Skip to content
This repository was archived by the owner on Aug 20, 2025. It is now read-only.

Run the deploy steps only when lerna detects changes #456

Merged
merged 1 commit into from
Dec 4, 2023
Merged

Run the deploy steps only when lerna detects changes #456

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 7 additions & 3 deletions .github/workflows/rc-publish.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -112,11 +112,13 @@ jobs:
yarn versionup:preminor && ./hack/cross-dependency.sh

- name: Use node@16
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0
with:
node-version: 16.20.0

- name: Create temp dir
if: steps.tag_check_changes.outputs.changed_packages > 0
id: temp-dir
run: |
set -euo pipefail
Expand All @@ -125,25 +127,29 @@ jobs:
echo "path=${temp_dir}" >>"${GITHUB_OUTPUT}"

- name: Download tarball
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@934435652996c02a6317092984312602dfaf2a21 # main
with:
name: ${{ needs.provenance.outputs.package-download-name }}
path: "${{ steps.temp-dir.outputs.path }}/${{ needs.provenance.outputs.package-name }}"
sha256: ${{ needs.provenance.outputs.package-download-sha256 }}

- name: Download provenance
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@0779f7bec68e2bf54a7b0a32bf4763f25ab29702 # v1.6.0
with:
name: ${{ needs.provenance.outputs.provenance-download-name }}
path: "${{ steps.temp-dir.outputs.path }}"
sha256: ${{ needs.provenance.outputs.provenance-download-sha256 }}

- name: Authenticate NPM
if: steps.tag_check_changes.outputs.changed_packages > 0
run: |
echo "//registry.npmjs.org/:_authToken=${{ secrets.NPM_TOKEN }}" > ~/.npmrc
echo "@openzeppelin:registry https://registry.npmjs.org" >> ~/.npmrc

- name: Enable NPM PROVENANCE
if: steps.tag_check_changes.outputs.changed_packages > 0
run: echo "NPM_CONFIG_PROVENANCE=true" >> $GITHUB_ENV

- name: Commit changes
Expand All @@ -157,10 +163,8 @@ jobs:
git commit -m "Update version to v$TAG_NAME"
echo "next_rc_version=v$TAG_NAME" >> $GITHUB_OUTPUT

- name: Echo TAG
run: echo ${{ steps.update_version.outputs.next_rc_version }}

- name: Unpack the zipped artifact and publish
if: steps.tag_check_changes.outputs.changed_packages > 0
run: |
set -euo pipefail

Expand Down
10 changes: 7 additions & 3 deletions .github/workflows/stable-publish.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -110,38 +110,44 @@ jobs:
yarn versionup:stableminor && ./hack/cross-dependency.sh

- name: Use node@16
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0
with:
node-version: 16.20.0

- name: Create temp dir
id: temp-dir
if: steps.tag_check_changes.outputs.changed_packages > 0
run: |
set -euo pipefail

temp_dir=$(mktemp -d)
echo "path=${temp_dir}" >>"${GITHUB_OUTPUT}"

- name: Download tarball
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: slsa-framework/slsa-github-generator/.github/actions/secure-download-artifact@934435652996c02a6317092984312602dfaf2a21 # main
with:
name: ${{ needs.provenance.outputs.package-download-name }}
path: "${{ steps.temp-dir.outputs.path }}/${{ needs.provenance.outputs.package-name }}"
sha256: ${{ needs.provenance.outputs.package-download-sha256 }}

- name: Download provenance
if: steps.tag_check_changes.outputs.changed_packages > 0
uses: slsa-framework/slsa-github-generator/actions/nodejs/secure-attestations-download@0779f7bec68e2bf54a7b0a32bf4763f25ab29702 # v1.6.0
with:
name: ${{ needs.provenance.outputs.provenance-download-name }}
path: "${{ steps.temp-dir.outputs.path }}"
sha256: ${{ needs.provenance.outputs.provenance-download-sha256 }}

- name: Authenticate NPM
if: steps.tag_check_changes.outputs.changed_packages > 0
run: |
echo "//registry.npmjs.org/:_authToken=${{ secrets.NPM_TOKEN }}" > ~/.npmrc
echo "@openzeppelin:registry https://registry.npmjs.org" >> ~/.npmrc

- name: Enable NPM PROVENANCE
if: steps.tag_check_changes.outputs.changed_packages > 0
run: echo "NPM_CONFIG_PROVENANCE=true" >> $GITHUB_ENV

- name: Commit changes
Expand All @@ -155,10 +161,8 @@ jobs:
git commit -m "Update version to v$TAG_NAME"
echo "next_stable_version=v$TAG_NAME" >> $GITHUB_OUTPUT

- name: Echo TAG
run: echo ${{ steps.update_version.outputs.next_stable_version }}

- name: Unpack the zipped artifact and publish
if: steps.tag_check_changes.outputs.changed_packages > 0
run: |
set -euo pipefail

Expand Down