chore: bump plugin.json to 0.5.2 (release version sync) (#34) #22
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Release | |
| on: | |
| push: | |
| tags: | |
| - 'v*' | |
| permissions: | |
| contents: write | |
| jobs: | |
| release: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v5 | |
| with: | |
| fetch-depth: 0 | |
| - uses: actions/setup-go@v6 | |
| with: | |
| go-version-file: go.mod | |
| - name: Configure Git for private GoCodeAlone repos | |
| env: | |
| RELEASES_TOKEN: ${{ secrets.RELEASES_TOKEN }} | |
| run: | | |
| if [ -z "$RELEASES_TOKEN" ]; then | |
| echo "::error::RELEASES_TOKEN secret is not set. The goreleaser step needs it to resolve private GoCodeAlone module deps." >&2 | |
| exit 1 | |
| fi | |
| git config --global url."https://x-access-token:${RELEASES_TOKEN}@github.com/GoCodeAlone/".insteadOf "https://github.com/GoCodeAlone/" | |
| - name: Install wfctl v0.63.2 | |
| run: | | |
| mkdir -p "${RUNNER_TEMP}/wfctl-bin" | |
| curl -sSfL -H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \ | |
| -o "${RUNNER_TEMP}/wfctl-bin/wfctl" \ | |
| "https://github.com/GoCodeAlone/workflow/releases/download/v0.63.2/wfctl-linux-amd64" | |
| chmod +x "${RUNNER_TEMP}/wfctl-bin/wfctl" | |
| - name: Validate plugin contract for publish (pre-build) | |
| run: "${{ runner.temp }}/wfctl-bin/wfctl plugin validate-contract --for-publish --tag ${{ github.ref_name }} ." | |
| - uses: goreleaser/goreleaser-action@v7 | |
| with: | |
| distribution: goreleaser | |
| version: '~> v2' | |
| args: release --clean | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| # workflow#765: runtime truth-check via plugin verify-capabilities. | |
| - name: Verify capabilities (runtime truth-check) | |
| run: | | |
| RUNNER_ARCH=$(uname -m | sed 's/x86_64/amd64/;s/aarch64/arm64/') | |
| BIN=$(jq -r --arg arch "$RUNNER_ARCH" \ | |
| '[.[] | select(.type=="Binary" and .goos=="linux" and .goarch==$arch and (.name|startswith("workflow-plugin-hover")))] | .[0].path // ""' \ | |
| dist/artifacts.json) | |
| if [ -z "$BIN" ] || [ "$BIN" = "null" ]; then | |
| echo "::warning::No matching linux/$RUNNER_ARCH binary in dist/artifacts.json; skipping verify-capabilities" | |
| jq '.[] | {name, type, goos, goarch, path}' dist/artifacts.json | |
| exit 0 | |
| fi | |
| "${{ runner.temp }}/wfctl-bin/wfctl" plugin verify-capabilities --binary "$BIN" . | |
| - name: Unset credentialed git config | |
| if: always() | |
| env: | |
| RELEASES_TOKEN: ${{ secrets.RELEASES_TOKEN }} | |
| run: | | |
| git config --global --unset-all "url.https://x-access-token:${RELEASES_TOKEN}@github.com/GoCodeAlone/.insteadOf" || true | |
| - name: Publish release (was draft during asset upload) | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| run: gh release edit ${{ github.ref_name }} --draft=false --repo ${{ github.repository }} | |
| notify-workflow-registry: | |
| name: Notify workflow-registry | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| needs: release | |
| if: >- | |
| !github.event.deleted | |
| && !contains(github.ref_name, '-') | |
| && github.repository == 'GoCodeAlone/workflow-plugin-hover' | |
| steps: | |
| - name: Trigger registry manifest sync | |
| uses: peter-evans/repository-dispatch@28959ce8df70de7be546dd1250a005dd32156697 # v4 | |
| with: | |
| token: ${{ secrets.repo_dispatch_token }} | |
| repository: GoCodeAlone/workflow-registry | |
| event-type: plugin-release | |
| client-payload: |- | |
| {"plugin": "hover", "tag": "${{ github.ref_name }}"} |