mirror of
https://github.com/inventree/InvenTree.git
synced 2026-06-06 08:54:24 +00:00
dependabot[bot]
a0b2452ba5
Bumps the dependencies group with 10 updates: | Package | From | To | | --- | --- | --- | | [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) | `4.0.0` | `4.1.0` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `4.0.0` | `4.1.0` | | [docker/login-action](https://github.com/docker/login-action) | `4.1.0` | `4.2.0` | | [docker/metadata-action](https://github.com/docker/metadata-action) | `6.0.0` | `6.1.0` | | [depot/build-push-action](https://github.com/depot/build-push-action) | `1.17.0` | `1.18.0` | | [oasdiff/oasdiff-action](https://github.com/oasdiff/oasdiff-action) | `0.0.47` | `0.0.48` | | [actions/cache](https://github.com/actions/cache) | `4.3.0` | `5.0.5` | | [ad-m/github-push-action](https://github.com/ad-m/github-push-action) | `1.1.0` | `1.3.0` | | [github/codeql-action](https://github.com/github/codeql-action) | `4.35.5` | `4.36.0` | | [actions/stale](https://github.com/actions/stale) | `10.2.0` | `10.3.0` | Updates `docker/setup-qemu-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/ce360397dd3f832beb865e1373c09c0e9f86d70a...06116385d9baf250c9f4dcb4858b16962ea869c3) Updates `docker/setup-buildx-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/4d04d5d9486b7bd6fa91e7baf45bbb4f8b9deedd...d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5) Updates `docker/login-action` from 4.1.0 to 4.2.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](https://github.com/docker/login-action/compare/4907a6ddec9925e35a0a9e82d7399ccc52663121...650006c6eb7dba73a995cc03b0b2d7f5ca915bee) Updates `docker/metadata-action` from 6.0.0 to 6.1.0 - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](https://github.com/docker/metadata-action/compare/030e881283bb7a6894de51c315a6bfe6a94e05cf...80c7e94dd9b9319bd5eb7a0e0fe9291e23a2a2e9) Updates `depot/build-push-action` from 1.17.0 to 1.18.0 - [Release notes](https://github.com/depot/build-push-action/releases) - [Commits](https://github.com/depot/build-push-action/compare/5f3b3c2e5a00f0093de47f657aeaefcedff27d18...98e78adca7817480b8185f474a400b451d74e287) Updates `oasdiff/oasdiff-action` from 0.0.47 to 0.0.48 - [Release notes](https://github.com/oasdiff/oasdiff-action/releases) - [Commits](https://github.com/oasdiff/oasdiff-action/compare/6147a58e5d1249a12f42fc864ab791d571a30015...50e6a3413e5aa9c3ae4d8393c34745be44288b46) Updates `actions/cache` from 4.3.0 to 5.0.5 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/0057852bfaa89a56745cba8c7296529d2fc39830...27d5ce7f107fe9357f9df03efb73ab90386fccae) Updates `ad-m/github-push-action` from 1.1.0 to 1.3.0 - [Release notes](https://github.com/ad-m/github-push-action/releases) - [Commits](https://github.com/ad-m/github-push-action/compare/4cc74773234f74829a8c21bc4d69dd4be9cfa599...881a6320fdb16eb5318c5054f31c218aec2b324c) Updates `github/codeql-action` from 4.35.5 to 4.36.0 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/9e0d7b8d25671d64c341c19c0152d693099fb5ba...7211b7c8077ea37d8641b6271f6a365a22a5fbfa) Updates `actions/stale` from 10.2.0 to 10.3.0 - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/stale/compare/b5d41d4e1d5dceea10e7104786b73624c18a190f...eb5cf3af3ac0a1aa4c9c45633dd1ae542a27a899) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: docker/setup-buildx-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: docker/login-action dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: docker/metadata-action dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: depot/build-push-action dependency-version: 1.