Skip to content

Merge pull request #225 from sandialabs/fix-dependabot-config #175

Merge pull request #225 from sandialabs/fix-dependabot-config

Merge pull request #225 from sandialabs/fix-dependabot-config #175

name: Semantic Release
on:
push:
branches:
- master
permissions:
contents: read
jobs:
release:
runs-on: ubuntu-latest
concurrency: release
environment: release
permissions:
id-token: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
with:
fetch-depth: 0
token: ${{ secrets.GH_TOKEN }}
- name: Python Semantic Release
id: release
uses: python-semantic-release/python-semantic-release@657118d28ae4a74d8a387bedf5db2bb7bac0cb33 # master
with:
github_token: ${{ secrets.GH_TOKEN }}
- name: Publish to PyPI
uses: pypa/gh-action-pypi-publish@f7600683efdcb7656dec5b29656edb7bc586e597 # release/v1
if: steps.release.outputs.released == 'true'
- name: Publish to GitHub Releases
uses: python-semantic-release/upload-to-gh-release@0a92b5d7ebfc15a84f9801ebd1bf706343d43711 # main
if: steps.release.outputs.released == 'true'
with:
github_token: ${{ secrets.GH_TOKEN }}