Publish NuGet package #337
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Publish NuGet package | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| dry-run: | |
| description: 'Dry run' | |
| required: true | |
| type: boolean | |
| default: true | |
| version: | |
| description: 'Package version (defaults to auto-generated date-based version)' | |
| required: false | |
| type: string | |
| default: 'latest' | |
| schedule: | |
| - cron: '21 3 * * 1' # 3:21 AM UTC every Monday | |
| jobs: | |
| preflight: | |
| name: Preflight | |
| runs-on: ubuntu-latest | |
| outputs: | |
| dry-run: ${{ steps.get-dry-run.outputs.dry-run }} | |
| project-version: ${{ steps.get-version.outputs.project-version }} | |
| package-version: ${{ steps.get-version.outputs.package-version }} | |
| steps: | |
| - name: Checkout ${{ github.repository }} | |
| uses: actions/checkout@v4 | |
| - name: Get dry run | |
| id: get-dry-run | |
| run: | | |
| $IsDryRun = '${{ github.event.inputs.dry-run }}' -Eq 'true' -Or '${{ github.event_name }}' -Eq 'schedule' | |
| if ($IsDryRun) { | |
| echo "dry-run=true" >> $Env:GITHUB_OUTPUT | |
| } else { | |
| echo "dry-run=false" >> $Env:GITHUB_OUTPUT | |
| } | |
| shell: pwsh | |
| - name: Package information | |
| id: package-info | |
| run: | | |
| $Version = '${{ github.event.inputs.version }}' | |
| if ($Version -eq '' -or $Version -eq 'latest') { | |
| $DateNow = Get-Date | |
| $Version = "{0}.{1}.{2}.0" -f $DateNow.Year, $DateNow.Month, $DateNow.Day | |
| } | |
| if ($Version -notmatch '^\d+\.\d+\.\d+\.\d+$') { | |
| throw "Invalid version format. Expected X.Y.Z.W, got: $Version" | |
| } | |
| echo "Computed package version: $Version" | |
| echo "package-version=$Version" >> $Env:GITHUB_OUTPUT | |
| shell: pwsh | |
| - name: Get version | |
| id: get-version | |
| run: | | |
| $ProjectVersion = '${{ steps.package-info.outputs.package-version }}' | |
| $PackageVersion = $ProjectVersion -Replace "^(\d+)\.(\d+)\.(\d+).(\d+)$", "`$1.`$2.`$3" | |
| echo "project-version=$ProjectVersion" >> $Env:GITHUB_OUTPUT | |
| echo "package-version=$PackageVersion" >> $Env:GITHUB_OUTPUT | |
| shell: pwsh | |
| build-native: | |
| name: Native build | |
| needs: [preflight] | |
| runs-on: ${{matrix.runner}} | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| os: [ win, osx, linux, ios, android ] | |
| arch: [ x86, x64, arm, arm64 ] | |
| include: | |
| - os: win | |
| runner: windows-2022 | |
| - os: osx | |
| runner: macos-14 | |
| - os: linux | |
| runner: ubuntu-22.04 | |
| - os: ios | |
| runner: macos-14 | |
| - os: android | |
| runner: ubuntu-22.04 | |
| exclude: | |
| - arch: arm | |
| os: win | |
| - arch: arm | |
| os: osx | |
| - arch: arm | |
| os: linux | |
| - arch: arm | |
| os: ios | |
| - arch: x86 | |
| os: win | |
| - arch: x86 | |
| os: osx | |
| - arch: x86 | |
| os: linux | |
| - arch: x86 | |
| os: ios | |
| steps: | |
| - name: Checkout ${{ github.repository }} | |
| uses: actions/checkout@v4 | |
| - name: Configure Android NDK | |
| uses: Devolutions/actions-public/cargo-android-ndk@v1 | |
| if: matrix.os == 'android' | |
| with: | |
| android_api_level: "21" | |
| - name: Setup build environment | |
| run: | | |
| if ('${{ matrix.os }}' -Eq 'osx') { | |
| echo "MACOSX_DEPLOYMENT_TARGET=10.12" | Out-File -FilePath $Env:GITHUB_ENV -Encoding utf8 -Append | |
