Skip to content

Build & Publish V2

Build & Publish V2 #4

Workflow file for this run

name: Build & Publish V2
on: [workflow_dispatch]
permissions:
contents: read
jobs:
JobBuild:
name: release
runs-on: [self-hosted, "1ES.Pool=1es-vscode-aks-tools-pool"]
# Expose step outputs as job outputs
outputs:
currentversion: ${{ steps.package_version.outputs.current-version }}
changelog_reader_changes: ${{ steps.changelog_reader.outputs.changes }}
permissions:
actions: read
contents: read
deployments: read
packages: none
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
disable-sudo: true
disable-telemetry: true
- name: Checkout
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Use Node.js
uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
with:
node-version: 20
# Run install dependencies
- name: Install dependencies
run: npm run install:all
# Ensure project builds successfully before creating release
- name: Build
run: npm run webpack
- name: Get current version from package.json
id: package_version
run: |
VERSION=$(jq -r '.version' package.json)
echo "current-version=$VERSION" >> $GITHUB_OUTPUT
JobsPublish:
name: publish
runs-on: [self-hosted, "1ES.Pool=1es-vscode-aks-tools-pool"]
needs: JobBuild
permissions:
actions: read
contents: write
deployments: read
packages: none
id-token: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
disable-sudo: true
disable-telemetry: true
# Checkout the code again for release
- name: Checkout
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
- name: Use Node.js
uses: actions/setup-node@0a44ba7841725637a19e28fa30b79a866c81b0a6 # v4.0.4
with:
node-version: 20
# Run install dependencies
- name: Install dependencies
run: npm run install:all
- name: Build
run: npm run webpack
- name: Package
run: npx vsce package
- name: federated login
uses: azure/login@v2
with:
auth-type: IDENTITY
client-id: ${{ secrets.AZURE_CLIENT_ID }}
tenant-id: ${{ secrets.AZURE_TENANT_ID }}
subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
- name: Publish packaged extension
run: |
npx vsce publish --azure-credential --packagePath *.vsix