Skip to content

2.33.7

2.33.7 #251

## GitHub Actions is used to build:
## - Electron (macOs)
## - Nwjs (macOs)
## - Node.js (macOs, linux)
name: build-and-release
on:
push:
tags:
- '*'
branches:
- develop
env:
NODE_LIBCURL_GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
# all jobs here must have a matrix identical to the ones inside build-lint-test.yaml
jobs:
scan:
permissions:
packages: write
contents: write # publish sbom to GH releases/tag assets
runs-on: ubuntu-22.04
steps:
- name: Checkout
uses: actions/checkout@v4
with:
path: ${{ github.repository }}
# Perform SCA analysis for the code repository
# Produces SBOM and CVE report
# Helps understand vulnerabilities / license compliance across third party dependencies
# Drift: Doesn't track any npm global or OS specific packages that involves scanning entire root file system.
# (TODO): Produce OS specific SBOM to detect build time depdencies.
- id: sca-project
uses: Kong/public-shared-actions/security-actions/sca@2f02738ecb1670f01391162e43fe3f5d4e7942a1 # v2.2.2
with:
dir: ${{ github.repository }}
upload-sbom-release-assets: true
build-and-release-nodejs:
permissions: write-all
runs-on: ${{ matrix.os }}
strategy:
fail-fast: false
matrix:
os:
- macos-13-xlarge
- ubuntu-22.04
- ubuntu-22.04-arm
libcurl-release:
- 7.86.0
node-libcurl-cpp-std:
- c++20
node:
- 20.18.0
env:
LIBCURL_RELEASE: ${{ matrix.libcurl-release }}
LATEST_LIBCURL_RELEASE: ${{ matrix.libcurl-release }}
NODE_LIBCURL_CPP_STD: ${{ matrix.node-libcurl-cpp-std }}
steps:
- if: runner.os == 'macOS'
name: Install Needed packages on macOS
run: brew install coreutils wget automake libtool cmake gnu-sed m4 autoconf groff
- if: runner.os == 'Linux'
name: Install Needed packages on Linux
run: sudo apt-get install -y cmake
- name: Checkout
uses: actions/checkout@v4
- name: Setup Node
uses: actions/setup-node@v4
with:
node-version-file: '.nvmrc'
cache: 'npm'
cache-dependency-path: package-lock.json
- name: Restore libcurl deps cache
uses: actions/cache@v4
id: libcurl-deps-cache
with:
path: |
~/.node-gyp
~/deps
key: v4-${{ matrix.os }}-libcurl-deps-cache-node-${{ matrix.node }}-fork
restore-keys: |
v4-${{ matrix.os }}-libcurl-deps-cache-node-${{ matrix.node }}-fork
- name: 'Set GIT_TAG'
if: startsWith(github.ref, 'refs/tags')
run: echo "GIT_TAG=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
- name: 'Publish Binary'
run: |
pip install packaging
GIT_COMMIT=${{ github.sha }} \
GIT_TAG=$GIT_TAG \
RUNNER_OS=${{ matrix.os }} \
./scripts/ci/build.sh
- name: Upload artifacts
if: always()
uses: actions/upload-artifact@v4
with:
name: build-logs-${{ matrix.os }}-${{ matrix.libcurl-release }}-${{ matrix.node }}
path: ./logs/
retention-days: 5
build-and-release-electron:
permissions: write-all
runs-on: ${{ matrix.os }}
strategy:
fail-fast: false
matrix:
os:
- macos-13-xlarge
- ubuntu-22.04
- ubuntu-22.04-arm
libcurl-release:
- 7.86.0
node:
- 20.18.0
electron-version:
- 33.3.0
env:
LIBCURL_RELEASE: ${{ matrix.libcurl-release }}
LATEST_LIBCURL_RELEASE: ${{ matrix.libcurl-release }}
ELECTRON_VERSION: ${{ matrix.electron-version }}
NODE_LIBCURL_CPP_STD: c++20
steps:
- if: runner.os == 'macOS'
name: Install Needed packages
run: brew install coreutils wget automake libtool cmake gnu-sed m4 autoconf groff
- if: runner.os == 'Linux'
name: Install Needed packages on Linux
run: sudo apt-get install -y cmake
- name: Checkout
uses: actions/checkout@v4
