Merge pull request #30 from Screenly/fix-27 #59

Workflow file for this run

	---
	name: Build Screenly Chrome Extension

	on:
	pull_request:
	branches:
	- master
	push:
	branches:
	- master
	tags:
	- v.
	jobs:
	build:
	runs-on: ubuntu-latest
	name: Build and Generate Artifact
	permissions:
	id-token: write
	contents: write
	attestations: write
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Build Docker images
	run: \|
	docker compose build

	- name: Run Unit Tests
	run: \|
	docker run \
	--rm \
	-v $(pwd):/app:delegated \
	-v /app/node_modules \
	sce_webpack:latest \
	/bin/bash -c "npx webpack --config webpack.dev.js && npm run test"

	- name: Build and Package the Extension
	run: \|
	mkdir artifacts
	docker run \
	--rm \
	-v $(pwd)/artifacts:/app/artifacts:delegated \
	-v /app/artifacts/node_modules \
	sce_webpack:latest \
	/bin/bash -c "npm run build && cp -r dist/ artifacts/"

	- name: Compress
	run: \|
	cd artifacts/dist/
	zip -r ${{ github.workspace }}/screenly-chrome-extension.zip .

	- name: Attest
	uses: actions/attest-build-provenance@v1
	with:
	subject-path: '${{ github.workspace }}/screenly-chrome-extension.zip'

	- name: Upload Archive as Artifact
	uses: actions/upload-artifact@v4
	with:
	name: screenly-chrome-extension
	path: artifacts/dist

	- name: Prepare Release
	if: startsWith(github.ref, 'refs/tags/')
	run: \|
	cp \
	${{ github.workspace }}/screenly-chrome-extension.zip \
	${{ github.workspace }}/screenly-chrome-extension-${{ github.ref_name }}.zip

	- name: Create Release
	if: startsWith(github.ref, 'refs/tags/')
	uses: ncipollo/[email protected]
	with:
	allowUpdates: true
	prerelease: true
	artifacts: "screenly-chrome-extension-${{ github.ref_name }}.zip"

	generate-sbom:
	runs-on: ubuntu-latest
	name: Generate SBOM
	permissions:
	id-token: write
	contents: read
	attestations: write
	needs: build
	if: startsWith(github.ref, 'refs/tags/')
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Upload SBOM
	uses: sbomify/github-action@master
	env:
	TOKEN: ${{ secrets.SBOMIFY_TOKEN }}
	COMPONENT_ID: 'NwxGnn8u8K'
	OVERRIDE_SBOM_METADATA: true
	SBOM_VERSION: ${{ github.ref_name }}
	LOCK_FILE: 'package-lock.json'
	OUTPUT_FILE: 'chrome-extension.cdx.json'
	AUGMENT: true
	ENRICH: true

	- name: Attest build
	uses: actions/attest-build-provenance@v1
	with:
	subject-path: '${{ github.workspace }}/chrome-extension.cdx.json'

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #30 from Screenly/fix-27 #59

Workflow file

Merge pull request #30 from Screenly/fix-27 #59

Jobs

Run details

Workflow file for this run