wsfed
7.0.17.0.2
.github/workflows/release.yml+
.github/workflows/release.ymlNew file+63
Index: package/.github/workflows/release.yml
===================================================================
--- package/.github/workflows/release.yml
+++ package/.github/workflows/release.yml
@@ -0,0 +1,63 @@
+name: Release
+
+on:
+ push:
+ branches:
+ - master
+
+permissions:
+ contents: write
+ issues: write
+ pull-requests: write
+ id-token: write
+
+jobs:
+ release:
+ runs-on: ubuntu-latest
+ if: startsWith(github.event.head_commit.message, 'chore(release):')
+
+ steps:
+ - name: Checkout code
+ uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+ with:
+ fetch-depth: 0
+ persist-credentials: false
+
+ - name: Setup Node.js
+ uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0
+ with:
+ node-version: '24'
+
+ - name: Install dependencies
+ run: npm install
+
+ - name: Set up Python
+ uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
+ with:
+ python-version: "3.10"
+
+ - name: Install Python dependencies
+ shell: bash
+ run: pip install boto3>=1.34.159 requests>=2.32.3 rl-deploy>=2.2.3.0 pip-system-certs>=4.0
+
+ - name: Configure AWS credentials
+ uses: aws-actions/configure-aws-credentials@8df5847569e6427dd6c4fb1cf565c83acfa8afa7 # v6.0.0
+ with:
+ role-to-assume: ${{ secrets.PRODSEC_TOOLS_ARN }}
+ aws-region: us-east-1
+ mask-aws-account-id: true
+
+ - name: Install rl-wrapper
+ env:
+ WRAPPER_INDEX_URL: "https://${{ secrets.PRODSEC_TOOLS_USER }}:${{ secrets.PRODSEC_TOOLS_TOKEN }}@a0us.jfrog.io/artifactory/api/pypi/python-local/simple"
+ run: pip install "rl-wrapper>=1.0.0" --index-url $WRAPPER_INDEX_URL
+
+ - name: Release
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+ NPM_CONFIG_PROVENANCE: true
+ RLSECURE_LICENSE: ${{ secrets.RLSECURE_LICENSE }}
+ RLSECURE_SITE_KEY: ${{ secrets.RLSECURE_SITE_KEY }}
+ SIGNAL_HANDLER_TOKEN: ${{ secrets.SIGNAL_HANDLER_TOKEN }}
+ PYTHONUNBUFFERED: 1
+ run: npx semantic-release