HELM-75 feat:Provide automatic changelog on GH Releases (#49)

gsautner · web-flow · commit 230fd550b914 · 2026-02-15T20:25:25.000-03:00
Release-As:  1.7.0
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -4,51 +4,28 @@ on:
   push:
     branches:
       - master
-      - v1.1
+      - next
     paths:
       - '.github/**'
       - 'charts/**'
       - '!**.md'
 
-jobs:
-
-  validate:
-    runs-on: ubuntu-latest
-    outputs:
-      result: ${{ steps.changed.outputs.result }}
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v3
-        with:
-          fetch-depth: 0
-#      - id: changed
-#        name: Changed
-#        run: |
-#          files_changed="$(git show --pretty="" --name-only)"
-#          echo "$files_changed"
-#          num_version_bumps="$(echo "$files_changed" | grep Chart.yaml | xargs git show | grep -c "+version" || true)"
-#          if [[ "$num_version_bumps" -eq "1" ]]; then
-#            echo "result=ok" >> $GITHUB_OUTPUT
-#          else
-#            echo "result=skip"
-#            echo "::warning::Version not changed, skipping release job..."
-#          fi
+permissions:
+  contents: write
+  packages: write
+  issues: write
+  pull-requests: write
 
+jobs:
   release:
-    needs: validate
-#    if: ${{ needs.validate.outputs.result == 'ok' }}
-    # depending on default permission settings for your org (contents being read-only or read-write for workloads), you will have to add permissions
-    # see: https://docs.github.com/en/actions/security-guides/automatic-token-authentication#modifying-the-permissions-for-the-github_token
-    permissions:
-      contents: write
-      packages: write
-
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
         uses: actions/checkout@v3
         with:
           fetch-depth: 0
+          repository: ${{ github.event.repository.full_name }}
+          token: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Configure Git
         run: |
@@ -72,28 +49,21 @@ jobs:
           GPG_KEYRING_BASE64: "${{ secrets.GPG_KEYRING_BASE64 }}"
           GPG_PASSPHRASE: "${{ secrets.GPG_PASSPHRASE }}"
 
-      - name: Run chart-releaser
-        uses: helm/chart-releaser-action@v1.6.0
-        env:
-          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
-          CR_RELEASE_NAME_TEMPLATE: "xwiki-helm-{{ .Version }}"
-          CR_SIGN: true
-          CR_KEY: "XWiki SAS"
-          # Values for CR_KEYRING and CR_PASSPHRASE_FILE was setup on Prepare GPG key
-
       - name: Login to XWiki SAS Container Registry
         uses: docker/login-action@v1
         with:
           registry: ${{ vars.XWIKISAS_REGISTRY }}
           username: ${{ vars.XWIKISAS_REGISTRY_USER }}
           password: ${{ secrets.XWIKISAS_REGISTRY_TOKEN }}
+      
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: 'lts/*'
 
-      - name: Push Charts to XWiki SAS
-        run: |
-          shopt -s nullglob
-          for pkg in .cr-release-packages/*.tgz; do
-            if [ -z "${pkg:-}" ]; then
-              break
-            fi
-            helm push "${pkg}" oci://git.xwikisas.com:5050/xwikisas/swp/xwiki/contrib-xwiki-helm
-          done
+      - name: Run semantic-release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          CR_KEYRING: ${{ env.CR_KEYRING }}
+          CR_PASSPHRASE_FILE: ${{ env.CR_PASSPHRASE_FILE }}
+        run: npx -p semantic-release -p @semantic-release/git -p @semantic-release/exec semantic-release
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
@@ -28,7 +28,6 @@ jobs:
       - name: Add repos
         run: |
           helm repo add bitnami https://charts.bitnami.com/bitnami
-          helm plugin install https://github.com/helm-unittest/helm-unittest --version 0.3.4
 
