From f3f3fdcb1f3cfc7276ed25ab79abad5b9b04b43c Mon Sep 17 00:00:00 2001 From: Arman Bilge Date: Sun, 23 Jan 2022 04:46:19 +0000 Subject: [PATCH 1/5] Keep publish secrets scoped to publish job --- .github/workflows/ci.yml | 9 +++++---- .../org/typelevel/sbt/TypelevelCiSigningPlugin.scala | 2 +- .../scala/org/typelevel/sbt/gha/GenerativeKeys.scala | 2 ++ .../scala/org/typelevel/sbt/gha/GenerativePlugin.scala | 2 ++ .../typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala | 2 +- 5 files changed, 11 insertions(+), 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 5e64f644..a9bd9eb1 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -15,10 +15,6 @@ on: tags: [v*] env: - PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} - SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} - SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} - PGP_SECRET: ${{ secrets.PGP_SECRET }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} jobs: @@ -93,6 +89,11 @@ jobs: scala: [2.12.15] java: [temurin@8] runs-on: ${{ matrix.os }} + env: + PGP_SECRET: ${{ secrets.PGP_SECRET }} + PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} + SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} + SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} steps: - name: Checkout current branch (full) uses: actions/checkout@v2 diff --git a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala index c6ffed9b..0a0eee64 100644 --- a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala +++ b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala @@ -29,7 +29,7 @@ object TypelevelCiSigningPlugin extends AutoPlugin { override def trigger = allRequirements override def buildSettings = Seq( - githubWorkflowEnv ++= Map( + githubWorkflowPublishEnv ++= Map( "PGP_SECRET" -> s"$${{ secrets.PGP_SECRET }}", "PGP_PASSPHRASE" -> s"$${{ secrets.PGP_PASSPHRASE }}" ), diff --git a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala index 7bb296f0..f60c473a 100644 --- a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala +++ b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala @@ -98,6 +98,8 @@ trait GenerativeKeys { lazy val githubWorkflowEnv = settingKey[Map[String, String]]( s"A map of static environment variable assignments global to the workflow (default: { GITHUB_TOKEN: $${{ secrets.GITHUB_TOKEN }} })") + lazy val githubWorkflowPublishEnv = settingKey[Map[String, String]]( + s"A map of additional static environment variable assignments scoped to the publish job (default empty)") lazy val githubWorkflowAddedJobs = settingKey[Seq[WorkflowJob]]( "A list of additional jobs to add to the CI workflow (default: [])") } diff --git a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala index b54169a0..189d790a 100644 --- a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala +++ b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala @@ -532,6 +532,7 @@ ${indent(jobs.map(compileJob(_, sbt)).mkString("\n\n"), 1)} githubWorkflowTargetTags := Seq(), githubWorkflowTargetPaths := Paths.None, githubWorkflowEnv := Map("GITHUB_TOKEN" -> s"$${{ secrets.GITHUB_TOKEN }}"), + githubWorkflowPublishEnv := Map.empty, githubWorkflowAddedJobs := Seq() ) @@ -683,6 +684,7 @@ ${indent(jobs.map(compileJob(_, sbt)).mkString("\n\n"), 1)} githubWorkflowPublish.value.toList ::: githubWorkflowPublishPostamble.value.toList, cond = Some(s"github.event_name != 'pull_request' && $publicationCond"), + env = githubWorkflowPublishEnv.value, scalas = List(scalaVersion.value), javas = List(githubWorkflowJavaVersions.value.head), needs = List("build") diff --git a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala index abf17803..467b783b 100644 --- a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala +++ b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala @@ -41,7 +41,7 @@ object TypelevelSonatypeCiReleasePlugin extends AutoPlugin { Seq(tlCiReleaseTags := true, tlCiReleaseBranches := Seq()) override def buildSettings = Seq( - githubWorkflowEnv ++= Map( + githubWorkflowPublishEnv ++= Map( "SONATYPE_USERNAME" -> s"$${{ secrets.SONATYPE_USERNAME }}", "SONATYPE_PASSWORD" -> s"$${{ secrets.SONATYPE_PASSWORD }}" ), From 2373e7099c3f481b6af9c90ae6ed1c9f637baf0f Mon Sep 17 00:00:00 2001 From: Arman Bilge Date: Sun, 23 Jan 2022 05:33:08 +0000 Subject: [PATCH 2/5] Revert "Keep publish secrets scoped to publish job" This reverts commit