name: Release permissions: contents: write packages: write on: release: types: [created] workflow_dispatch: inputs: tag: description: "Tag to attach assets to (e.g. v1.0.0)" required: false jobs: prepare: runs-on: ubuntu-latest outputs: tag: ${{ steps.tag.outputs.tag }} steps: - name: Determine tag to use id: tag run: | set -euo pipefail INPUT_TAG="${{ github.event.inputs.tag || '' }}" if [ -n "$INPUT_TAG" ]; then echo "Using input tag: $INPUT_TAG" echo "tag=$INPUT_TAG" >> $GITHUB_OUTPUT exit 0 fi EVENT_TAG="${{ github.event.release.tag_name || '' }}" if [ -n "$EVENT_TAG" ]; then echo "Using event tag: $EVENT_TAG" echo "tag=$EVENT_TAG" >> $GITHUB_OUTPUT exit 0 fi if [[ "${GITHUB_REF:-}" =~ ^refs/tags/(.+)$ ]]; then echo "Using GITHUB_REF tag: ${BASH_REMATCH[1]}" echo "tag=${BASH_REMATCH[1]}" >> $GITHUB_OUTPUT exit 0 fi echo "No tag in input/event/GITHUB_REF — querying latest release via API..." LATEST_JSON=$(curl -sSf -H "Authorization: Bearer ${{ secrets.GITHUB_TOKEN }}" -H "Accept: application/vnd.github+json" "https://api.github.com/repos/${{ github.repository }}/releases/latest" || true) TAG_NAME=$(echo "$LATEST_JSON" | jq -r '.tag_name // empty') if [ -n "$TAG_NAME" ]; then echo "Found latest release tag: $TAG_NAME" echo "tag=$TAG_NAME" >> $GITHUB_OUTPUT exit 0 fi echo "No tag found" echo "tag=" >> $GITHUB_OUTPUT - name: Fail if no tag determined if: ${{ steps.tag.outputs.tag == '' }} run: | echo "ERROR: No tag determined. Provide a tag when running manually or ensure a release exists." exit 1 linux-release: needs: prepare runs-on: ubuntu-latest steps: - name: Install apt deps (jq/zip + dev-libs) run: | sudo apt-get update sudo apt-get install -y \ zip jq \ libpipewire-0.3-dev \ libclang-dev \ libasound2-dev \ libdbus-1-dev \ pkg-config - name: Checkout code at tag uses: actions/checkout@v4 with: ref: ${{ needs.prepare.outputs.tag }} fetch-depth: 0 - name: Setup Rust toolchain uses: actions-rust-lang/setup-rust-toolchain@v1 with: toolchain: 1.96.0 - name: Extract all binary names id: cargo-meta run: | set -euo pipefail BIN_NAMES=$(cargo metadata --no-deps --format-version 1 \ | jq -r '.packages[].targets[] | select(.kind[] | contains("bin")) | .name') echo "bin_names<> $GITHUB_OUTPUT echo "$BIN_NAMES" >> $GITHUB_OUTPUT echo "EOF" >> $GITHUB_OUTPUT - name: Build all release binaries run: cargo build --release --locked - name: Package all binaries into one archive shell: bash run: | set -euo pipefail TAG="${{ needs.prepare.outputs.tag }}" ARCHIVE_NAME="pwsp-${TAG}-linux-x64.zip" echo "Creating archive: $ARCHIVE_NAME" FILES=() while IFS= read -r BIN; do [ -z "$BIN" ] && continue FILES+=("target/release/$BIN") done <<< "${{ steps.cargo-meta.outputs.bin_names }}" if [ "${#FILES[@]}" -eq 0 ]; then echo "Error: no binaries were discovered via cargo metadata." >&2 exit 1 fi for f in "${FILES[@]}"; do if [ ! -f "$f" ]; then echo "Error: expected binary not found: $f" >&2 exit 1 fi echo "Will add: $f" done zip -j "$ARCHIVE_NAME" "${FILES[@]}" - name: Cache cargo-deb id: cache-cargo-deb uses: actions/cache@v4 with: path: ~/.cargo/bin/cargo-deb key: ${{ runner.os }}-cargo-deb-v1 - name: Install cargo-deb if: steps.cache-cargo-deb.outputs.cache-hit != 'true' run: cargo install --locked cargo-deb - name: Create .deb package (release binaries) shell: bash run: | set -euo pipefail export PATH="$HOME/.cargo/bin:$PATH" cargo-deb -p pwsp-gui --no-build - name: Upload artifacts to Release uses: softprops/action-gh-release@v2 with: token: ${{ secrets.GITHUB_TOKEN }} tag_name: ${{ needs.prepare.outputs.tag }} files: | pwsp-*.zip target/debian/*.deb