chore: enable github action for validation and releasing

yana1205 · yana1205 · commit cde712fb34c5 · 2025-03-21T22:26:50.000+09:00
Signed-off-by: Takumi Yanagawa &lt;yana@jp.ibm.com&gt;
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,89 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+# GitHub recommends pinning actions to a commit SHA.
+# To get a newer version, you will need to update the SHA.
+# You can also reference a tag or branch, but the action may change without warning.
+
+name: release
+
+on:
+  workflow_dispatch:
+
+jobs:
+  build:
+    name: Build with semantic versioning
+    runs-on: ubuntu-latest
+    outputs:
+      release-tag: ${{ steps.release.outputs.tag }}
+      release-version: ${{ steps.release.outputs.version }}
+    permissions:
+      contents: write
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Install semantic-release
+        run: pip install python-semantic-release==9.21.0
+      - name: Python Semantic Release
+        id: release
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          semantic-release version --patch --print > version.txt
+          semantic-release version --patch
+          TAG="v$(cat version.txt)"
+          echo "tag=$TAG" >> $GITHUB_OUTPUT
+          echo "version=$(cat version.txt)" >> $GITHUB_OUTPUT
+      - name: Check release
+        if: steps.release.outputs.released == 'false'
+        run: |
+          echo 'No release will be made since there are no release commits. See also Commit Parsers configuration.'
+          exit 1
+      - name: Set up Python 3.11
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.11'
+      - name: Install build tools
+        run: |
+          make install-dev
+      - name: Build
+        run: |
+          make build
+      - name: Store the distribution packages
+        uses: actions/upload-artifact@v4
+        with:
+          name: python-package-distributions
+          path: dist/
+
+  publish-to-github:
+    name: Publish to GitHub
+    needs:
+      - build
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: write
+      packages: write
+      id-token: write  # IMPORTANT: mandatory for trusted publishing
+
+    steps:
+      - name: Download all the dists
+        uses: actions/download-artifact@v4
+        with:
+          name: python-package-distributions
+          path: dist/
+      - name: Sign the dists with Sigstore
+        uses: sigstore/gh-action-sigstore-python@v3.0.0
+        with:
+          inputs: |
+            ./dist/*.tar.gz
+            ./dist/*.whl
+      - name: Upload package distributions to GitHub Releases
+        run: gh release upload ${{needs.build.outputs.release-tag}} ./dist/*
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GH_REPO: ${{ github.REPOSITORY }}
diff --git a/.github/workflows/validate.yml b/.github/workflows/validate.yml
@@ -0,0 +1,40 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+# GitHub recommends pinning actions to a commit SHA.
+# To get a newer version, you will need to update the SHA.
+# You can also reference a tag or branch, but the action may change without warning.
+
+name: validate
+
+on:
+  pull_request_target:
+    types:
+      - opened
+      - edited
+      - synchronize
+    branches:
+      - 'main'
+
+jobs:
+  validate:
+    name: Validate
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+        with: 
+          repository: ${{ github.event.pull_request.head.repo.full_name }}
+          ref: ${{ github.event.pull_request.head.ref }}
+      - name: Set up Python 3.11
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.11'
+      - name: Install for develompemnt
+        run: |
+          make install-dev
+      - name: Unit Test
+        run: |
+          make test
diff --git a/Makefile b/Makefile
@@ -8,6 +8,14 @@ test:
 format:
 	python -m black .
 
+.PHONY: build
+build:
+	python -m build
+
+.PHONY: install-dev
+install-dev:
+	python -m pip install -e ".[dev]"
+	
 # Direct dependency is not allowed for Pypi packaging even if the dependant module is defined as extra dependencies. 
 # Workaround: Move to manual installation by make
 .PHONY: install-detect-descret
diff --git a/itbench_tools/__version__.py b/itbench_tools/__version__.py
diff --git a/pyproject.toml b/pyproject.toml
@@ -3,6 +3,7 @@ requires = ["setuptools", "setuptools-scm"]
 build-backend = "setuptools.build_meta"
 
 [project]
+version = "0.0.1"
 name = "itbench-tools"
 requires-python = ">=3.11"
 keywords = ["one", "two"]
@@ -21,8 +22,6 @@ dependencies = [
   "urllib3>=2.2.2",
 ]
 
-dynamic = ["version"]
-
 [project.scripts]
 itbench-tools = "itbench_tools.main:main"
 
@@ -39,9 +38,6 @@ dev = [
   "isort",
 ]
 
-[tool.setuptools.dynamic]
-version = {attr = "itbench_tools.__version__.__version__"}
-
 [tool.setuptools]
 package-dir = { "itbench_tools" = "itbench_tools" }
 
@@ -84,5 +80,12 @@ exclude = '''
 ignore = "E203, W503,"
 max-line-length = 150
 
+[tool.semantic_release]
+commit_message = "{version}\n\nAutomatically generated by python-semantic-release"
+version_toml = ["pyproject.toml:project.version"]
+
+[tool.semantic_release.remote.token]
+env = "GITHUB_TOKEN"
+
 [tool.semantic_release.publish]
 upload_to_vcs_release = false
