Fabisev/artifact publishing #70
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build and Release | |
| on: | |
| push: | |
| branches: [ main ] | |
| tags: [ 'v*', 'rc-*' ] | |
| pull_request: | |
| branches: [ main ] | |
| workflow_dispatch: | |
| permissions: | |
| id-token: write | |
| contents: read | |
| jobs: | |
| get-version: | |
| runs-on: ubuntu-latest | |
| outputs: | |
| version: ${{ steps.version.outputs.version }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Get version | |
| id: version | |
| run: | | |
| BASE_VERSION=$(node -p "require('./package.json').version") | |
| echo "version=$BASE_VERSION" >> $GITHUB_OUTPUT | |
| build: | |
| needs: [get-version] | |
| timeout-minutes: 30 | |
| strategy: | |
| matrix: | |
| include: | |
| - arch: x86_64 | |
| runner: codebuild-project-awsaws-lambda-nodejs-runtime-interface-client-${{ github.run_id }}-${{ github.run_attempt }} | |
| - arch: aarch64 | |
| runner: codebuild-project-awsaws-lambda-nodejs-runtime-interface-client-${{ github.run_id }}-${{ github.run_attempt }} | |
| runs-on: ${{ matrix.runner }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '20' | |
| - name: Install build dependencies | |
| run: | | |
| apt-get update | |
| apt-get install -y cmake make g++ autotools-dev automake libtool | |
| - name: Build natively for $(arch) | |
| run: | | |
| echo "Building for architecture: $(arch)" | |
| BUILD=1 npm install | |
| npm run build | |
| # Create architecture-specific package name | |
| CURRENT_ARCH=$(arch) | |
| PACKAGE_VERSION="${{ needs.get-version.outputs.version }}" | |
| # Modify package.json to include architecture in name | |
| node -e " | |
| const pkg = require('./package.json'); | |
| pkg.name = 'aws-lambda-ric-' + process.env.CURRENT_ARCH || '$(arch)'; | |
| require('fs').writeFileSync('./package.json', JSON.stringify(pkg, null, 2)); | |
| " CURRENT_ARCH=$CURRENT_ARCH | |
| npm pack | |
| - name: Generate checksums | |
| run: | | |
| PACKAGE_FILE=$(ls aws-lambda-ric-*.tgz) | |
| CURRENT_ARCH=$(arch) | |
| sha256sum $PACKAGE_FILE > checksums-$CURRENT_ARCH.sha256 | |
| sha512sum $PACKAGE_FILE > checksums-$CURRENT_ARCH.sha512 | |
| echo "Package: $PACKAGE_FILE ($CURRENT_ARCH) with version: ${{ needs.get-version.outputs.version }}" > checksums-$CURRENT_ARCH.txt | |
| - name: Upload artifacts | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: package-${{ matrix.arch }}-${{ needs.get-version.outputs.version }} | |
| path: | | |
| aws-lambda-ric-*.tgz | |
| checksums-*.* | |
| retention-days: 30 | |
| test: | |
| needs: [get-version, build] | |
| strategy: | |
| matrix: | |
| node-version: [18, 20, 22] | |
| include: | |
| - arch: x86_64 | |
| runner: ubuntu-latest | |
| - arch: aarch64 | |
| runner: ubuntu-latest | |
| runs-on: ${{ matrix.runner }} | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Run unit tests - Node ${{ matrix.node-version }} (native $(arch)) | |
| run: | | |
| docker build \ | |
| -f test/unit/Dockerfile.nodejs${{ matrix.node-version }}.x \ | |
| -t unit/nodejs.${{ matrix.node-version }}x \ | |
| . | |
| docker run --rm unit/nodejs.${{ matrix.node-version }}x | |
| publish: | |
| if: startsWith(github.ref, 'refs/tags/') | |
| runs-on: codebuild-project-awsaws-lambda-nodejs-runtime-interface-client-${{ github.run_id }}-${{ github.run_attempt }} | |
| needs: [get-version, build, test] | |
| permissions: | |
| contents: write | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Download x86_64 artifacts | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: package-x86_64-${{ needs.get-version.outputs.version }} | |
| path: ./artifacts/x86_64 | |
| - name: Download aarch64 artifacts | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: package-aarch64-${{ needs.get-version.outputs.version }} | |
| path: ./artifacts/aarch64 | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '20' | |
| - name: Setup NPM authentication | |
| run: | | |
| NPM_TOKEN=$(aws secretsmanager get-secret-value --secret-id aws-lambda-runtimes/github/nodejs/npm-token --query SecretString --output text) | |
| echo "//registry.npmjs.org/:_authToken=${NPM_TOKEN}" > .npmrc | |
| chmod 0600 .npmrc | |
| - name: Determine version and publish packages | |
| id: version | |
| run: | | |
| if [[ "${{ github.ref }}" == refs/tags/rc-* ]]; then | |
| RC_NUMBER=${GITHUB_REF#refs/tags/rc-} | |
| PACKAGE_VERSION="${{ needs.get-version.outputs.version }}-rc.${RC_NUMBER}" | |
| echo "package_version=$PACKAGE_VERSION" >> $GITHUB_OUTPUT | |
| echo "is_rc=true" >> $GITHUB_OUTPUT | |
| TAG_FLAG="--tag rc" | |
| else | |
| echo "package_version=${{ needs.get-version.outputs.version }}" >> $GITHUB_OUTPUT | |
| TAG_FLAG="" | |
| fi | |
| # Publish architecture-specific packages | |
| for arch in x86_64 aarch64; do | |
| PACKAGE_FILE=$(ls ./artifacts/$arch/aws-lambda-ric-*.tgz) | |
| echo "Publishing $PACKAGE_FILE for architecture $arch" | |
| npm publish $PACKAGE_FILE $TAG_FLAG --access=public | |
| done | |
| - name: Combine checksums | |
| run: | | |
| cat ./artifacts/*/checksums-*.txt > combined-checksums.txt | |
| cat ./artifacts/*/checksums-*.sha256 > combined-checksums.sha256 | |
| cat ./artifacts/*/checksums-*.sha512 > combined-checksums.sha512 | |
| - name: Create GitHub Release | |
| if: startsWith(github.ref, 'refs/tags/') | |
| uses: softprops/action-gh-release@v2 | |
| with: | |
| files: | | |
| ./artifacts/*/aws-lambda-ric-*.tgz | |
| combined-checksums.* | |
| prerelease: ${{ steps.version.outputs.is_rc }} |