Merge pull request #54 from kevinbackhouse/remove-reusable-workflow

Remove reusable workflow because it's not supported by trusted publishing

Author: kevinbackhouse

.github/workflows/publish-reusable.yml

@@ -1,26 +1,72 @@
 name: Publish to TestPyPI
 
-on:
-  workflow_dispatch:
-    inputs:
-      version:
-        description: 'Version name for release. Must start with: "test-release-".'
-        required: true
-
+on: workflow_dispatch
 
 jobs:
   publish:
-    name: Publish wheel to TestPyPI
+    name: Build
+    runs-on: ubuntu-latest
+
+    # This environment is required as an input to pypa/gh-action-pypi-publish
+    environment:
+      name: testpypi
+      url: https://test.pypi.org/p/seclab-taskflow-agent2
+
+    env:
+      GITHUB_REPO: ${{ github.repository }}
+
     permissions:
       contents: write
       id-token: write  # For trusted publishing
-    if: startsWith(inputs.version, 'test-release-')
-    uses: ./.github/workflows/publish-reusable.yml
-    with:
-      version: ${{ inputs.version }}
-      release_notes: ${{ github.head_ref }}
-      repository_url: https://test.pypi.org/legacy/
-      environment_name: testpypi
-      environment_url: https://test.pypi.org/p/seclab-taskflow-agent2
-    secrets:
-      GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+    steps:
+    - name: Generate unique name for the test release
+      id: create_release_name
+      run: echo "RELEASE_NAME=test-release-`date -Is --utc`" >> $GITHUB_OUTPUT
+
+    - name: Checkout repository
+      uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+      with:
+        persist-credentials: false
+
+    - name: Set up Python
+      uses: actions/setup-python@e797f83bcb11b83ae66e0230d6156d7c80228e7c # v6.0.0
+      with:
+        python-version: "3.13"
+
+    - name: Install Hatch
+      run: pip install --upgrade hatch
+
+    - name: Build the wheel
+      run: python3 -m hatch build
+
+    - name: Upload artifacts
+      uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0
+      with:
+        name: python-package-distributions
+        path: dist/
+
+    - name: Publish to TestPyPI
+      uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # v1.13.0
+      with:
+        repository-url: https://test.pypi.org/legacy/
+
+    - name: Sign with sigstore
+      uses: sigstore/gh-action-sigstore-python@f832326173235dcb00dd5d92cd3f353de3188e6c # v3.1.0
+      with:
+        inputs: >-
+          ./dist/*.tar.gz
+          ./dist/*.whl
+
+    - name: Create GitHub Release
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        RELEASE_NAME: ${{ steps.create_release_name.outputs.RELEASE_NAME }}
+        NOTES: "Test Release"
+      run: gh release create $RELEASE_NAME --repo $GITHUB_REPO --notes $NOTES
+
+    - name: Upload GitHub Release
+      env:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        RELEASE_NAME: ${{ steps.create_release_name.outputs.RELEASE_NAME }}
+      run: gh release upload $RELEASE_NAME dist/** --repo $GITHUB_REPO