74
74
runs-on : ubuntu-latest
75
75
needs :
76
76
- validate-tag
77
+ permissions :
78
+ attestations : write
79
+ contents : write
80
+ id-token : write
81
+ env :
82
+ TARBALL_FILE : artifacts.tar
77
83
steps :
78
84
- id : buildkite
79
85
continue-on-error : true
86
92
pipeline : apm-agent-java-release
87
93
waitFor : true
88
94
printBuildLogs : false
95
+ artifactName : releases
96
+ artifactPath : ${{ env.TARBALL_FILE }}
89
97
buildEnvVars : |
90
98
dry_run=${{ inputs.dry_run || 'false' }}
99
+ TARBALL_FILE=${{ env.TARBALL_FILE }}
100
+
101
+ - uses : actions/download-artifact@v3
102
+ with :
103
+ name : releases
104
+
105
+ - name : untar the buildkite tarball
106
+ run : tar xvf ${{ env.TARBALL_FILE }}
107
+
108
+ - name : generate build provenance
109
+ uses : actions/attest-build-provenance@173725a1209d09b31f9d30a3890cf2757ebbff0d # v1.1.2
110
+ with :
111
+ subject-path : " ${{ github.workspace }}/**/target/*.jar"
91
112
92
113
await-maven-central-artifact :
93
114
name : " Wait for artifacts to be available on maven central"
@@ -101,37 +122,12 @@ jobs:
101
122
artifactid : ' elastic-apm-agent'
102
123
version : ${{ env.RELEASE_VERSION }}
103
124
104
- update-major-branch :
105
- name : " Update Major Branch"
106
- runs-on : ubuntu-latest
107
- needs :
108
- - await-maven-central-artifact
109
- permissions :
110
- contents : write
111
- steps :
112
- - uses : elastic/apm-pipeline-library/.github/actions/github-token@current
113
- with :
114
- url : ${{ secrets.VAULT_ADDR }}
115
- roleId : ${{ secrets.VAULT_ROLE_ID }}
116
- secretId : ${{ secrets.VAULT_SECRET_ID }}
117
- - uses : elastic/apm-pipeline-library/.github/actions/setup-git@current
118
- with :
119
- username : ${{ env.GIT_USER }}
120
- email : ${{ env.GIT_EMAIL }}
121
- token : ${{ env.GITHUB_TOKEN }}
122
- - uses : actions/checkout@v4
123
- with :
124
- ref : ${{ inputs.ref }}
125
- token : ${{ env.GITHUB_TOKEN }}
126
- - name : Update major branch
127
- if : ${{ ! inputs.dry_run }}
128
- run : .ci/release/update-major-branch.sh ${{ env.RELEASE_VERSION }}
129
-
130
125
build-and-push-docker-images :
131
126
name : " Build and push docker images"
132
127
runs-on : ubuntu-latest
133
128
needs :
134
129
- await-maven-central-artifact
130
+ - create-github-release
135
131
env :
136
132
SONATYPE_FALLBACK : 1
137
133
steps :
@@ -148,11 +144,11 @@ jobs:
148
144
secretId : ${{ secrets.VAULT_SECRET_ID }}
149
145
- name : " Build docker image"
150
146
shell : bash
151
- run : ./scripts/docker-release/build_docker.sh
147
+ run : ./scripts/docker-release/build_docker.sh "${{ env.RELEASE_VERSION }}"
152
148
- name : " Push docker image"
153
149
if : ${{ ! inputs.dry_run }}
154
150
shell : bash
155
- run : ./scripts/docker-release/push_docker.sh
151
+ run : ./scripts/docker-release/push_docker.sh "${{ env.RELEASE_VERSION }}"
156
152
157
153
publish-aws-lambda :
158
154
name : " Publish AWS Lambda"
@@ -186,7 +182,7 @@ jobs:
186
182
if : ${{ ! inputs.dry_run }}
187
183
run : |
188
184
# Convert v1.2.3 to ver-1-2-3
189
- VERSION=${RELEASE_VERSION /v/ver-}
185
+ VERSION=${RELEASE_VERSION_TAG /v/ver-}
190
186
VERSION=${VERSION//./-}
191
187
192
188
ELASTIC_LAYER_NAME="elastic-apm-java-${VERSION}" .ci/publish-aws.sh
@@ -217,10 +213,35 @@ jobs:
217
213
phase : ' post'
218
214
secrets : inherit
219
215
216
+ update-major-branch :
217
+ name : " Update Major Branch"
218
+ runs-on : ubuntu-latest
219
+ needs :
220
+ - post-release
221
+ permissions :
222
+ contents : write
223
+ steps :
224
+ - uses : elastic/apm-pipeline-library/.github/actions/github-token@current
225
+ with :
226
+ url : ${{ secrets.VAULT_ADDR }}
227
+ roleId : ${{ secrets.VAULT_ROLE_ID }}
228
+ secretId : ${{ secrets.VAULT_SECRET_ID }}
229
+ - uses : elastic/apm-pipeline-library/.github/actions/setup-git@current
230
+ with :
231
+ username : ${{ env.GIT_USER }}
232
+ email : ${{ env.GIT_EMAIL }}
233
+ token : ${{ env.GITHUB_TOKEN }}
234
+ - uses : actions/checkout@v4
235
+ with :
236
+ ref : ${{ inputs.ref }}
237
+ token : ${{ env.GITHUB_TOKEN }}
238
+ - name : Update major branch
239
+ if : ${{ ! inputs.dry_run }}
240
+ run : .ci/release/update-major-branch.sh ${{ env.RELEASE_VERSION }}
241
+
220
242
create-github-release :
221
243
name : " Create GitHub Release"
222
244
needs :
223
- - post-release
224
245
- publish-aws-lambda
225
246
- update-major-branch
226
247
runs-on : ubuntu-latest
@@ -247,7 +268,7 @@ jobs:
247
268
env :
248
269
GH_TOKEN : ${{ github.token }}
249
270
run : |
250
- gh release create ${{ env.RELEASE_VERSION }} \
271
+ gh release create ${{ env.RELEASE_VERSION_TAG }} \
251
272
--title="Release ${{ env.RELEASE_VERSION }}" \
252
273
--notes="[Release Notes for ${{ env.RELEASE_VERSION }}](https://www.elastic.co/guide/en/apm/agent/java/current/release-notes-${{ steps.get_dotx_branch.outputs.dotx_branch }}.html#release-notes-${{ env.RELEASE_VERSION }})
253
274
${{ needs.publish-aws-lambda.outputs.arn_content }}"
0 commit comments