Skip to content

trusted publisher

trusted publisher #618

Workflow file for this run

name: build
on: [push]
jobs:
lint:
name: Lint
runs-on: ubuntu-latest
timeout-minutes: 5
steps:
- uses: actions/checkout@v4
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v5
with:
python-version: "3.10"
- name: Lint code
run: |
make setup
make check
test:
name: Test
needs: lint
runs-on: ubuntu-latest
timeout-minutes: 5
steps:
- uses: actions/checkout@v4
- name: Set up Python 3.10
uses: actions/setup-python@v5
with:
python-version: "3.10"
- name: Run all tests + code coverage
run: |
pip install coveralls
make selenium
make ciall
coveralls
env:
GITHUB_TOKEN: ${{ secrets.COVERALLS }}
- name: Missing module detection
run: |
make cidetectsetuperror
testospython:
name: Test OS/Python version
needs: test
runs-on: ${{ matrix.os }}
timeout-minutes: 15
strategy:
matrix:
os: [macos-latest, windows-latest, ubuntu-latest]
python-version: ["3.9", "3.10", "3.11", "3.12", "3.13"]
steps:
- uses: actions/checkout@v4
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v5
with:
python-version: ${{ matrix.python-version }}
- name: Run tests
run: |
make ci
env:
PIP_USE_PEP517: 1
deploy:
name: Deploy on PyPI
needs: testospython
runs-on: ubuntu-latest
environment: release
permissions:
id-token: write # IMPORTANT: mandatory for trusted publishing
timeout-minutes: 10
steps:
- uses: actions/checkout@v4
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v5
with:
python-version: 3.11
- name: Install pypa/build
run: |
python -m pip install --upgrade pip
python -m pip install --upgrade setuptools wheel
python -m pip install build --user
- name: Build a binary wheel and a source tarball
run: python3 -m build
- name: Store the distribution packages
if: >
github.event_name == 'push' &&
startsWith(github.ref, 'refs/tags') &&
github.actor == github.repository_owner
uses: actions/upload-artifact@v4
with:
name: python-package-distributions
path: dist/
- name: Publish package on Pypi
if: >
github.event_name == 'push' &&
startsWith(github.ref, 'refs/tags') &&
github.actor == github.repository_owner
uses: pypa/gh-action-pypi-publish@release/v1