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: oasdiff/oasdiff-action dependency-version: 0.0.48 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: actions/cache dependency-version: 5.0.5 dependency-type: direct:production update-type: version-update:semver-major dependency-group: dependencies - dependency-name: ad-m/github-push-action dependency-version: 1.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-version: 4.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: actions/stale dependency-version: 10.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
253 lines
9.4 KiB
YAML
253 lines
9.4 KiB
YAML
# Runs on releases
|
|
|
|
name: Publish release
|
|
on:
|
|
release:
|
|
types: [published]
|
|
permissions:
|
|
contents: read
|
|
env:
|
|
python_version: 3.11
|
|
|
|
jobs:
|
|
stable:
|
|
runs-on: ubuntu-24.04
|
|
name: Write release to stable branch
|
|
permissions:
|
|
contents: write
|
|
pull-requests: write
|
|
env:
|
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
steps:
|
|
- name: Checkout Code
|
|
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # pin@v6.0.2
|
|
with:
|
|
persist-credentials: false
|
|
- name: Version Check
|
|
run: |
|
|
pip install --require-hashes -r contrib/dev_reqs/requirements.txt
|
|
python3 .github/scripts/version_check.py
|
|
- name: Push to Stable Branch
|
|
uses: ad-m/github-push-action@881a6320fdb16eb5318c5054f31c218aec2b324c # pin@v1.3.0
|
|
if: env.stable_release == 'true'
|
|
with:
|
|
github_token: ${{ secrets.GITHUB_TOKEN }}
|
|
branch: stable
|
|
force: true
|
|
|
|
build:
|
|
runs-on: ubuntu-24.04
|
|
name: Build and attest frontend
|
|
permissions:
|
|
id-token: write
|
|
contents: write
|
|
attestations: write
|
|
steps:
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # pin@v6.0.2
|
|
with:
|
|
persist-credentials: false
|
|
- name: Environment Setup
|
|
uses: ./.github/actions/setup
|
|
with:
|
|
npm: true
|
|
- name: Install dependencies
|
|
run: cd src/frontend && yarn install
|
|
- name: Build frontend
|
|
run: cd src/frontend && npm run compile && npm run build
|
|
- name: Create SBOM for frontend
|
|
uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # pin@v0
|
|
with:
|
|
artifact-name: frontend-build.spdx
|
|
path: src/frontend
|
|
- name: Write version file - SHA
|
|
run: cd src/backend/InvenTree/web/static/web/.vite && echo "$GITHUB_SHA" > sha.txt
|
|
- name: Write version file - TAG
|
|
run: cd src/backend/InvenTree/web/static/web/.vite && echo "${REF_NAME}" > tag.txt
|
|
env:
|
|
REF_NAME: ${{ github.ref_name }}
|
|
- name: Write version file - SOURCE
|
|
run: cd src/backend/InvenTree/web/static/web/.vite && echo "GitHub Actions build on $(date --utc +%Y-%m-%dT%H:%M:%SZ)" > source.txt
|
|
- name: Zip frontend
|
|
run: |
|
|
cd src/backend/InvenTree/web/static/web
|
|
zip -r ../frontend-build.zip * .vite
