next.orly.dev/.github/workflows/go.yml at f4358eeee0779819ebe8280c71f8af2416284879

mleku/next.orly.dev

Fork 1

Files

mleku db941a18ea

Go / build (push) Has been cancelled

Details

Go / release (push) Has been cancelled

Details

Enhance policy system with global rules and age validation

- Updated policy configuration to include global rules applicable to all events, allowing for site-wide security policies.
- Introduced age validation features to prevent replay and clock skew attacks, with configurable maximum age limits for events.
- Enhanced example policy and README documentation to reflect new global rules and age validation capabilities.
- Added comprehensive tests for global rule checks and age validation scenarios.
- Bumped version to v0.16.2.

2025-10-16 12:41:32 +01:00

107 lines

4.0 KiB

YAML

Raw Blame History

 # This workflow will build a golang project
 # For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-go
 #
 # Release Process:
 # 1. Update the version in the pkg/version/version file (e.g. v1.2.3)
 # 2. Create and push a tag matching the version:
 #    git tag v1.2.3
 #    git push origin v1.2.3
 # 3. The workflow will automatically:
 #    - Build binaries for multiple platforms (Linux, macOS, Windows)
 #    - Create a GitHub release with the binaries
 #    - Generate release notes
 name: Go
 on:
   push:
     tags:
       - "v[0-9]+.[0-9]+.[0-9]+"
 jobs:
   build:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
       - name: Set up Go
         uses: actions/setup-go@v4
         with:
           go-version: "1.25"
       - name: Install libsecp256k1
         run: ./scripts/ubuntu_install_libsecp256k1.sh
       - name: Build with cgo
         run: go build -v ./...
       - name: Test with cgo
         run: go test -v $(go list ./... | xargs -n1 sh -c 'ls $0/*_test.go 1>/dev/null 2>&1 && echo $0' | grep .)
       - name: Set CGO off
         run: echo "CGO_ENABLED=0" >> $GITHUB_ENV
       - name: Build
         run: go build -v ./...
       - name: Test
         run: go test -v $(go list ./... | xargs -n1 sh -c 'ls $0/*_test.go 1>/dev/null 2>&1 && echo $0' | grep .)
   release:
     needs: build
     runs-on: ubuntu-latest
     permissions:
       contents: write
       packages: write
     steps:
       - uses: actions/checkout@v4
       - name: Set up Go
         uses: actions/setup-go@v4
         with:
           go-version: '1.25'
       - name: Install libsecp256k1
         run:  ./scripts/ubuntu_install_libsecp256k1.sh
       - name: Build Release Binaries
         if: startsWith(github.ref, 'refs/tags/v')
         run: |
           # Extract version from tag (e.g., v1.2.3 -> 1.2.3)
           VERSION=${GITHUB_REF#refs/tags/v}
           echo "Building release binaries for version $VERSION"
           # Create directory for binaries
           mkdir -p release-binaries
           # Build for different platforms
           GOEXPERIMENT=greenteagc,jsonv2 GOOS=linux GOARCH=amd64 CGO_ENABLED=1 go build -o release-binaries/orly-${VERSION}-linux-amd64 .
           GOEXPERIMENT=greenteagc,jsonv2 GOOS=linux GOARCH=arm64 CGO_ENABLED=0 go build -o release-binaries/orly-${VERSION}-linux-arm64 .
           GOEXPERIMENT=greenteagc,jsonv2 GOOS=darwin GOARCH=amd64 CGO_ENABLED=0 go build -o release-binaries/orly-${VERSION}-darwin-amd64 .
           GOEXPERIMENT=greenteagc,jsonv2 GOOS=darwin GOARCH=arm64 CGO_ENABLED=0 go build -o release-binaries/orly-${VERSION}-darwin-arm64 .
           GOEXPERIMENT=greenteagc,jsonv2 GOOS=windows GOARCH=amd64 CGO_ENABLED=0 go build -o release-binaries/orly-${VERSION}-windows-amd64.exe .
           # Build cmd executables
           for cmd in lerproxy nauth nurl vainstr walletcli; do
             echo "Building $cmd"
             GOEXPERIMENT=greenteagc,jsonv2 GOOS=linux GOARCH=amd64 CGO_ENABLED=1 go build -o release-binaries/${cmd}-${VERSION}-linux-amd64 ./cmd/${cmd}
             GOEXPERIMENT=greenteagc,jsonv2 GOOS=linux GOARCH=arm64 CGO_ENABLED=0 go build -o release-binaries/${cmd}-${VERSION}-linux-arm64 ./cmd/${cmd}
             GOEXPERIMENT=greenteagc,jsonv2 GOOS=darwin GOARCH=amd64 CGO_ENABLED=0 go build -o release-binaries/${cmd}-${VERSION}-darwin-amd64 ./cmd/${cmd}
             GOEXPERIMENT=greenteagc,jsonv2 GOOS=darwin GOARCH=arm64 CGO_ENABLED=0 go build -o release-binaries/${cmd}-${VERSION}-darwin-arm64 ./cmd/${cmd}
             GOEXPERIMENT=greenteagc,jsonv2 GOOS=windows GOARCH=amd64 CGO_ENABLED=0 go build -o release-binaries/${cmd}-${VERSION}-windows-amd64.exe ./cmd/${cmd}
           done
           # Create checksums
           cd release-binaries
           sha256sum * > SHA256SUMS.txt
           cd ..
       - name: Create GitHub Release
         if: startsWith(github.ref, 'refs/tags/v')
         uses: softprops/action-gh-release@v1
         with:
           files: release-binaries/*
           draft: false
           prerelease: false
           generate_release_notes: true

107 lines 4.0 KiB YAML Raw Blame History

107 lines

4.0 KiB

YAML

Raw Blame History