- name: Setup Node.js ${{ matrix.node }}
uses: actions/setup-node@v4
with:
node-version-file: '.nvmrc'
cache: 'npm'
cache-dependency-path: package-lock.json
- name: Restore Electron Cache
uses: actions/cache@v4
with:
path: ~/Library/Caches/electron
key: v1-${{ matrix.os }}-electron-cache-${{ matrix.electron-version }}
restore-keys: |
v1-${{ matrix.os }}-electron-cache-${{ matrix.electron-version }}
v1-${{ matrix.os }}-electron-cache-
- name: Restore libcurl deps cache
uses: actions/cache@v4
id: libcurl-deps-cache
with:
path: |
~/.node-gyp
~/deps
key: v4-${{ matrix.os }}-libcurl-deps-cache-electron-${{ matrix.electron-version }}-fork
restore-keys: |
v4-${{ matrix.os }}-libcurl-deps-cache-electron-${{ matrix.electron-version }}-fork
- name: 'Set GIT_TAG'
if: startsWith(github.ref, 'refs/tags')
run: echo "GIT_TAG=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
- name: 'Publish Binary'
run: |
pip install packaging
GIT_COMMIT=${{ github.sha }} \
GIT_TAG=$GIT_TAG \
./scripts/ci/build.sh
- name: Upload artifacts
if: always()
uses: actions/upload-artifact@v4
with:
name: build-logs-${{ matrix.os }}-${{ matrix.libcurl-release }}-${{ matrix.electron-version }}
path: ./logs/
retention-days: 5
build-and-release-nodejs-windows:
permissions: write-all
runs-on: windows-latest
strategy:
fail-fast: false
matrix:
node:
- 20.18.0
env:
npm_config_msvs_version: 2022
npm_config_build_from_source: true
steps:
- name: Checkout
uses: actions/checkout@v4
with:
submodules: recursive
- name: Setup Node.js ${{ matrix.node }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node }}
- name: Install dependencies
run: |
choco install nasm -y
$env:PATH=$env:PROGRAMFILES + "\NASM;" + $env:Path
python deps\curl-for-windows\configure.py
- name: Build
run: |
$env:PATH=$env:PROGRAMFILES + "\NASM;" + $env:Path
npm ci
- name: Test
run: |
npm run ts-node -e "console.log(require('./lib').Curl.getVersionInfoString())"
npm run test
if ($LASTEXITCODE -eq 0) {
$host.SetShouldExit(0)
}
- name: Publish binary
if: startsWith(github.ref, 'refs/tags/')
run: |
pip install packaging
npm run pregyp package testpackage --verbose
node scripts\module-packaging.js --publish $(npm run -s pregyp reveal staged_tarball --silent)
build-and-release-electron-windows:
permissions: write-all
runs-on: windows-latest
strategy:
fail-fast: false
matrix:
node:
- 20.18.0
electron-version:
- 33.3.0
env:
ELECTRON_VERSION: ${{ matrix.electron-version }}
npm_config_msvs_version: 2022
npm_config_build_from_source: true
npm_config_runtime: 'electron'
npm_config_dist_url: 'https://electronjs.org/headers'
npm_config_target: ${{ matrix.electron-version }}
steps:
- name: Checkout
uses: actions/checkout@v4
with:
submodules: recursive
- name: Setup Node.js ${{ matrix.node }}
uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node }}
- name: Install dependencies
run: |
choco install nasm -y
$env:PATH=$env:PROGRAMFILES + "\NASM;" + $env:Path
python deps\curl-for-windows\configure.py
npm i -g electron@${env:ELECTRON_VERSION}
- name: Build
run: |
$env:PATH=$env:PROGRAMFILES + "\NASM;" + $env:Path
npm ci
- name: Test
run: |
npm run test:electron
if ($LASTEXITCODE -eq 0) {
$host.SetShouldExit(0)
}
- name: Publish binary
if: startsWith(github.ref, 'refs/tags/')
run: |
pip install packaging
npm run pregyp package testpackage --verbose
node scripts\module-packaging.js --publish $(npm run -s pregyp reveal staged_tarball --silent)