|
|
- name: Attest Build Provenance
|
|
id: attest
|
|
uses: actions/attest-build-provenance@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 # pin@v1
|
|
with:
|
|
subject-path: "${{ github.workspace }}/src/backend/InvenTree/web/static/frontend-build.zip"
|
|
|
|
- name: Upload frontend
|
|
run: gh release upload ${REF} src/backend/InvenTree/web/static/frontend-build.zip#frontend-build.zip
|
|
env:
|
|
REF: ${{ github.ref_name }}
|
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
- name: Upload frontend to artifacts
|
|
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # pin@v7.0.1
|
|
with:
|
|
name: frontend-build
|
|
path: src/backend/InvenTree/web/static/frontend-build.zip
|
|
- name: Upload Attestation
|
|
run: gh release upload ${REF} ${BUNDLE_PATH}#frontend-build.intoto.jsonl
|
|
env:
|
|
REF: ${{ github.ref_name }}
|
|
BUNDLE_PATH: ${{ steps.attest.outputs.bundle-path}}
|
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
docs:
|
|
runs-on: ubuntu-24.04
|
|
name: Build and publish documentation
|
|
permissions:
|
|
contents: write
|
|
env:
|
|
INVENTREE_DB_ENGINE: sqlite3
|
|
INVENTREE_DB_NAME: inventree
|
|
INVENTREE_MEDIA_ROOT: /home/runner/work/InvenTree/test_inventree_media
|
|
INVENTREE_STATIC_ROOT: /home/runner/work/InvenTree/test_inventree_static
|
|
INVENTREE_BACKUP_DIR: /home/runner/work/InvenTree/test_inventree_backup
|
|
INVENTREE_SITE_URL: http://localhost:8000
|
|
INVENTREE_DEBUG: true
|
|
|
|
steps:
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # pin@v6.0.2
|
|
with:
|
|
persist-credentials: false
|
|
- name: Environment Setup
|
|
uses: ./.github/actions/setup
|
|
with:
|
|
install: true
|
|
npm: true
|
|
- name: Install dependencies
|
|
run: |
|
|
pip install --require-hashes -r contrib/dev_reqs/requirements.txt
|
|
pip install --require-hashes -r docs/requirements.txt
|
|
- name: Build documentation
|
|
run: |
|
|
invoke build-docs --mkdocs
|
|
- name: Zip build docs
|
|
run: |
|
|
cd docs/site
|
|
zip -r docs-html.zip *
|
|
- name: Publish documentation
|
|
run: gh release upload ${REF} docs/site/docs-html.zip#docs-html.zip
|
|
env:
|
|
REF: ${{ github.ref_name }}
|
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
build-pkgr:
|
|
if: github.repository == 'inventree/InvenTree'
|
|
name: ${{ matrix.target }}
|
|
runs-on: ubuntu-latest
|
|
needs: [build]
|
|
permissions:
|
|
contents: write
|
|
strategy:
|
|
fail-fast: false
|
|
matrix:
|
|
target:
|
|
- ubuntu:22.04
|
|
- ubuntu:24.04
|
|
- debian:12
|
|
steps:
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # pin@v6.0.2
|
|
with:
|
|
fetch-depth: 0
|
|
persist-credentials: false
|
|
|
|
- name: Get frontend artifact
|
|
uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # pin@v8.0.1
|
|
with:
|
|
name: frontend-build
|
|
- name: Setup
|
|
id: setup
|
|
env:
|
|
NODE_ID: ${{ github.event.release.node_id }}
|
|
BRANCH: ${{ github.event.release.target_commitish }}
|
|
TARGET: ${{github.event.release.target_commitish}}
|
|
REPO: ${{ github.repository }}
|
|
VERSION_REF: ${{ github.ref_name }}
|
|
GH_TOKEN: ${{ github.token }}
|
|
|
|
run: |
|
|
# Get info
|
|
gh api -H "Accept: application/vnd.github+json" -H "X-GitHub-Api-Version: 2022-11-28" /repos/$REPO/commits/$TARGET > commit.json
