Merge pull request #4661 from dev-hato/renovate/uv-0.x #13307
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
--- | |
name: deploy-hato-bot | |
on: | |
release: | |
types: | |
- published | |
pull_request: | |
types: | |
- opened | |
- synchronize | |
- reopened | |
- closed | |
push: | |
branches: | |
- master | |
- develop | |
jobs: | |
deploy_docker_image: | |
runs-on: ubuntu-latest | |
env: | |
DOCKER_BUILDKIT: 1 | |
COMPOSE_DOCKER_CLI_BUILD: 1 | |
REPOSITORY: ${{github.repository}} | |
permissions: | |
contents: read | |
packages: write | |
if: github.event_name == 'release' || (github.event_name == 'pull_request' && github.event.action != 'closed' && github.repository == github.event.pull_request.head.repo.full_name) | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
with: | |
fetch-depth: 0 | |
- name: Set .env | |
run: cp .env.example .env | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 | |
with: | |
registry: ghcr.io | |
username: ${{ github.actor }} | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Set up QEMU | |
uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a # v3.3.0 | |
- name: Set up Docker Buildx | |
id: buildx | |
uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0 | |
- run: echo "TAG_NAME=${HEAD_REF//\//-}" >> "$GITHUB_ENV" | |
env: | |
HEAD_REF: ${{github.head_ref}} | |
if: ${{ github.event_name == 'pull_request' }} | |
- run: echo 'TAG_NAME=${{ github.event.release.tag_name }}' >> "$GITHUB_ENV" | |
if: ${{ github.event_name == 'release' }} | |
- name: Build and push (build) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: build.docker-compose.yml | |
source: . | |
- name: Build and push (main) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: docker-compose.yml | |
source: . | |
- name: Build and push (dev) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: docker-compose.yml,dev.base.docker-compose.yml | |
source: . | |
- run: echo 'TAG_NAME=latest' >> "$GITHUB_ENV" | |
if: ${{ github.event_name == 'release' }} | |
- name: Build and push (build) (latest) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
if: ${{ github.event_name == 'release' }} | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: build.docker-compose.yml | |
source: . | |
- name: Build and push (main) (latest) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
if: ${{ github.event_name == 'release' }} | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: docker-compose.yml | |
source: . | |
- name: Build and push (dev) (latest) | |
uses: docker/bake-action@5ca506d06f70338a4968df87fd8bfee5cbfb84c7 # v6.0.0 | |
if: ${{ github.event_name == 'release' }} | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
with: | |
push: true | |
files: docker-compose.yml,dev.base.docker-compose.yml | |
source: . | |
- name: Start docker | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
run: docker compose up -d --wait | |
# pyproject.toml をDockerイメージと同期させる | |
update-version-pyproject: | |
runs-on: ubuntu-latest | |
permissions: | |
contents: write | |
pull-requests: write | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
REPOSITORY: ${{github.repository}} | |
needs: deploy_docker_image | |
if: always() && (needs.deploy_docker_image.result == 'success' || (github.event_name == 'pull_request' && github.event.action == 'closed')) | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
fetch-depth: 0 | |
ref: ${{ github.event.pull_request.head.sha }} | |
- name: Get Python version | |
id: get_python_version | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
run: bash "${GITHUB_WORKSPACE}/scripts/deploy_hato_bot/update_version_python_version/get_python_version.sh" | |
env: | |
HEAD_REF: ${{github.head_ref || github.event.release.tag_name}} | |
- uses: dev-hato/actions-diff-pr-management@cc201e3df74a342983025c4e97b7216b4e77f9f1 # v2.0.0 | |
with: | |
github-token: ${{secrets.GITHUB_TOKEN}} | |
