# This reusable workflow is used by actions/*-versions repositories # It is designed to # - build and test new versions of a tool (Go, Node) # - publish a release with a new tool version # The GITHUB_TOKEN secret is used to trigger workflow runs and publish releases name: Generate tool packages on: workflow_call: inputs: tool-name: description: "Tool name to build and upload. Supported values are: 'go' and 'node'" required: true type: string tool-version: description: "Tool version to build and upload" required: true type: string publish-release: description: "Whether to publish releases" required: true type: boolean defaults: run: shell: pwsh jobs: build: name: Build ${{ inputs.tool-name }} ${{ inputs.tool-version }} [${{ matrix.platform }}] [${{ matrix.architecture }}] runs-on: ubuntu-latest env: ARTIFACT_NAME: ${{ inputs.tool-name }}-${{ inputs.tool-version }}-${{ matrix.platform }}-${{ matrix.architecture }} excludewinarm: ${{ !(inputs.tool-name == 'node' && inputs['tool-version'] < '20.0.0' && matrix.architecture == 'arm64' && matrix.platform == 'win32') }} strategy: fail-fast: false matrix: platform: [linux, darwin, win32] architecture: [x64, arm64] steps: - name: checkout if: env.excludewinarm == 'true' uses: actions/checkout@v4 with: submodules: true - name: Build ${{ inputs.tool-name }} ${{ inputs.tool-version }} if: env.excludewinarm == 'true' run: | ./builders/build-${{ inputs.tool-name }}.ps1 -Version ${{ inputs.tool-version }} ` -Platform ${{ matrix.platform }} ` -Architecture ${{ matrix.architecture }} - name: Publish artifact if: env.excludewinarm == 'true' uses: actions/upload-artifact@v4 with: name: ${{ env.ARTIFACT_NAME }} path: ${{ runner.temp }}/artifact test: name: Test ${{ inputs.tool-name }} ${{ inputs.tool-version }} [${{ matrix.platform }}] [${{ matrix.architecture }}] needs: build runs-on: ${{ matrix.os }} env: ARTIFACT_NAME: ${{ inputs.tool-name }}-${{ inputs.tool-version }}-${{ matrix.platform }}-${{ matrix.architecture }} excludewinarm: ${{ !(inputs.tool-name == 'node' && inputs['tool-version'] < '20.0.0' && matrix.architecture == 'arm64' && matrix.platform == 'win32') }} RUNNER_TYPE: ${{ matrix.runner_type }} strategy: fail-fast: false matrix: include: - os: ubuntu-latest platform: linux architecture: x64 - os: macos-13 platform: darwin architecture: x64 - os: windows-latest platform: win32 architecture: x64 - os: setup-actions-ubuntu-arm64-2-core platform: linux architecture: arm64 runner_type: self-hosted - os: macos-latest platform: darwin architecture: arm64 - os: setup-actions-windows-arm64-4-core platform: win32 architecture: arm64 runner_type: self-hosted steps: - name: Setup Environment on Windows ARM64 Runner if: matrix.os == 'setup-actions-windows-arm64-4-core' shell: powershell run: | # Install Chocolatey Set-ExecutionPolicy Bypass -Scope Process -Force [System.Net.ServicePointManager]::SecurityProtocol = [System.Net.ServicePointManager]::SecurityProtocol -bor 3072 iex ((New-Object System.Net.WebClient).DownloadString('https://chocolatey.org/install.ps1')) echo "C:\ProgramData\Chocolatey\bin" | Out-File -Append -FilePath $env:GITHUB_PATH -Encoding utf8 # Install PowerShell choco install powershell-core -y echo "C:\Program Files\PowerShell\7" | Out-File -Append -FilePath $env:GITHUB_PATH -Encoding utf8 # Install Git choco install git -y echo "C:\Program Files\Git\cmd" | Out-File -Append -FilePath $env:GITHUB_PATH -Encoding utf8 # Install 7-Zip choco install 7zip -y echo "C:\ProgramData\chocolatey\bin" | Out-File -Append -FilePath $env:GITHUB_PATH -Encoding utf8 - name: checkout if: env.excludewinarm == 'true' uses: actions/checkout@v4 with: submodules: true - name: Fully cleanup the toolcache directory before testing if: env.excludewinarm == 'true' run: ./helpers/clean-toolcache.ps1 -ToolName "${{ inputs.tool-name }}" - name: Download artifact if: env.excludewinarm == 'true' uses: actions/download-artifact@v4 with: name: ${{ env.ARTIFACT_NAME }} path: ${{ runner.temp }}/${{ env.ARTIFACT_NAME }} - name: Extract files if: env.excludewinarm == 'true' run: | if ('${{ matrix.platform }}' -eq 'win32') { if ('${{ inputs.tool-name }}' -eq 'node') { $artifactName = "${{ env.ARTIFACT_NAME }}.7z" } elseif ('${{ inputs.tool-name }}' -eq 'go') { $artifactName = "${{ env.ARTIFACT_NAME }}.zip" } else { Write-Host "Unsupported tool - ${{ inputs.tool-name }}" exit 1 } 7z.exe x "$artifactName" -y | Out-Null } else { $artifactName = "${{ env.ARTIFACT_NAME }}.tar.gz" tar -xzf $artifactName } working-directory: ${{ runner.temp }}/${{ env.ARTIFACT_NAME }} - name: Apply build artifact to the local machine if: env.excludewinarm == 'true' run: | if ('${{ matrix.platform }}' -eq 'win32') { powershell ./setup.ps1 } else { sh ./setup.sh } working-directory: ${{ runner.temp }}/${{ env.ARTIFACT_NAME }} - name: Setup Node.js ${{ inputs.tool-version }} if: env.excludewinarm == 'true' && inputs.tool-name == 'node' uses: actions/setup-node@v4 with: node-version: ${{ inputs.tool-version }} - name: Setup Go ${{ inputs.tool-version }} if: inputs.tool-name == 'go' uses: actions/setup-go@v5 with: go-version: ${{ inputs.tool-version }} - name: Wait for the logs if: env.excludewinarm == 'true' run: | Write-Host "Fake step that does nothing" Write-Host "We need it because log from the previous step 'Setup ${{ inputs.tool-name }}' is not available here yet." Write-Host "In testing step we analyze build log of 'Setup ${{ inputs.tool-name }}' task" Write-Host "to determine if ${{ inputs.tool-name }} version was consumed from cache or if it was downloaded" for ($i = 0; $i -lt 200; $i++) { Get-Random } - name: Run tests if: env.excludewinarm == 'true' env: VERSION: ${{ inputs.tool-version }} run: | Install-Module Pester -Force -Scope CurrentUser -SkipPublisherCheck Import-Module Pester $toolName = (Get-Culture).TextInfo.ToTitleCase("${{ inputs.tool-name }}") Invoke-Pester -Script ./$toolName.Tests.ps1 -EnableExit working-directory: ./tests publish_release: name: Publish release if: inputs.publish-release needs: test runs-on: ubuntu-latest steps: - uses: actions/download-artifact@v4 - name: Generate release body id: generate-release-body run: | if ('${{ inputs.tool-name }}' -eq 'node') { $releaseBody = 'Node.js ${{ inputs.tool-version }}' } else { $releaseBody = 'Go ${{ inputs.tool-version }}' } echo "RELEASE_BODY=$releaseBody" >> $env:GITHUB_OUTPUT - name: Publish Release id: create_release env: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} shell: bash run: | tag_name="${{ inputs.tool-version }}-${{ github.run_id }}" gh release create "$tag_name" \ --repo="$GITHUB_REPOSITORY" \ --title="${{ inputs.tool-version }}" \ --notes="${{ steps.generate-release-body.outputs.RELEASE_BODY }}" release_id=$(gh release view "$tag_name" --repo "$GITHUB_REPOSITORY" --json databaseId --jq '.databaseId') echo "id=$release_id" >> $GITHUB_OUTPUT - name: Generate hash for packages run: | $childItems = Get-Childitem -Path '.' $childItems | Foreach-Object { $packageObj = Get-Childitem -Path $_.FullName | Select-Object -First 1 Write-Host "Package: $($packageObj.Name)" $actualHash = (Get-FileHash -Path $packageObj.FullName -Algorithm sha256).Hash $hashString = "$actualHash $($packageObj.Name)" Write-Host "$hashString" Add-Content -Path ./hashes.sha256 -Value "$hashString" } - name: Upload release assets uses: actions/github-script@v7 with: github-token: ${{ secrets.GITHUB_TOKEN }} script: | const fs = require('fs'); for (let artifactDir of fs.readdirSync('.')) { let artifactName = fs.lstatSync(artifactDir).isDirectory() ? fs.readdirSync(`${artifactDir}`)[0] : artifactDir; console.log(`Upload ${artifactName} asset`); github.rest.repos.uploadReleaseAsset({ owner: context.repo.owner, repo: context.repo.repo, release_id: ${{ steps.create_release.outputs.id }}, name: artifactName, data: fs.lstatSync(artifactDir).isDirectory() ? fs.readFileSync(`./${artifactDir}/${artifactName}`) : fs.readFileSync(`./${artifactName}`).toString() }); } trigger_pr: name: Trigger "Create Pull Request" workflow needs: publish_release runs-on: ubuntu-latest steps: - name: Trigger "Create Pull Request" workflow uses: actions/github-script@v7 with: github-token: ${{ secrets.GITHUB_TOKEN }} script: | github.rest.actions.createWorkflowDispatch({ owner: context.repo.owner, repo: context.repo.repo, workflow_id: 'create-pr.yml', ref: 'main' });