|
|
|
|
# Extract info
|
|
echo "INFO extract | Extracting info from github"
|
|
DATE=$(jq -r '.commit.committer.date' commit.json)
|
|
SIGNATURE=$(jq -r '.commit.verification.signature' commit.json)
|
|
FULL_SHA=$(jq -r '.sha' commit.json)
|
|
SHA=$(echo "$FULL_SHA" | cut -c1-7)
|
|
|
|
echo "INFO write | Write VERSION information"
|
|
echo "$VERSION" > VERSION
|
|
echo "INVENTREE_COMMIT_HASH='$SHA'" >> VERSION
|
|
echo "INVENTREE_COMMIT_SHA='$FULL_SHA'" >> VERSION
|
|
echo "INVENTREE_COMMIT_DATE='$DATE'" >> VERSION
|
|
echo "INVENTREE_PKG_INSTALLER='PKG'" >> VERSION
|
|
echo "INVENTREE_PKG_BRANCH='$BRANCH'" >> VERSION
|
|
echo "INVENTREE_PKG_TARGET='$TARGET'" >> VERSION
|
|
echo "NODE_ID='$NODE_ID'" >> VERSION
|
|
echo "SIGNATURE='$SIGNATURE'" >> VERSION
|
|
|
|
echo "INFO write | Written VERSION information"
|
|
echo "### VERSION ###"
|
|
cat VERSION
|
|
echo "### VERSION ###"
|
|
|
|
# Move frontend build into place
|
|
mkdir -p src/backend/InvenTree/web/static
|
|
unzip -qq frontend-build.zip -d src/backend/InvenTree/web/static/web
|
|
|
|
echo "INFO write release_version"
|
|
echo "VERSION=$VERSION_REF" >> $GITHUB_OUTPUT
|
|
echo "REF=$GITHUB_REF" >> $GITHUB_OUTPUT
|
|
|
|
# Disable before.sh for now - will need to be removed once we switch to go.packager.io fully
|
|
echo "#!/bin/bash" > contrib/packager.io/before.sh
|
|
|
|
echo "calculate release channel"
|
|
pip install --require-hashes -r contrib/dev_reqs/requirements.txt
|
|
python3 .github/scripts/version_check.py
|
|
- name: Package
|
|
uses: pkgr/action/package@c5666febcd31750da6428042193fc5b2fb765435 # pin@main
|
|
id: package
|
|
with:
|
|
target: ${{ matrix.target }}
|
|
version: ${{ steps.setup.outputs.version }}
|
|
debug: true
|
|
cache_prefix: ${{ github.ref_name }}
|
|
env: |
|
|
INVENTREE_DB_ENGINE=sqlite3
|
|
INVENTREE_DB_NAME=database.sqlite3
|
|
INVENTREE_PLUGINS_ENABLED=true
|
|
INVENTREE_MEDIA_ROOT=/opt/inventree/media
|
|
INVENTREE_STATIC_ROOT=/opt/inventree/static
|
|
INVENTREE_BACKUP_DIR=/opt/inventree/backup
|
|
INVENTREE_PLUGIN_FILE=/opt/inventree/plugins.txt
|
|
INVENTREE_CONFIG_FILE=/opt/inventree/config.yaml
|
|
APP_REPO=inventree/InvenTree
|
|
- name: Publish to go.packager.io - current release channel
|
|
uses: pkgr/action/publish@3bce081ae512c5020856e237d37b3f5479d4aa71 # pin@main
|
|
with:
|
|
target: ${{ matrix.target }}
|
|
token: ${{ secrets.PACKAGER_RELEASE_TOKEN }}
|
|
repository: inventree/InvenTree
|
|
channel: ${{ env.pkg_channel }}
|
|
file: ${{ steps.package.outputs.package_path }}
|
|
- name: Publish to go.packager.io - stable release channel
|
|
uses: pkgr/action/publish@3bce081ae512c5020856e237d37b3f5479d4aa71 # pin@main
|
|
with:
|
|
target: ${{ matrix.target }}
|
|
token: ${{ secrets.PACKAGER_RELEASE_TOKEN }}
|
|
repository: inventree/InvenTree
|
|
channel: stable
|
|
file: ${{ steps.package.outputs.package_path }}
|
|
- name: Publish to artifact
|
|
run: gh release upload ${REF} ${PACKAGE_PATH}#${PACKAGE_NAME}
|
|
env:
|
|
REF: ${{ github.ref_name }}
|
|
PACKAGE_PATH: ${{ steps.package.outputs.package_path }}
|
|
PACKAGE_NAME: ${{ matrix.target }}-${{ steps.setup.outputs.version }}.tar.gz
|
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|