forked from google/security-research
-
Notifications
You must be signed in to change notification settings - Fork 0
44 lines (40 loc) · 1.26 KB
/
kernelctf-auto-releaser.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
name: kernelCTF auto releaser
on:
workflow_dispatch:
schedule:
- cron: '0 12 * * *' # every day at 12:00 UTC
permissions: {}
defaults:
run:
shell: bash
working-directory: kernelctf
jobs:
get_new_builds:
runs-on: ubuntu-latest
steps:
- name: Test GCS SA key to fail quick before trying to make a build
uses: google-github-actions/auth@v1
with:
credentials_json: '${{secrets.KERNELCTF_GCS_SA_KEY}}'
create_credentials_file: false
- name: Checkout repo
uses: actions/checkout@v4
- name: Install prerequisites
run: sudo apt install -yq --no-install-recommends python3-lxml
- id: check
name: Check latest kernel versions
run: ./get_latest_kernel_versions.py
outputs:
releases: ${{ steps.check.outputs.releases }}
build_release:
needs: get_new_builds
if: fromJSON(needs.get_new_builds.outputs.releases)[0] != null
strategy:
matrix:
release: ${{ fromJSON(needs.get_new_builds.outputs.releases) }}
fail-fast: false # do not cancel other builds
uses: ./.github/workflows/kernelctf-release-build.yaml
secrets: inherit
with:
releaseId: ${{ matrix.release.releaseId }}
branch: ${{ matrix.release.branch }}