Check for new Preflight release and create PR #210
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Check for new Preflight release and create PR | |
on: | |
schedule: | |
- cron: '0 8 * * *' # daily at 8 AM | |
workflow_dispatch: | |
jobs: | |
check-new-release: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
- name: Get Preflight latest release | |
id: preflight_latest | |
uses: pozetroninc/github-action-get-latest-release@v0.8.0 | |
with: | |
owner: redhat-openshift-ecosystem | |
repo: openshift-preflight | |
excludes: prerelease, draft | |
- name: Get preflight release in the repo | |
id: get_current_release | |
run: | | |
preflight_current=$(awk -F: '/^preflight_image:/ {print $NF}' roles/preflight/defaults/main.yml | tr -d '"') | |
echo "Preflight current release: $preflight_current" | |
echo "preflight_current=$preflight_current" >> $GITHUB_OUTPUT | |
- name: Compare versions | |
id: compare_versions | |
env: | |
PREFLIGHT_LATEST: ${{ steps.preflight_latest.outputs.release }} | |
PREFLIGHT_CURRENT: ${{ steps.get_current_release.outputs.preflight_current }} | |
run: | | |
if [ "$PREFLIGHT_LATEST" != "$PREFLIGHT_CURRENT" ]; then | |
echo "New Preflight release found: $PREFLIGHT_LATEST, current: $PREFLIGHT_CURRENT" | |
echo "new_release=true" >> $GITHUB_OUTPUT | |
else | |
echo "Both Preflight latest and current are the same: $PREFLIGHT_LATEST" | |
echo "new_release=false" >> $GITHUB_OUTPUT | |
fi | |
- name: Check if branch exists | |
id: check_branch | |
if: steps.compare_versions.outputs.new_release == 'true' | |
env: | |
PREFLIGHT_LATEST: ${{ steps.preflight_latest.outputs.release }} | |
run: | | |
branch_exists=$(git ls-remote --heads origin preflight-release-$PREFLIGHT_LATEST) | |
if [ -n "$branch_exists" ]; then | |
echo "Branch preflight-release-$PREFLIGHT_LATEST already exists" | |
echo "branch_exists=true" >> $GITHUB_OUTPUT | |
else | |
echo "Branch preflight-release-$PREFLIGHT_LATEST does not exist" | |
echo "branch_exists=false" >> $GITHUB_OUTPUT | |
fi | |
- name: Import GPG key | |
if: steps.compare_versions.outputs.new_release == 'true' && steps.check_branch.outputs.branch_exists == 'false' | |
env: | |
GPG_PRIVATE_KEY_DCIBOT: ${{ secrets.GPG_PRIVATE_KEY_DCIBOT }} | |
run: | | |
echo "$GPG_PRIVATE_KEY_DCIBOT" | gpg --batch --import | |
- name: Configure git for GPG | |
if: steps.compare_versions.outputs.new_release == 'true' && steps.check_branch.outputs.branch_exists == 'false' | |
env: | |
DCIBOT_EMAIL: ${{ secrets.DCIBOT_EMAIL }} | |
run: | | |
GPG_KEY=$(gpg --list-secret-keys --keyid-format LONG | grep sec | awk '{print $2}' | cut -d '/' -f 2) | |
git config --global user.signingkey "$GPG_KEY" | |
git config --global gpg.program gpg | |
git config --global commit.gpgSign true | |
git config --global user.name "dcibot" | |
git config --global user.email "$DCIBOT_EMAIL" | |
- name: Create new branch with updated Preflight version | |
if: steps.compare_versions.outputs.new_release == 'true' && steps.check_branch.outputs.branch_exists == 'false' | |
env: | |
PREFLIGHT_LATEST: ${{ steps.preflight_latest.outputs.release }} | |
run: | | |
# Pull the latest changes from the main branch | |
git fetch origin main | |
git checkout main | |
git pull origin main | |
# Create a new branch from the main branch | |
git checkout -b preflight-release-$PREFLIGHT_LATEST | |
# Update preflight version | |
sed -i "s|quay.io/opdev/preflight:[0-9]*\.[0-9]*\.[0-9]*|quay.io/opdev/preflight:${PREFLIGHT_LATEST}|" roles/preflight/defaults/main.yml | |
sed -i "s|quay.io/opdev/preflight:[0-9]*\.[0-9]*\.[0-9]*|quay.io/opdev/preflight:${PREFLIGHT_LATEST}|" roles/preflight/README.md | |
git add roles/preflight/defaults/main.yml roles/preflight/README.md | |
git commit -S -m "Update Preflight to release $PREFLIGHT_LATEST" | |
git push --set-upstream origin preflight-release-$PREFLIGHT_LATEST | |
- name: Create PR moving to the latest Preflight | |
if: steps.compare_versions.outputs.new_release == 'true' && steps.check_branch.outputs.branch_exists == 'false' | |
env: | |
PREFLIGHT_LATEST: ${{ steps.preflight_latest.outputs.release }} | |
GITHUB_TOKEN: ${{ secrets.DCIBOT_TOKEN }} | |
run: | | |
gh pr create \ | |
--title "Move to Preflight release $PREFLIGHT_LATEST" \ | |
--body "This pull request was opened by a bot." \ | |
--base main \ | |
--head preflight-release-$PREFLIGHT_LATEST |