeps it deterministic; it still catches the
|
|
# ComponentsOrder/structure class of problems.
|
|
tap_dir="$(brew --repository)/Library/Taps/modernrelay/homebrew-tap"
|
|
mkdir -p "$(dirname "$tap_dir")"
|
|
ln -sfn "$PWD/homebrew-tap" "$tap_dir"
|
|
brew audit --strict modernrelay/tap/omnigraph
|
|
|
|
- name: Commit and push formula update
|
|
if: env.HOMEBREW_TAP_SKIP != '1'
|
|
working-directory: homebrew-tap
|
|
run: |
|
|
if git diff --quiet -- Formula/omnigraph.rb; then
|
|
echo "Formula already up to date"
|
|
exit 0
|
|
fi
|
|
|
|
git config user.name "github-actions[bot]"
|
|
git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
|
|
git add Formula/omnigraph.rb
|
|
git commit -m "Update Omnigraph formula to ${GITHUB_REF_NAME}"
|
|
git push origin HEAD:main
|
|
|
|
smoke_windows_installer:
|
|
name: Smoke Windows installer
|
|
needs: build_release
|
|
if: startsWith(github.ref, 'refs/tags/v')
|
|
runs-on: windows-latest
|
|
permissions:
|
|
contents: read
|
|
steps:
|
|
- name: Checkout source
|
|
uses: actions/checkout@v5.0.1
|
|
|
|
- name: Install from tagged release
|
|
run: ./scripts/install.ps1 -Version "$env:GITHUB_REF_NAME" -InstallDir "$env:RUNNER_TEMP/omnigraph-bin"
|
|
|
|
- name: Smoke installed binaries
|
|
run: |
|
|
& "$env:RUNNER_TEMP/omnigraph-bin/omnigraph.exe" version
|
|
& "$env:RUNNER_TEMP/omnigraph-bin/omnigraph-server.exe" --help
|