f3f3fdcb1f3cfc7276ed25ab79abad5b9b04b43c. --- .github/workflows/ci.yml | 9 ++++----- .../org/typelevel/sbt/TypelevelCiSigningPlugin.scala | 2 +- .../scala/org/typelevel/sbt/gha/GenerativeKeys.scala | 2 -- .../scala/org/typelevel/sbt/gha/GenerativePlugin.scala | 2 -- .../typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala | 2 +- 5 files changed, 6 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b371003d..74907504 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -15,6 +15,10 @@ on: tags: [v*] env: + PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} + SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} + SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} + PGP_SECRET: ${{ secrets.PGP_SECRET }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} jobs: @@ -92,11 +96,6 @@ jobs: scala: [2.12.15] java: [temurin@8] runs-on: ${{ matrix.os }} - env: - PGP_SECRET: ${{ secrets.PGP_SECRET }} - PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} - SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} - SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} steps: - name: Checkout current branch (full) uses: actions/checkout@v2 diff --git a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala index 0a0eee64..c6ffed9b 100644 --- a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala +++ b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala @@ -29,7 +29,7 @@ object TypelevelCiSigningPlugin extends AutoPlugin { override def trigger = allRequirements override def buildSettings = Seq( - githubWorkflowPublishEnv ++= Map( + githubWorkflowEnv ++= Map( "PGP_SECRET" -> s"$${{ secrets.PGP_SECRET }}", "PGP_PASSPHRASE" -> s"$${{ secrets.PGP_PASSPHRASE }}" ), diff --git a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala index f60c473a..7bb296f0 100644 --- a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala +++ b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativeKeys.scala @@ -98,8 +98,6 @@ trait GenerativeKeys { lazy val githubWorkflowEnv = settingKey[Map[String, String]]( s"A map of static environment variable assignments global to the workflow (default: { GITHUB_TOKEN: $${{ secrets.GITHUB_TOKEN }} })") - lazy val githubWorkflowPublishEnv = settingKey[Map[String, String]]( - s"A map of additional static environment variable assignments scoped to the publish job (default empty)") lazy val githubWorkflowAddedJobs = settingKey[Seq[WorkflowJob]]( "A list of additional jobs to add to the CI workflow (default: [])") } diff --git a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala index 4657b3fd..a1ef6d2d 100644 --- a/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala +++ b/github-actions/src/main/scala/org/typelevel/sbt/gha/GenerativePlugin.scala @@ -532,7 +532,6 @@ ${indent(jobs.map(compileJob(_, sbt)).mkString("\n\n"), 1)} githubWorkflowTargetTags := Seq(), githubWorkflowTargetPaths := Paths.None, githubWorkflowEnv := Map("GITHUB_TOKEN" -> s"$${{ secrets.GITHUB_TOKEN }}"), - githubWorkflowPublishEnv := Map.empty, githubWorkflowAddedJobs := Seq() ) @@ -676,7 +675,6 @@ ${indent(jobs.map(compileJob(_, sbt)).mkString("\n\n"), 1)} githubWorkflowPublish.value.toList ::: githubWorkflowPublishPostamble.value.toList, cond = Some(publicationCond.value), - env = githubWorkflowPublishEnv.value, scalas = List(scalaVersion.value), javas = List(githubWorkflowJavaVersions.value.head), needs = List("build") diff --git a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala index 467b783b..abf17803 100644 --- a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala +++ b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala @@ -41,7 +41,7 @@ object TypelevelSonatypeCiReleasePlugin extends AutoPlugin { Seq(tlCiReleaseTags := true, tlCiReleaseBranches := Seq()) override def buildSettings = Seq( - githubWorkflowPublishEnv ++= Map( + githubWorkflowEnv ++= Map( "SONATYPE_USERNAME" -> s"$${{ secrets.SONATYPE_USERNAME }}", "SONATYPE_PASSWORD" -> s"$${{ secrets.SONATYPE_PASSWORD }}" ), From 1ba78de3ecd68b66e2f7303c37cddf48d8581397 Mon Sep 17 00:00:00 2001 From: Arman Bilge Date: Sun, 23 Jan 2022 05:38:47 +0000 Subject: [PATCH 3/5] Keep secrets scoped to steps --- .github/workflows/ci.yml | 17 +++++++++++------ .../sbt/TypelevelCiSigningPlugin.scala | 15 +++++++++------ .../sbt/TypelevelSonatypeCiReleasePlugin.scala | 11 ++++++----- 3 files changed, 26 insertions(+), 17 