TO-DROP: arrgg tmateeee #37
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: "release-winget" | |
| on: | |
| release: | |
| types: [released] | |
| push: | |
| workflow_dispatch: | |
| inputs: | |
| tag: | |
| description: 'Tag name to release' | |
| required: true | |
| permissions: | |
| id-token: write # required for Azure login via OIDC | |
| env: | |
| TAG_NAME: v2.48.1.vfs.0.1 | |
| jobs: | |
| release: | |
| runs-on: windows-latest | |
| environment: release | |
| steps: | |
| - uses: mxschmitt/action-tmate@v3 | |
| with: | |
| detached: true | |
| - name: Log into Azure | |
| uses: azure/login@v2 | |
| with: | |
| client-id: ${{ secrets.AZURE_CLIENT_ID }} | |
| tenant-id: ${{ secrets.AZURE_TENANT_ID }} | |
| subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }} | |
| - name: Publish manifest with winget-create | |
| run: | | |
| # Enabling stop on error and tracing | |
| Set-PSDebug -Trace 2 | |
| $ErrorActionPreference = "Stop" | |
| $PSNativeCommandErrorActionPreference = "Stop" | |
| if ($env:TAG_NAME -eq "") { | |
| $env:TAG_NAME = $github.release.tag_name | |
| # Get latest release | |
| $github = Get-Content '${{ github.event_path }}' | ConvertFrom-Json | |
| # Get download URLs | |
| $asset_x64 = $github.release.assets | Where-Object -Property name -match '64-bit.exe$' | |
| $asset_arm64 = $github.release.assets | Where-Object -Property name -match 'arm64.exe$' | |
| $asset_x64_url = $asset_x64.browser_download_url | |
| $asset_arm64_url = $asset_arm64.browser_download_url | |
| } else { | |
| # Get release object by its tag | |
| $env:GH_TOKEN = ${{ toJson(secrets.GITHUB_TOKEN) }} | |
| $github = (gh release view -R microsoft/git $env:TAG_NAME --json tagName,assets --jq '{tag_name: .tagName, assets: .assets}') | ConvertFrom-Json | |
| # Get download URLs | |
| $asset_x64 = $github.assets | Where-Object -Property name -match '64-bit.exe$' | |
| $asset_arm64 = $github.assets | Where-Object -Property name -match 'arm64.exe$' | |
| $asset_x64_url = $asset_x64.url | |
| $asset_arm64_url = $asset_arm64.url | |
| } | |
| # Remove 'v' and 'vfs' from the version | |
| $env:TAG_NAME -match 'v(.*?)vfs\.(.*)' | |
| $version = $Matches[1] + $Matches[2] | |
| # Download wingetcreate and create manifests | |
| Invoke-WebRequest https://aka.ms/wingetcreate/latest -OutFile wingetcreate.exe | |
| .\wingetcreate.exe update Microsoft.Git ` | |
| -v $version ` | |
| -o manifests ` | |
| -u "$($asset_x64_url)|x64|machine" ` | |
| "$($asset_x64_url)|x64|user" ` | |
| "$($asset_arm64_url)|arm64|machine" ` | |
| "$($asset_arm64_url)|arm64|user" | |
| # Manually substitute the name of the default branch in the License | |
| # and Copyright URLs since the tooling cannot do that for us. | |
| $shortenedVersion = $version -replace ".{4}$" | |
| $manifestPath = dir -Path ./manifests -Filter Microsoft.Git.locale.en-US.yaml -Recurse | %{$_.FullName} | |
| sed -i "s/vfs-[.0-9]*/vfs-$shortenedVersion/g" "$manifestPath" | |
| # Download the token from Azure Key Vault and mask it in the logs | |
| az keyvault secret download --name ${{ secrets.WINGET_TOKEN_SECRET_NAME }} --vault-name ${{ secrets.AZURE_VAULT }} --file token.txt | |
| Write-Host -NoNewLine "::add-mask::$(Get-Content token.txt)" | |
| # Submit the manifest to the winget-pkgs repository | |
| $manifestDirectory = Split-Path "$manifestPath" | |
| .\wingetcreate.exe submit -t "$(Get-Content token.txt)" $manifestDirectory | |
| shell: powershell |