123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 |
- name: Release
- # This workflow is triggered when publishing a GitHub release
- on:
- release:
- types:
- - published
-
- jobs:
- release:
- permissions:
- id-token: write
- contents: write
- uses: SonarSource/gh-action_release/.github/workflows/main.yaml@28c15313f2bb2ee0cb67ba48cc008c2391851b81 # 5.0.1
- with:
- publishToBinaries: true
- mavenCentralSync: true
- slackChannel: sonarqube-build
- release_docker:
- permissions:
- id-token: write
- runs-on: ubuntu-latest
- name: Start Docker release process
- needs: release
- timeout-minutes: 60
- steps:
- - name: get secrets
- id: secrets
- uses: SonarSource/vault-action-wrapper@8e22afd670393ed80f489f5dbd517d09ea21d75b # 2.4.3-1
- with:
- secrets: |
- development/github/token/SonarSource-sonar-scanner-cli-release token | GITHUB_TOKEN_RELEASE;
- development/kv/data/slack token | SLACK_BOT_TOKEN;
- - name: Create Release for Docker Image
- id: create_release
- uses: softprops/action-gh-release@v1
- env:
- GITHUB_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).GITHUB_TOKEN_RELEASE }}
- GITHUB_REPOSITORY: SonarSource/sonar-scanner-cli-docker
- with:
- tag_name: ${{ github.event.release.tag_name }}
- body: Release containing ScannerCLI version ${{ github.event.release.tag_name }}
- draft: false
- prerelease: false
- - name: Notify failures on Slack
- uses: slackapi/slack-github-action@v1.23.0
- if: failure()
- with:
- channel-id: sonarqube-build
- slack-message: "Release failed, see the logs at https://github.com/{{ GITHUB_REPOSITORY }}/actions by {{ GITHUB_ACTOR }}"
- env:
- SLACK_BOT_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).SLACK_BOT_TOKEN }}
|