pygit2/.github/workflows/wheels.yml at ad2fcfb301f5dc35e851ec5d90cd56a058bf1fb7 · libgit2/pygit2 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
name: Wheels

concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: ${{ github.ref_name != 'master' }}

on:
  push:
    branches: [master]
    tags:
      - 'v*'
  pull_request:
    branches: [master]
    paths-ignore:
      - 'docs/**'

jobs:
  build_wheels:
    name: Wheels for ${{ matrix.name }}
    runs-on: ${{ matrix.os }}
    strategy:
      # let other jobs in matrix complete if one fails
      fail-fast: false
      matrix:
        include:
        - name: linux-amd
          os: ubuntu-24.04
        - name: linux-arm
          os: ubuntu-24.04-arm
        - name: macos-intel
          os: macos-15-intel
        - name: macos-arm
          os: macos-15
        - name: windows-x64
          os: windows-latest
        - name: windows-x86
          os: windows-latest
        - name: windows-arm64
          # https://github.com/actions/partner-runner-images#available-images
          os: windows-11-arm

    steps:
      - uses: actions/checkout@v6
        with:
          # avoid leaking credentials in uploaded artifacts
          persist-credentials: false

      - uses: actions/setup-python@v6
        with:
          python-version: '3.13'

      - name: Install cibuildwheel
        run: python -m pip install cibuildwheel~=3.3

      - name: Build wheels
        env:
          CIBW_ARCHS_WINDOWS: ${{ matrix.name == 'windows-x86' && 'auto32' || 'native' }}
        run: python -m cibuildwheel --output-dir wheelhouse

      - uses: actions/upload-artifact@v5
        with:
          name: wheels-${{ matrix.name }}
          path: ./wheelhouse/*.whl

  build_wheels_ppc:
    name: Wheels for linux-ppc
    runs-on: ubuntu-24.04

    steps:
      - uses: actions/checkout@v6
        with:
          # avoid leaking credentials in uploaded artifacts
          persist-credentials: false

      - uses: actions/setup-python@v6
        with:
          python-version: '3.13'

      - uses: docker/setup-qemu-action@v3
        with:
          platforms: linux/ppc64le

      - name: Install cibuildwheel
        run: python -m pip install -r requirements-wheel.txt

      - name: Build wheels
        run: python -m cibuildwheel --output-dir wheelhouse
        env:
          CIBW_ARCHS: ppc64le
          CIBW_ENVIRONMENT: LIBSSH2_VERSION=1.11.1 LIBGIT2_VERSION=1.9.2 LIBGIT2=/project/ci

      - uses: actions/upload-artifact@v5
        with:
          name: wheels-linux-ppc
          path: ./wheelhouse/*.whl

  sdist:
    runs-on: ubuntu-latest
    outputs:
      release_title: ${{ steps.parse_changelog.outputs.release_title }}
    steps:
      - uses: actions/checkout@v6
        with:
          # avoid leaking credentials in uploaded artifacts
          persist-credentials: false

      - uses: actions/setup-python@v6
        with:
          python-version: '3.13'

      - name: Build sdist
        run: pipx run build --sdist --outdir dist

      - uses: actions/upload-artifact@v5
        with:
          name: wheels-sdist
          path: dist/*

      - name: parse CHANGELOG for release notes
        id: parse_changelog
        run: python .github/workflows/parse_release_notes.py

      - name: Upload Release Notes
        uses: actions/upload-artifact@v5
        with:
          name: release-notes
          path: ReleaseNotes.md


  twine-check:
    name: Twine check
    # It is good to do this check on non-tagged commits.
    # Note, pypa/gh-action-pypi-publish (see job below) does this automatically.
    if: ${{ !startsWith(github.ref, 'refs/tags/v') }}
    needs: [build_wheels, build_wheels_ppc, sdist]
    runs-on: ubuntu-latest

    steps:
      - uses: actions/download-artifact@v6
        with:
          path: dist
          pattern: wheels-*
          merge-multiple: true
      - name: check distribution files
        run: pipx run twine check dist/*

  pypi:
    if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/v')
    needs: [build_wheels, build_wheels_ppc, sdist]
    permissions:
      contents: write # to create GitHub Release
    runs-on: ubuntu-24.04

    steps:
    - uses: actions/download-artifact@v6
      with:
        path: dist
        pattern: wheels-*
        merge-multiple: true

    - name: Display structure of downloaded files
      run: ls -lh dist

    - uses: pypa/gh-action-pypi-publish@release/v1
      with:
        user: __token__
        password: ${{ secrets.PYPI_API_TOKEN }}
        skip-existing: true

    - uses: actions/download-artifact@v6
      with:
        name: release-notes
    - name: Create GitHub Release
      env:
        GITHUB_TOKEN: ${{ github.token }}
        TAG: ${{ github.ref_name }}
        REPO: ${{ github.repository }}
        TITLE: ${{ needs.sdist.outputs.release_title }}
      # https://cli.github.com/manual/gh_release_create
      run: >-
        gh release create ${TAG}
        --verify-tag
        --repo ${REPO}
        --title ${TITLE}
        --notes-file ReleaseNotes.md