       - name: Set up chart-testing
         uses: helm/chart-testing-action@v2.3.1
diff --git a/.releaserc.json b/.releaserc.json
@@ -0,0 +1,44 @@
+{
+    "branches": [
+        "master",
+        "next"
+    ],
+    "tagFormat": "xwiki-helm-${version}",
+    "plugins": [
+        "@semantic-release/commit-analyzer",
+        "@semantic-release/release-notes-generator",
+        [
+            "@semantic-release/exec",
+            {
+                "prepareCmd": "mkdir -p .cr-release-packages && sed -i \"s/^version: .*/version: ${nextRelease.version}/\" charts/xwiki/Chart.yaml && helm dependency update charts/xwiki && helm package charts/xwiki --destination .cr-release-packages --sign --key 'XWiki SAS' --keyring $CR_KEYRING --passphrase-file $CR_PASSPHRASE_FILE",
+                "publishCmd": "helm push .cr-release-packages/xwiki-${nextRelease.version}.tgz oci://git.xwikisas.com:5050/xwikisas/swp/xwiki/contrib-xwiki-helm && ./scripts/publish-gh-pages.sh"
+            }
+        ],
+        [
+            "@semantic-release/git",
+            {
+                "assets": [
+                    "charts/xwiki/Chart.yaml"
+                ],
+                "message": "chore(release): ${nextRelease.version} [skip ci]\n\n${nextRelease.notes}"
+            }
+        ],
+        [
+            "@semantic-release/github",
+            {
+                "assets": [
+                    {
+                        "path": ".cr-release-packages/*.tgz",
+                        "label": "Helm Chart"
+                    },
+                    {
+                        "path": ".cr-release-packages/*.prov",
+                        "label": "Provenance File"
+                    }
+                ],
+                "successComment": false,
+                "failComment": false
+            }
+        ]
+    ]
+}
diff --git a/scripts/publish-gh-pages.sh b/scripts/publish-gh-pages.sh
@@ -0,0 +1,70 @@
+#!/bin/bash
+set -e
+
+# Configuration
+# These environment variables are available in the GitHub Actions context
+REPO_URL="https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git"
+PAGES_BRANCH="gh-pages"
+CHARTS_DIR=".cr-release-packages"
+INDEX_DIR="gh-pages-repo"
+GITHUB_PAGES_URL="https://$(echo "$GITHUB_REPOSITORY" | cut -d'/' -f1).github.io/$(echo "$GITHUB_REPOSITORY" | cut -d'/' -f2)/"
+
+echo "Starting GitHub Pages publication..."
+echo "Repository: $GITHUB_REPOSITORY"
+echo "Pages URL: $GITHUB_PAGES_URL"
+
+# Clone gh-pages branch
+echo "Cloning $PAGES_BRANCH branch..."
+rm -rf "$INDEX_DIR"
+git clone --branch "$PAGES_BRANCH" --single-branch --depth 1 "$REPO_URL" "$INDEX_DIR" || {
+    echo "Branch $PAGES_BRANCH not found. Creating it..."
+    mkdir -p "$INDEX_DIR"
+    cd "$INDEX_DIR"
+    git init
+    git checkout -b "$PAGES_BRANCH"
+    git remote add origin "$REPO_URL"
+    cd ..
+}
+
+# Copy charts
+echo "Indexing charts in $CHARTS_DIR..."
+# The version is passed in the .releaserc.json environment, but we can extract it or assume standard tagging.
+
+# Semantic release tag format: xwiki-helm-${nextRelease.version}
+# URL: https://github.com/${GITHUB_REPOSITORY}/releases/download/xwiki-helm-${VERSION}/${CHART_NAME}-${VERSION}.tgz
+
+# We need to run helm repo index on the local charts dir, but with --url pointing to GitHub.
+# We merge with the existing index.yaml from gh-pages.
+
+# Copy existing index.yaml to CHARTS_DIR for merging
+if [ -f "$INDEX_DIR/index.yaml" ]; then
+  cp "$INDEX_DIR/index.yaml" "$CHARTS_DIR/index.yaml"
+fi
+
+# Get the tag (assuming nextRelease.version is available or we parse it from the filename)
+# Actually, semantic-release ensures the version in Chart.yaml is correct at this point.
+VERSION=$(grep '^version:' charts/xwiki/Chart.yaml | awk '{print $2}')
+TAG="xwiki-helm-$VERSION"
+RELEASE_URL="https://github.com/$GITHUB_REPOSITORY/releases/download/$TAG"
+
+echo "Using Release URL: $RELEASE_URL"
+
+# Update index in CHARTS_DIR
+helm repo index "$CHARTS_DIR" --url "$RELEASE_URL" --merge "$CHARTS_DIR/index.yaml"
+
+# Move ONLY index.yaml back to INDEX_DIR
+mv "$CHARTS_DIR/index.yaml" "$INDEX_DIR/"
+
+# Push changes
+cd "$INDEX_DIR"
+echo "Committing and pushing changes..."
+if [ -z "$(git status --porcelain)" ]; then
+  echo "No changes to commit."
+else
+  git config user.name "$GITHUB_ACTOR"
+  git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
+  git add index.yaml
+  git commit -m "Update Helm repository index for $TAG [skip ci]"
+  git push "$REPO_URL" "$PAGES_BRANCH"
+  echo "Successfully pushed to $PAGES_BRANCH"
+fi