| } elseif ('${{ matrix.os }}' -Eq 'ios') { | |
| echo "IPHONEOS_DEPLOYMENT_TARGET=12.1" | Out-File -FilePath $Env:GITHUB_ENV -Encoding utf8 -Append | |
| } | |
| shell: pwsh | |
| - name: Setup LLVM | |
| uses: Devolutions/actions-public/setup-llvm@v1 | |
| if: matrix.os == 'linux' | |
| with: | |
| version: "18.1.8" | |
| - name: Setup CBake | |
| uses: Devolutions/actions-public/setup-cbake@v1 | |
| if: matrix.os == 'linux' | |
| with: | |
| version: "v2025.02.18.0" | |
| sysroots: | | |
| - ubuntu-20.04-amd64 | |
| - ubuntu-20.04-arm64 | |
| cargo_env_scripts: true | |
| - name: Build picky (${{matrix.os}}-${{matrix.arch}}) | |
| run: | | |
| $DotNetOs = '${{matrix.os}}' | |
| $DotNetArch = '${{matrix.arch}}' | |
| $DotNetRid = '${{matrix.os}}-${{matrix.arch}}' | |
| $RustArch = @{'x64'='x86_64';'arm64'='aarch64'; | |
| 'x86'='i686';'arm'='armv7'}[$DotNetArch] | |
| $RustPlatform = @{'win'='pc-windows-msvc'; | |
| 'osx'='apple-darwin';'ios'='apple-ios'; | |
| 'linux'='unknown-linux-gnu';'android'='linux-android'}[$DotNetOs] | |
| $LibPrefix = @{'win'='';'osx'='lib';'ios'='lib'; | |
| 'linux'='lib';'android'='lib'}[$DotNetOs] | |
| $LibSuffix = @{'win'='.dll';'osx'='.dylib';'ios'='.dylib'; | |
| 'linux'='.so';'android'='.so'}[$DotNetOs] | |
| $RustTarget = "$RustArch-$RustPlatform" | |
| if (($DotNetOs -eq 'android') -and ($DotNetArch -eq 'arm')) { | |
| $RustTarget = "armv7-linux-androideabi" | |
| } | |
| rustup target add $RustTarget | |
| if ($DotNetOs -eq 'win') { | |
| $Env:RUSTFLAGS="-C target-feature=+crt-static" | |
| } | |
| if ($DotNetOs -eq 'linux') { | |
| $LinuxArch = @{'x64'='amd64';'arm64'='arm64'}[$DotNetArch] | |
| $Env:SYSROOT_NAME = "ubuntu-20.04-$LinuxArch" | |
| . "$HOME/.cargo/cbake/${RustTarget}-enter.ps1" | |
| } | |
| $ProjectVersion = '${{ needs.preflight.outputs.project-version }}' | |
| $PackageVersion = '${{ needs.preflight.outputs.package-version }}' | |
| $CargoToml = Get-Content .\ffi\Cargo.toml | |
| $CargoToml = $CargoToml | ForEach-Object { | |
| if ($_.StartsWith("version =")) { "version = `"$PackageVersion`"" } else { $_ } | |
| } | |
| Set-Content -Path .\ffi\Cargo.toml -Value $CargoToml | |
| $CargoParams = @( | |
| "build", | |
| "-p", "picky-ffi", | |
| "--profile", | |
| "ffi-production", | |
| "--target", "$RustTarget" | |
| ) | |
| & cargo $CargoParams | |
| $OutputLibraryName = "${LibPrefix}picky$LibSuffix" | |
| $RenamedLibraryName = "${LibPrefix}DevolutionsPicky$LibSuffix" | |
| $OutputLibrary = Join-Path "target" $RustTarget 'ffi-production' $OutputLibraryName | |
| $OutputPath = Join-Path "dependencies" "runtimes" $DotNetRid "native" | |
| New-Item -ItemType Directory -Path $OutputPath | Out-Null | |
| Copy-Item $OutputLibrary $(Join-Path $OutputPath $RenamedLibraryName) | |
| shell: pwsh | |
| - name: Upload native components | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: picky-${{matrix.os}}-${{matrix.arch}} | |
| path: dependencies/runtimes/${{matrix.os}}-${{matrix.arch}} | |
| build-universal: | |
| name: Universal build | |
| needs: [preflight, build-native] | |
| runs-on: ubuntu-24.04 | |
| strategy: | |
| fail-fast: false | |
| matrix: | |
| os: [ osx, ios ] | |
| steps: | |
| - name: Checkout ${{ github.repository }} | |
| uses: actions/checkout@v4 | |
| - name: Setup CCTools | |
| uses: Devolutions/actions-public/setup-cctools@v1 | |