branch-name-prefix: fix-version-pyproject | |
pr-title-prefix: pyproject.tomlを直してあげたよ! | |
pr-update-version: | |
runs-on: ubuntu-latest | |
needs: deploy_docker_image | |
if: always() && (needs.deploy_docker_image.result == 'success' || (github.event_name == 'pull_request' && github.event.action == 'closed')) | |
permissions: | |
contents: write | |
pull-requests: write | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
fetch-depth: 0 | |
ref: ${{ github.event.pull_request.head.sha }} | |
- uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
cache: npm | |
node-version-file: package.json | |
- name: Get npm version | |
id: get_npm_version | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
run: bash "${GITHUB_WORKSPACE}/scripts/deploy_hato_bot/pr_update_version/get_npm_version.sh" | |
env: | |
HEAD_REF: ${{github.head_ref || github.event.release.tag_name}} | |
- uses: dev-hato/actions-diff-pr-management@cc201e3df74a342983025c4e97b7216b4e77f9f1 # v2.0.0 | |
with: | |
github-token: ${{secrets.GITHUB_TOKEN}} | |
branch-name-prefix: fix-version | |
pr-title-prefix: nodeをアップデートしてあげたよ! | |
# package.jsonに差分があれば、package.jsonからpackage-lock.jsonを作り出す | |
pr-check-npm: | |
runs-on: ubuntu-latest | |
needs: pr-update-version | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
# ここでsubmodule持ってくるとdetached headにcommitして死ぬ | |
# submodule: 'recursive' | |
fetch-depth: 0 | |
ref: ${{ github.event.pull_request.head.sha }} | |
- name: Set up Node.js | |
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af # v4.1.0 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
cache: npm | |
node-version-file: package.json | |
- name: Install dependencies | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
run: bash "${GITHUB_WORKSPACE}/scripts/deploy_hato_bot/npm_install.sh" | |
- uses: dev-hato/actions-diff-pr-management@cc201e3df74a342983025c4e97b7216b4e77f9f1 # v2.0.0 | |
with: | |
github-token: ${{secrets.GITHUB_TOKEN}} | |
branch-name-prefix: npm | |
pr-title-prefix: package.jsonやpackage-lock.jsonが更新されたので直してあげたよ! | |
update-dockle: | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
if: github.event_name != 'pull_request' || github.event.action != 'closed' | |
with: | |
fetch-depth: 0 | |
ref: ${{ github.event.pull_request.head.sha }} | |
- uses: dev-hato/actions-update-dockle@2630e9ff48e8eae09c5be8acecebce297cbd1f7d # v0.0.108 | |
with: | |
github-token: ${{secrets.GITHUB_TOKEN}} | |
dockle: | |
runs-on: ubuntu-latest | |
needs: | |
- update-dockle | |
- deploy_docker_image | |
env: | |
DOCKER_CONTENT_TRUST: 1 | |
REPOSITORY: ${{github.repository}} | |
steps: | |
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 | |
- run: bash "${GITHUB_WORKSPACE}/scripts/deploy_hato_bot/dockle/run_dockle.sh" | |
env: | |
HEAD_REF: ${{github.head_ref || github.event.release.tag_name}} | |
deploy-complete: | |
runs-on: ubuntu-latest | |
if: always() | |
needs: | |
- update-version-pyproject | |
- pr-check-npm | |
- update-dockle | |
- dockle | |
steps: | |
- if: needs.update-dockle.result == 'success' && (github.event_name == 'push' || (github.event_name == 'pull_request' && github.repository != github.event.pull_request.head.repo.full_name) || (needs.update-version-pyproject.result == 'success' && (github.event.action == 'closed' || (needs.pr-check-npm.result == 'success' && needs.dockle.result == 'success')))) | |
run: exit 0 | |
- if: ${{ !(needs.update-dockle.result == 'success' && (github.event_name == 'push' || (github.event_name == 'pull_request' && github.repository != github.event.pull_request.head.repo.full_name) || (needs.update-version-pyproject.result == 'success' && (github.event.action == 'closed' || (needs.pr-check-npm.result == 'success' && needs.dockle.result == 'success'))))) }} | |
run: exit 1 | |
concurrency: | |
group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }} | |
cancel-in-progress: true |