Update release process, move to Github Action

mvdwetering · mvdwetering · commit b2a147fafedd · 2026-04-05T20:04:42.000+02:00
diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml
@@ -8,10 +8,9 @@ permissions:
 on:
   push:
     branches:
-      - master  
-    pull_request:
-    tags:
-      - 'v*'
+      - master
+  pull_request:
+
 jobs:
   build:
 
@@ -23,13 +22,6 @@ jobs:
 
     steps:
     - uses: actions/checkout@v4
-    - if: startsWith(github.ref, 'refs/tags/v')
-      # Assume all tags starting with a v are version tags.
-      name: Check if versiontag matches pyproject.toml
-      run: |
-        VERSION_NUMBER="${GITHUB_REF_NAME:1}"
-        echo Version $VERSION_NUMBER extracted from $GITHUB_REF_NAME
-        grep "version = \"$VERSION_NUMBER\"" pyproject.toml
     - name: Set up Python ${{ matrix.python-version }}
       uses: actions/setup-python@v5
       with:
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,123 @@
+name: Release
+
+on:
+  workflow_dispatch:
+    inputs:
+      version:
+        description: 'New version number (e.g. 6.3.0)'
+        required: true
+        type: string
+
+jobs:
+  validate:
+    name: Validate version
+    runs-on: ubuntu-latest
+    outputs:
+      version: ${{ steps.check.outputs.version }}
+    steps:
+      - uses: actions/checkout@v4
+      - name: Check version is valid and greater than current
+        id: check
+        run: |
+          NEW="${{ inputs.version }}"
+
+          # Must match semver X.Y.Z
+          if ! echo "$NEW" | grep -qE '^[0-9]+\.[0-9]+\.[0-9]+$'; then
+            echo "::error::Version '$NEW' is not valid semver (expected X.Y.Z)"
+            exit 1
+          fi
+
+          CURRENT=$(grep -E '^version\s*=\s*"[0-9]+' pyproject.toml | head -n1 \
+            | sed -E 's/.*version\s*=\s*"([^"]+)".*/\1/')
+
+          echo "Current version: $CURRENT"
+          echo "Requested version: $NEW"
+
+          version_key() {
+            echo "$1" | awk -F. '{ printf "%05d%05d%05d", $1, $2, $3 }'
+          }
+
+          if [ "$(version_key "$NEW")" -le "$(version_key "$CURRENT")" ]; then
+            echo "::error::New version ($NEW) must be greater than current version ($CURRENT)"
+            exit 1
+          fi
+
+          echo "version=$NEW" >> "$GITHUB_OUTPUT"
+
+  test:
+    name: Test (Python ${{ matrix.python-version }})
+    needs: validate
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: true
+      matrix:
+        python-version: ["3.11", "3.12", "3.13", "3.14"]
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+          cache: 'pip'
+      - name: Install dependencies
+        run: |
+          python -m pip install --upgrade pip
+          python -m pip install flake8
+          pip install . .[dev]
+      - name: Lint with flake8
+        run: |
+          flake8 . --count --select=E9,F63,F7,F82 --show-source --statistics
+          flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
+      - name: Check typing with mypy
+        run: mypy src/ynca --check-untyped-defs
+      - name: Test with pytest
+        run: pytest tests --doctest-modules --junitxml=junit/test-results.xml --cov=ynca --cov-report=xml --cov-report=html
+
+  release:
+    name: Bump, tag and create draft release
+    needs: test
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    steps:
+      - name: Generate GitHub App token
+        id: app-token
+        uses: actions/create-github-app-token@v1
+        with:
+          app-id: ${{ secrets.GH_APP_ID }}
+          private-key: ${{ secrets.GH_APP_PRIVATE_KEY }}
+
+      - uses: actions/checkout@v4
+        with:
+          token: ${{ steps.app-token.outputs.token }}
+          ref: master
+
+      - name: Bump version in pyproject.toml
+        run: |
+          NEW="${{ needs.validate.outputs.version }}"
+          awk -v newver="$NEW" '
+            BEGIN{inproj=0;done=0}
+            /^\[project\]/{inproj=1}
+            inproj && !done && /version\s*=/{sub(/version\s*=\s*"[^"]+"/, "version = \"" newver "\""); done=1}
+            {print}
+          ' pyproject.toml > pyproject.toml.tmp && mv pyproject.toml.tmp pyproject.toml
+
+      - name: Commit, tag and push
+        run: |
+          NEW="${{ needs.validate.outputs.version }}"
+          git config user.name "github-actions[bot]"
+          git config user.email "github-actions[bot]@users.noreply.github.com"
+          git add pyproject.toml
+          git commit -m "Bump ynca version to $NEW"
+          git tag -a "v$NEW" -m "Version $NEW"
+          git push --follow-tags
+
+      - name: Create draft release
+        env:
+          GH_TOKEN: ${{ steps.app-token.outputs.token }}
+        run: |
+          NEW="${{ needs.validate.outputs.version }}"
+          gh release create "v$NEW" \
+            --draft \
+            --generate-notes \
+            --title "v$NEW"
diff --git a/bump_version.sh b/bump_version.sh
diff --git a/docs/DEVELOPING.md b/docs/DEVELOPING.md
@@ -25,22 +25,27 @@ CI is a bit barebones, but it does:
 
 * Run mypy
 * Run tests
-* When pushing a version tag a sanity check is done against the version number in `pyproject.toml` to make sure they match
 * When a release is made it gets automatically uploaded to PyPi.
 
 For details see the task files under `.github/workflows`
 
 ## Releasing
 
-Releasing is not difficult, but could be a bit more automated.
+Releasing is triggered from GitHub Actions — no local steps required.
 
-* Do any tests you want to do before release, e.g. run `coverage.sh`
-* Run `bump_version.sh` script and follow the prompts. When completed a version tag has been created and pushed to Github
-* Wait a bit until [the actions](https://github.com/mvdwetering/ynca/actions) are all done without errors
-* [On Github](https://github.com/mvdwetering/ynca/tags) create a release from the tag that was pushed
-* Release title is the version e.g. v5.27.0
-* Write the release notes and save
-  * The package will be automatically uploaded to PyPi
+1. Go to [Actions → Release](https://github.com/mvdwetering/ynca/actions/workflows/release.yml) and click **Run workflow**
+2. Enter the new version number (e.g. `6.3.0`) and confirm
+3. The workflow validates the version, runs the full test matrix, bumps `pyproject.toml`, commits, tags, and creates a **draft** GitHub Release with auto-generated notes
+4. Open the draft release, edit the notes to highlight breaking changes or exciting features, then click **Publish release**
+   * Publishing automatically uploads the package to PyPI
+
+### Prerequisites (one-time setup)
+
+The workflow uses a GitHub App token to push to the branch-protected `master` branch.
+The following repository secrets must be configured:
+
+* `GH_APP_ID` — the App ID of the release GitHub App
+* `GH_APP_PRIVATE_KEY` — the private key (`.pem` contents) of that App
 
 ## Adding Commands
 
@@ -49,6 +54,7 @@ Releasing is not difficult, but could be a bit more automated.
 > The format can just be some logging.
 >
 > Example prompt that generated the implementation in [#63](https://github.com/mvdwetering/ynca/pull/63) (and a follow-up prompt to add the other variants)
+>
 > ```text
 > Add a command based on this data: "3618651.006055 Received: @sys:SPPATTERN1SWFR1CNFG=None","3618657.598930 Received: @sys:SPPATTERN1SWFR1CNFG=Use",
 >```
