rag-template/.github/workflows/semantic-release.yml at 70b5fd12d66b9a5747a0b046fd68f442e41051f6 · stackitcloud/rag-template · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
name: semantic-release
on:
  workflow_dispatch:
  push:
  # Only trigger on merged PRs, not on every PR push
  pull_request:
    types: [closed]
    branches:
      - main

permissions:
  contents: write
  packages: write

jobs:
  semantic-release:
    name: semantic-release
    runs-on: ubuntu-latest
    # Only run on push to main, manual dispatch, or when PR is merged
    if: github.event_name == 'workflow_dispatch' || (github.event_name == 'pull_request' && github.event.pull_request.merged == true)
    outputs:
      new-release-published: ${{ steps.semantic-release.outputs.new-release-published }}
      new-release-version: ${{ steps.semantic-release.outputs.new-release-version }}
    steps:
      - name: checkout
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
          submodules: false

      - name: setup-node
        uses: actions/setup-node@v5
        with:
          node-version: "22.20.0"

      - name: create-archives
        run: |
          TEMP_DIR=$(mktemp -d)
          tar --warning=no-file-changed \
              --exclude=".git" \
              --exclude="/.git" \
              --exclude="node_modules" \
              -czf "$TEMP_DIR/action-main-release-trials.tar.gz" .
          zip -r "$TEMP_DIR/action-main-release-trials.zip" . \
              -x ".git" "node_modules"
          mv "$TEMP_DIR"/*.{tar.gz,zip} .
          rm -rf "$TEMP_DIR"

      - name: install-dependencies
        run: npm ci

      - name: verify-dependencies-integrity
        run: npm audit signatures

      - name: create-semantic-release
        id: semantic-release
        env:
          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
        run: |
          # Run semantic-release and capture the output
          npx semantic-release > semantic-release-output.txt 2>&1 || true

          # Check if a new release was published by looking for the success message
          if grep -q "Published release" semantic-release-output.txt; then
            echo "new-release-published=true" >> $GITHUB_OUTPUT

            # Extract the version from the output
            VERSION=$(grep "Published release" semantic-release-output.txt | sed -n 's/.*Published release \([0-9]\+\.[0-9]\+\.[0-9]\+\).*/\1/p')

            if [[ -n "$VERSION" ]]; then
              echo "new-release-version=$VERSION" >> $GITHUB_OUTPUT
              echo "✅ New release published: $VERSION"
            else
              echo "❌ Could not extract version from semantic-release output"
              exit 1
            fi
          else
            echo "new-release-published=false" >> $GITHUB_OUTPUT
            echo "ℹ️  No new release published"
          fi

  build-and-push-images:
    name: build-and-push-images
    runs-on: ubuntu-latest
    needs: semantic-release
    if: needs.semantic-release.outputs.new-release-published == 'true'
    strategy:
      matrix:
        service:
          - name: rag-backend
            dockerfile: services/rag-backend/Dockerfile
            image: rag-backend
            build-args: "dev=0"
          - name: admin-backend
            dockerfile: services/admin-backend/Dockerfile
            image: admin-backend
            build-args: "dev=0"
          - name: document-extractor
            dockerfile: services/document-extractor/Dockerfile
            image: document-extractor
            build-args: "dev=0"
          - name: mcp-server
            dockerfile: services/mcp-server/Dockerfile
            image: mcp-server
            build-args: "dev=0"
          - name: frontend
            dockerfile: services/frontend/apps/chat-app/Dockerfile
            image: frontend
            build-args: ""
          - name: admin-frontend
            dockerfile: services/frontend/apps/admin-app/Dockerfile
            image: admin-frontend
            build-args: ""
    steps:
      - name: debug-job-inputs
        run: |
          echo "🔍 Debug: needs.semantic-release.outputs.new-release-published = ${{ needs.semantic-release.outputs.new-release-published }}"
          echo "🔍 Debug: needs.semantic-release.outputs.new-release-version = ${{ needs.semantic-release.outputs.new-release-version }}"

      - name: checkout
        uses: actions/checkout@v4
        with:
          fetch-depth: 0
          submodules: false

      - name: login-to-github-container-registry
        uses: docker/login-action@v3
        with:
          registry: ghcr.io
          username: ${{ github.actor }}
          password: ${{ secrets.GITHUB_TOKEN }}

      - name: build-and-push-${{ matrix.service.name }}
        run: |
          docker build \
            --tag ghcr.io/${{ github.repository_owner }}/rag-template/${{ matrix.service.image }}:v${{ needs.semantic-release.outputs.new-release-version }} \
            --tag ghcr.io/${{ github.repository_owner }}/rag-template/${{ matrix.service.image }}:latest \
            --file ${{ matrix.service.dockerfile }} \
            .

          docker push ghcr.io/${{ github.repository_owner }}/rag-template/${{ matrix.service.image }}:v${{ needs.semantic-release.outputs.new-release-version }}
          docker push ghcr.io/${{ github.repository_owner }}/rag-template/${{ matrix.service.image }}:latest

      - name: deployment-summary
        if: strategy.job-index == 0  # Only run on first job in matrix
        run: |
          echo "## 🚀 Deployment Summary" >> $GITHUB_STEP_SUMMARY
          echo "**New version:** v${{ needs.semantic-release.outputs.new-release-version }}" >> $GITHUB_STEP_SUMMARY
          echo "**Services built and deployed:**" >> $GITHUB_STEP_SUMMARY
          echo "- rag-backend" >> $GITHUB_STEP_SUMMARY
          echo "- admin-backend" >> $GITHUB_STEP_SUMMARY
          echo "- document-extractor" >> $GITHUB_STEP_SUMMARY
          echo "- mcp-server" >> $GITHUB_STEP_SUMMARY
          echo "- frontend" >> $GITHUB_STEP_SUMMARY
          echo "- admin-frontend" >> $GITHUB_STEP_SUMMARY
          echo "**Registry:** ghcr.io/${{ github.repository_owner }}/rag-template" >> $GITHUB_STEP_SUMMARY