mirror of
https://github.com/pypa/gh-action-pypi-publish.git
synced 2024-12-28 01:44:47 -05:00
Merge pull request #270 from trail-of-forks/fix-magic-link-summary
Some checks are pending
🧪 / smoke-test (push) Waiting to run
Some checks are pending
🧪 / smoke-test (push) Waiting to run
This commit is contained in:
commit
85a5a80b22
1 changed files with 15 additions and 9 deletions
|
@ -69,11 +69,15 @@ The workflow was run with 'attestations: true' input, but the specified \
|
|||
repository URL does not support PEP 740 attestations. As a result, the \
|
||||
attestations input is ignored."
|
||||
|
||||
MAGIC_LINK_MESSAGE="::warning title=Create a Trusted Publisher::\
|
||||
A new Trusted Publisher for the currently running publishing workflow can be created \
|
||||
by accessing the following link(s) while logged-in as an owner of the package(s):"
|
||||
MAGIC_LINK_MESSAGE="A new Trusted Publisher for the currently running \
|
||||
publishing workflow can be created by accessing the following link(s) while \
|
||||
logged-in as an owner of the package(s):"
|
||||
|
||||
if [[ ! "${INPUT_REPOSITORY_URL}" =~ pypi\.org || ${#PACKAGE_NAMES[@]} -eq 0 ]] ; then
|
||||
|
||||
[[ "${INPUT_USER}" == "__token__" && -z "${INPUT_PASSWORD}" ]] \
|
||||
&& TRUSTED_PUBLISHING=true || TRUSTED_PUBLISHING=false
|
||||
|
||||
if [[ "${TRUSTED_PUBLISHING}" == true || ! "${INPUT_REPOSITORY_URL}" =~ pypi\.org || ${#PACKAGE_NAMES[@]} -eq 0 ]] ; then
|
||||
TRUSTED_PUBLISHING_MAGIC_LINK_NUDGE=""
|
||||
else
|
||||
if [[ "${INPUT_REPOSITORY_URL}" =~ test\.pypi\.org ]] ; then
|
||||
|
@ -86,12 +90,14 @@ else
|
|||
LINK="- ${INDEX_URL}/manage/project/${PACKAGE_NAME}/settings/publishing/?provider=github&owner=${GITHUB_REPOSITORY_OWNER}&repository=${REPOSITORY_NAME}&workflow_filename=${WORKFLOW_FILENAME}"
|
||||
ALL_LINKS+="$LINK"$'\n'
|
||||
done
|
||||
TRUSTED_PUBLISHING_MAGIC_LINK_NUDGE="${MAGIC_LINK_MESSAGE}"$'\n'"${ALL_LINKS}"
|
||||
echo "${MAGIC_LINK_MESSAGE}" >> $GITHUB_STEP_SUMMARY
|
||||
fi
|
||||
|
||||
[[ "${INPUT_USER}" == "__token__" && -z "${INPUT_PASSWORD}" ]] \
|
||||
&& TRUSTED_PUBLISHING=true || TRUSTED_PUBLISHING=false
|
||||
# Construct the summary message without the warning header
|
||||
MAGIC_LINK_MESSAGE_WITH_LINKS="${MAGIC_LINK_MESSAGE}"$'\n'"${ALL_LINKS}"
|
||||
echo "${MAGIC_LINK_MESSAGE_WITH_LINKS}" >> $GITHUB_STEP_SUMMARY
|
||||
|
||||
# The actual nudge in the log is formatted as a warning
|
||||
TRUSTED_PUBLISHING_MAGIC_LINK_NUDGE="::warning title=Create a Trusted Publisher::${MAGIC_LINK_MESSAGE_WITH_LINKS}"
|
||||
fi
|
||||
|
||||
if [[ "${INPUT_ATTESTATIONS}" != "false" ]] ; then
|
||||
# Setting `attestations: true` without Trusted Publishing indicates
|
||||
|
|
Loading…
Reference in a new issue