Merge pull request #897 from greenbone/y0urself/man-rel-20.8

y0urself · web-flow · commit 44f4ef8c9010 · 2021-10-11T17:27:55.000+02:00
Add the manual release workflow to 20.08
diff --git a/.github/workflows/release-pontos-manually.yml b/.github/workflows/release-pontos-manually.yml
@@ -0,0 +1,64 @@
+name: Manually release gvm-libs with pontos
+
+on:
+  workflow_dispatch:
+
+jobs:
+  build-and-release:
+    env:
+      GITHUB_USER: ${{ secrets.GREENBONE_BOT }}
+      GITHUB_MAIL: ${{ secrets.GREENBONE_BOT_MAIL }}
+      GITHUB_TOKEN: ${{ secrets.GREENBONE_BOT_TOKEN }}
+      GPG_KEY: ${{ secrets.GPG_KEY }}
+      GPG_FINGERPRINT: ${{ secrets.GPG_FINGERPRINT }}
+      GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
+    name: Build and release with pontos
+    runs-on: 'ubuntu-latest'
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        persist-credentials: false
+    - name: Set up Python
+      uses: actions/setup-python@v2
+      with:
+        python-version: 3.8
+    - name: Install pontos
+      run: |
+        apt-get update && apt-get --assume-yes install python3-venv
+        python3 -m venv .venv
+        . .venv/bin/activate
+        python -m pip install --upgrade pip
+        python -m pip install --upgrade pontos
+    - name: Tell git who I am
+      run: |
+        git config --global user.name "${{ env.GITHUB_USER }}"
+        git config --global user.email "${{ env.GITHUB_MAIL }}"
+        git remote set-url origin https://${{ env.GITHUB_TOKEN }}@github.com/${{ github.repository }}
+    - name: Print base branch
+      # we always should've checked out the correct branch'
+      run: echo "Current Branch is $GITHUB_BASE_REF"
+    - name: Prepare patch release with pontos
+      run: |
+        . .venv/bin/activate
+        pontos-release prepare --patch
+        echo "VERSION=$(pontos-version show)" >> $GITHUB_ENV
+    - name: Release with pontos
+      run: |
+        . .venv/bin/activate
+        pontos-release release
+    - name: Import key from secrets
+      run: |
+        echo -e "${{ env.GPG_KEY }}" >> tmp.file
+        gpg                                        \
+          --pinentry-mode loopback                 \
+          --passphrase ${{ env.GPG_PASSPHRASE }}   \
+          --import tmp.file
+        rm tmp.file
+    - name: Sign with pontos-release sign
+      run: |
+        echo "Signing assets for ${{env.VERSION}}"
+        . .venv/bin/activate
+        pontos-release sign                        \
+          --signing-key ${{ env.GPG_FINGERPRINT }} \
+          --passphrase ${{ env.GPG_PASSPHRASE }}   \
+          --release-version ${{ env.VERSION }}