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 74907504..4ccaa28d 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -15,10 +15,6 @@ on: tags: [v*] env: - PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} - SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} - SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} - PGP_SECRET: ${{ secrets.PGP_SECRET }} GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} jobs: @@ -132,17 +128,26 @@ jobs: rm targets.tar - name: Import signing key - if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE == '' + if: secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE == '' + env: + PGP_SECRET: ${{ secrets.PGP_SECRET }} + PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} run: echo $PGP_SECRET | base64 -d | gpg --import - name: Import signing key and strip passphrase - if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE != '' + if: secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE != '' + env: + PGP_SECRET: ${{ secrets.PGP_SECRET }} + PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} run: | echo "$PGP_SECRET" | base64 -d > /tmp/signing-key.gpg echo "$PGP_PASSPHRASE" | gpg --pinentry-mode loopback --passphrase-fd 0 --import /tmp/signing-key.gpg (echo "$PGP_PASSPHRASE"; echo; echo) | gpg --command-fd 0 --pinentry-mode loopback --change-passphrase $(gpg --list-secret-keys --with-colons 2> /dev/null | grep '^sec:' | cut --delimiter ':' --fields 5 | tail -n 1) - name: Publish + env: + SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }} + SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }} run: sbt '++${{ matrix.scala }}' tlRelease site: diff --git a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala index c6ffed9b..a60967dd 100644 --- a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala +++ b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala @@ -29,15 +29,12 @@ object TypelevelCiSigningPlugin extends AutoPlugin { override def trigger = allRequirements override def buildSettings = Seq( - githubWorkflowEnv ++= Map( - "PGP_SECRET" -> s"$${{ secrets.PGP_SECRET }}", - "PGP_PASSPHRASE" -> s"$${{ secrets.PGP_PASSPHRASE }}" - ), githubWorkflowPublishPreamble := Seq( WorkflowStep.Run( // if your key is not passphrase-protected List("echo $PGP_SECRET | base64 -d | gpg --import"), name = Some("Import signing key"), - cond = Some("env.PGP_SECRET != '' && env.PGP_PASSPHRASE == ''") + cond = Some("secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE == ''"), + env = env ), WorkflowStep.Run( // if your key is passphrase-protected List( @@ -46,7 +43,8 @@ object TypelevelCiSigningPlugin extends AutoPlugin { "(echo \"$PGP_PASSPHRASE\"; echo; echo) | gpg --command-fd 0 --pinentry-mode loopback --change-passphrase $(gpg --list-secret-keys --with-colons 2> /dev/null | grep '^sec:' | cut --delimiter ':' --fields 5 | tail -n 1)" ), name = Some("Import signing key and strip passphrase"), - cond = Some("env.PGP_SECRET != '' && env.PGP_PASSPHRASE != ''") + cond = Some("secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE != ''"), + env = env ) ) ) @@ -57,4 +55,9 @@ object TypelevelCiSigningPlugin extends AutoPlugin { gpgWarnOnFailure := isSnapshot.value ) + private val env = Map( + "PGP_SECRET" -> s"$${{ secrets.PGP_SECRET }}", + "PGP_PASSPHRASE" -> s"$${{ secrets.PGP_PASSPHRASE }}" + ) + } diff --git a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala index abf17803..ad201be9 100644 --- a/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala +++ b/sonatype-ci-release/src/main/scala/org/typelevel/sbt/TypelevelSonatypeCiReleasePlugin.scala @@ -41,10 +41,6 @@ object TypelevelSonatypeCiReleasePlugin extends AutoPlugin { Seq(tlCiReleaseTags := true, tlCiReleaseBranches := Seq()) override def buildSettings = Seq( - githubWorkflowEnv ++= Map( - "SONATYPE_USERNAME" -> s"$${{ secrets.SONATYPE_USERNAME }}", - "SONATYPE_PASSWORD" -> s"$${{ secrets.SONATYPE_PASSWORD }}" - ), githubWorkflowPublishTargetBranches := { val branches = tlCiReleaseBranches.value.map(b => RefPredicate.Equals(Ref.Branch(b))) @@ -59,7 +55,12 @@ object TypelevelSonatypeCiReleasePlugin extends AutoPlugin { }, githubWorkflowTargetTags += "v*", githubWorkflowPublish := Seq( - WorkflowStep.Sbt(List("tlRelease"), name = Some("Publish")) + WorkflowStep.Sbt(List("tlRelease"), name = Some("Publish"), env = env) ) ) + + private val env = Map( + "SONATYPE_USERNAME" -> s"$${{ secrets.SONATYPE_USERNAME }}", + "SONATYPE_PASSWORD" -> s"$${{ secrets.SONATYPE_PASSWORD }}" + ) } From f867dce78144a9226b854dc839db19c642250b37 Mon Sep 17 00:00:00 2001 From: Arman Bilge Date: Sun, 23 Jan 2022 06:11:24 +0000 Subject: [PATCH 4/5] Try an experiment --- .github/workflows/ci.yml | 9 +++++++-- build.sbt | 4 ++++ .../org/typelevel/sbt/TypelevelCiSigningPlugin.scala | 4 ++-- 3 files changed, 13 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 4ccaa28d..344a3443 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -52,6 +52,11 @@ jobs: ~/Library/Caches/Coursier/v1 key: ${{ runner.os }}-sbt-cache-v2-${{ hashFiles('**/*.sbt') }}-${{ hashFiles('project/build.properties') }} + - if: env.TEST == 'itworked' + env: + TEST: itworked + run: exit + - name: Check that workflows are up to date run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' 'project /' githubWorkflowCheck @@ -128,14 +133,14 @@ jobs: rm targets.tar - name: Import signing key - if: secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE == '' + if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE == '' env: PGP_SECRET: ${{ secrets.PGP_SECRET }} PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} run: echo $PGP_SECRET | base64 -d | gpg --import - name: Import signing key and strip passphrase - if: secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE != '' + if: env.PGP_SECRET != '' && env.PGP_PASSPHRASE != '' env: PGP_SECRET: ${{ secrets.PGP_SECRET }} PGP_PASSPHRASE: ${{ secrets.PGP_PASSPHRASE }} diff --git a/build.sbt b/build.sbt index 95d14f7f..99ec62a4 100644 --- a/build.sbt +++ b/build.sbt @@ -8,6 +8,10 @@ ThisBuild / developers := List( tlGitHubDev("ChristopherDavenport", "Christopher Davenport"), tlGitHubDev("djspiewak", "Daniel Spiewak") ) +ThisBuild / githubWorkflowBuildPreamble += WorkflowStep.Run( + List("exit"), + cond = Some("env.TEST == 'itworked'"), + env = Map("TEST" -> "itworked")) lazy val root = tlCrossRootProject.aggregate( kernel, diff --git a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala index a60967dd..1f15c791 100644 --- a/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala +++ b/ci-signing/src/main/scala/org/typelevel/sbt/TypelevelCiSigningPlugin.scala @@ -33,7 +33,7 @@ object TypelevelCiSigningPlugin extends AutoPlugin { WorkflowStep.Run( // if your key is not passphrase-protected List("echo $PGP_SECRET | base64 -d | gpg --import"), name = Some("Import signing key"), - cond = Some("secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE == ''"), + cond = Some("env.PGP_SECRET != '' && env.PGP_PASSPHRASE == ''"), env = env ), WorkflowStep.Run( // if your key is passphrase-protected @@ -43,7 +43,7 @@ object TypelevelCiSigningPlugin extends AutoPlugin { "(echo \"$PGP_PASSPHRASE\"; echo; echo) | gpg --command-fd 0 --pinentry-mode loopback --change-passphrase $(gpg --list-secret-keys --with-colons 2> /dev/null | grep '^sec:' | cut --delimiter ':' --fields 5 | tail -n 1)" ), name = Some("Import signing key and strip passphrase"), - cond = Some("secrets.PGP_SECRET != '' && secrets.PGP_PASSPHRASE != ''"), + cond = Some("env.PGP_SECRET != '' && env.PGP_PASSPHRASE != ''"), env = env ) ) From 520f571c3086d3ec2ef21292cfcd671c4456313a Mon Sep 17 00:00:00 2001 From: Arman Bilge Date: Sun, 23 Jan 2022 06:12:50 +0000 Subject: [PATCH 5/5] I guess it works --- .github/workflows/ci.yml | 5 ----- build.sbt | 4 ---- 2 files changed, 9 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 344a3443..fb0f92e2 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -52,11 +52,6 @@ jobs: ~/Library/Caches/Coursier/v1 key: ${{ runner.os }}-sbt-cache-v2-${{ hashFiles('**/*.sbt') }}-${{ hashFiles('project/build.properties') }} - - if: env.TEST == 'itworked' - env: - TEST: itworked - run: exit - - name: Check that workflows are up to date run: sbt 'project ${{ matrix.project }}' '++${{ matrix.scala }}' 'project /' githubWorkflowCheck diff --git a/build.sbt b/build.sbt index 99ec62a4..95d14f7f 100644 --- a/build.sbt +++ b/build.sbt @@ -8,10 +8,6 @@ ThisBuild / developers := List( tlGitHubDev("ChristopherDavenport", "Christopher Davenport"), tlGitHubDev("djspiewak", "Daniel Spiewak") ) -ThisBuild / githubWorkflowBuildPreamble += WorkflowStep.Run( - List("exit"), - cond = Some("env.TEST == 'itworked'"), - env = Map("TEST" -> "itworked")) lazy val root = tlCrossRootProject.aggregate( kernel,