| - name: Download native components | |
| uses: actions/download-artifact@v4 | |
| with: | |
| path: dependencies/runtimes | |
| - name: Lipo native components | |
| run: | | |
| Set-Location "dependencies/runtimes" | |
| # No RID for universal binaries, see: https://github.com/dotnet/runtime/issues/53156 | |
| $OutputPath = Join-Path "${{ matrix.os }}-universal" "native" | |
| New-Item -ItemType Directory -Path $OutputPath | Out-Null | |
| $Libraries = Get-ChildItem -Recurse -Path "picky-${{ matrix.os }}-*" -Filter "*.dylib" | Foreach-Object { $_.FullName } | Select -Unique | |
| $LipoCmd = $(@('lipo', '-create', '-output', (Join-Path -Path $OutputPath -ChildPath "libDevolutionsPicky.dylib")) + $Libraries) -Join ' ' | |
| Write-Host $LipoCmd | |
| Invoke-Expression $LipoCmd | |
| shell: pwsh | |
| - name: Framework | |
| if: ${{ matrix.os == 'ios' }} | |
| run: | | |
| $Version = '${{ needs.preflight.outputs.project-version }}' | |
| $ShortVersion = '${{ needs.preflight.outputs.package-version }}' | |
| $BundleName = "libDevolutionsPicky" | |
| $RuntimesDir = Join-Path "dependencies" "runtimes" "ios-universal" "native" | |
| $FrameworkDir = Join-Path "$RuntimesDir" "$BundleName.framework" | |
| New-Item -Path $FrameworkDir -ItemType "directory" -Force | |
| $FrameworkExecutable = Join-Path $FrameworkDir $BundleName | |
| Copy-Item -Path (Join-Path "$RuntimesDir" "$BundleName.dylib") -Destination $FrameworkExecutable -Force | |
| $RPathCmd = $(@('install_name_tool', '-id', "@rpath/$BundleName.framework/$BundleName", "$FrameworkExecutable")) -Join ' ' | |
| Write-Host $RPathCmd | |
| Invoke-Expression $RPathCmd | |
| [xml] $InfoPlistXml = Get-Content (Join-Path "ffi" "dotnet" "Devolutions.Picky" "Info.plist") | |
| Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleIdentifier']/following-sibling::string[1]" | | |
| %{ | |
| $_.Node.InnerXml = "com.devolutions.picky" | |
| } | |
| Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleExecutable']/following-sibling::string[1]" | | |
| %{ | |
| $_.Node.InnerXml = $BundleName | |
| } | |
| Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleVersion']/following-sibling::string[1]" | | |
| %{ | |
| $_.Node.InnerXml = $Version | |
| } | |
| Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleShortVersionString']/following-sibling::string[1]" | | |
| %{ | |
| $_.Node.InnerXml = $ShortVersion | |
| } | |
| # Write the plist *without* a BOM | |
| $Encoding = New-Object System.Text.UTF8Encoding($false) | |
| $Writer = New-Object System.IO.StreamWriter((Join-Path $FrameworkDir "Info.plist"), $false, $Encoding) | |
| $InfoPlistXml.Save($Writer) | |
| $Writer.Close() | |
| # .NET XML document inserts two square brackets at the end of the DOCTYPE tag | |
| # It's perfectly valid XML, but we're dealing with plists here and dyld will not be able to read the file | |
| ((Get-Content -Path (Join-Path $FrameworkDir "Info.plist") -Raw) -Replace 'PropertyList-1.0.dtd"\[\]', 'PropertyList-1.0.dtd"') | Set-Content -Path (Join-Path $FrameworkDir "Info.plist") | |
| shell: pwsh | |
| - name: Upload native components | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: picky-${{ matrix.os }}-universal | |
| path: dependencies/runtimes/${{ matrix.os }}-universal | |
| build-managed: | |
| name: Managed build | |
| needs: [preflight, build-universal] | |
