Merge pull request #278 from SolidOS/dependabot/npm_and_yarn/html-web… #572
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| branches: | |
| - main | |
| workflow_dispatch: | |
| jobs: | |
| build: | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| node-version: [20, 22] | |
| steps: | |
| - uses: actions/checkout@v6 | |
| - name: Use Node.js ${{ matrix.node-version }} | |
| uses: actions/setup-node@v6 | |
| with: | |
| node-version: ${{ matrix.node-version }} | |
| - run: npm ci | |
| - run: npm run build | |
| - run: npm run bundlesize | |
| - name: Save build | |
| if: matrix.node-version == 20 | |
| uses: actions/upload-artifact@v6 | |
| with: | |
| name: build | |
| path: | | |
| . | |
| !node_modules | |
| retention-days: 1 | |
| gh-pages: | |
| needs: build | |
| runs-on: ubuntu-latest | |
| if: github.ref == 'refs/heads/main' | |
| steps: | |
| - uses: actions/download-artifact@v7 | |
| with: | |
| name: build | |
| - uses: peaceiris/actions-gh-pages@v4 | |
| with: | |
| github_token: ${{ secrets.GITHUB_TOKEN }} | |
| publish_dir: . | |
| dependabot: | |
| name: 'Dependabot' | |
| needs: build # After the E2E and build jobs, if one of them fails, it won't merge the PR. | |
| runs-on: ubuntu-latest | |
| if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request'}} # Detect that the PR author is dependabot | |
| steps: | |
| - name: Enable auto-merge for Dependabot PRs | |
| run: gh pr merge --auto --merge "$PR_URL" # Use Github CLI to merge automatically the PR | |
| env: | |
| PR_URL: ${{github.event.pull_request.html_url}} | |
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | |
| npm-publish-build: | |
| needs: build | |
| runs-on: ubuntu-latest | |
| permissions: | |
| id-token: write # Required for OIDC | |
| contents: read | |
| steps: | |
| - uses: actions/download-artifact@v7 | |
| with: | |
| name: build | |
| - uses: actions/setup-node@v6 | |
| with: | |
| node-version: 20 | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Update npm to latest (required for OIDC) | |
| run: npm install -g npm@latest | |
| - uses: rlespinasse/[email protected] | |
| - name: Append commit hash to package version | |
| run: 'sed -i -E "s/(\"version\": *\"[^\"]+)/\1-${GITHUB_SHA_SHORT}/" package.json' | |
| - name: Disable pre- and post-publish actions | |
| run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' | |
| - name: Publish to npm | |
| if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' | |
| run: npm publish --tag ${{ env.GITHUB_REF_SLUG }} | |
| npm-publish-latest: | |
| needs: [build, npm-publish-build] | |
| runs-on: ubuntu-latest | |
| if: github.ref == 'refs/heads/main' | |
| permissions: | |
| id-token: write # Required for OIDC | |
| contents: read | |
| steps: | |
| - uses: actions/download-artifact@v7 | |
| with: | |
| name: build | |
| - uses: actions/setup-node@v6 | |
| with: | |
| node-version: 20 | |
| registry-url: 'https://registry.npmjs.org' | |
| - name: Update npm to latest (required for OIDC) | |
| run: npm install -g npm@latest | |
| - name: Publish to npm | |
| if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' | |
| run: npm publish --tag latest |