| runs-on: windows-2022 | |
| steps: | |
| - name: Check out ${{ github.repository }} | |
| uses: actions/checkout@v4 | |
| - name: Install ios workload | |
| run: dotnet workload install ios | |
| - name: Prepare dependencies | |
| run: | | |
| New-Item -ItemType Directory -Path "dependencies/runtimes" | Out-Null | |
| shell: pwsh | |
| - name: Download native components | |
| uses: actions/download-artifact@v4 | |
| with: | |
| path: dependencies/runtimes | |
| - name: Rename dependencies | |
| run: | | |
| Set-Location "dependencies/runtimes" | |
| $(Get-Item ".\picky-*") | ForEach-Object { Rename-Item $_ $_.Name.Replace("picky-", "") } | |
| Get-ChildItem * -Recurse | |
| shell: pwsh | |
| - name: Set package version | |
| run: | | |
| $Version = '${{ needs.preflight.outputs.project-version }}' | |
| $CsprojPath = '.\ffi\dotnet\Devolutions.Picky\Devolutions.Picky.csproj' | |
| $Content = Get-Content $CsprojPath -Raw | |
| $Content = $Content -replace '<Version>[\d\.]+</Version>', "<Version>$Version</Version>" | |
| Set-Content -Path $CsprojPath -Value $Content | |
| echo "Package version set to: $Version" | |
| shell: pwsh | |
| - name: Build picky (managed) | |
| run: | | |
| dotnet build .\ffi\dotnet\Devolutions.Picky\Devolutions.Picky.csproj -c Release | |
| shell: pwsh | |
| - name: Upload managed components | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: picky-nupkg | |
| path: ffi/dotnet/Devolutions.Picky/bin/Release/*.nupkg | |
| publish: | |
| name: Publish NuGet package | |
| environment: nuget-publish | |
| if: ${{ needs.preflight.outputs.dry-run == 'false' }} | |
| needs: [preflight, build-managed] | |
| runs-on: ubuntu-latest | |
| permissions: | |
| id-token: write | |
| steps: | |
| - name: Download NuGet package artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: picky-nupkg | |
| path: package | |
| - name: NuGet login (OIDC) | |
| uses: NuGet/login@v1 | |
| id: nuget-login | |
| with: | |
| user: ${{ secrets.NUGET_BOT_USERNAME }} | |
| - name: Publish to nuget.org | |
| run: | | |
| $Files = Get-ChildItem -Recurse package/*.nupkg | |
| foreach ($File in $Files) { | |
| $PushCmd = @( | |
| 'dotnet', | |
| 'nuget', | |
| 'push', | |
| "$File", | |
| '--api-key', | |
| '${{ steps.nuget-login.outputs.NUGET_API_KEY }}', | |
| '--source', | |
| 'https://api.nuget.org/v3/index.json', | |
| '--skip-duplicate' | |
| ) | |
| Write-Host "Publishing $($File.Name)..." | |
| $PushCmd = $PushCmd -Join ' ' | |
| Invoke-Expression $PushCmd | |
| } | |
| shell: pwsh | |
| notify: | |
| name: Notify failure | |
| if: ${{ always() && contains(needs.*.result, 'failure') && github.event_name == 'schedule' }} | |
| needs: [preflight, build-universal, build-managed] | |
| runs-on: ubuntu-latest | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.SLACK_WEBHOOK_ARCHITECTURE }} | |
| SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK | |
| steps: | |
| - name: Send slack notification | |
| id: slack | |
| uses: slackapi/[email protected] | |
| with: | |
| payload: | | |
| { | |
| "blocks": [ | |
| { | |
| "type": "section", | |
| "text": { | |
| "type": "mrkdwn", | |
| "text": "*${{ github.repository }}* :fire::fire::fire::fire::fire: \n The scheduled build for *${{ github.repository }}* is <${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|broken>" | |
| } | |
| } | |
| ] | |
| } |