Skip to content

ci(gha): add gha ci trigger to update google apis sha #49

ci(gha): add gha ci trigger to update google apis sha

ci(gha): add gha ci trigger to update google apis sha #49

name: "Update the google apis SHA"
on:
# Create the PR once a week at 00:00 on Sunday.
schedule:
- cron: '0 0 * * SUN'
push:
branches: [ 'ci-gha-googleapis**', "test-gha" ]
permissions:
contents: write
pull-requests: write
id-token: write
env:
REPO: googleapis/googleapis
BRANCH: master
jobs:
create-update-google-apis-pr:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Store the current date as an environment variable
run: echo "DATE=$(date +'%Y-%m-%d')" >> $GITHUB_ENV
- name: 'Authenticate to GCP'
uses: google-github-actions/auth@v1
# We can't use WIF since one of the steps needs access to create a storage project.
with:
create_credentials_file: true
credentials_json: ${{ secrets.GHA_STORAGE_SERVICE_ACCOUNT_CREDENTIALS_JSON }}
- name: 'Set up Cloud SDK'
uses: google-github-actions/setup-gcloud@v1
with:
version: '>= 390.0.0'
- name: Get latest commit from google apis
run: |
echo "COMMIT=$(curl --retry 5 -fsSL -H 'Accept: application/vnd.github.VERSION.sha' 'https://api.github.com/repos/${{ env.REPO }}/commits/${{ env.BRANCH}}')" >> $GITHUB_ENV
- name: Get the SHA for google apis and store the archive in our storage bucket
run: |
DOWNLOAD="$(mktemp)"
curl -fsSL --retry 5 "https://github.com/${{ env.REPO }}/archive/${{ env.COMMIT }}.tar.gz" -o "${DOWNLOAD}"
gsutil -q cp "${DOWNLOAD}" "gs://cloud-cpp-community-archive/com_google_googleapis/${{ env.COMMIT }}.tar.gz"
SHA256=$(sha256sum "${DOWNLOAD}" | sed "s/ .*//")
echo "SHA256=${SHA256}" >> $GITHUB_ENV
rm -rf ${DOWNLOAD}
- name: Updating Bazel dependencies
run: |
sed -i -f - bazel/google_cloud_cpp_deps.bzl <<EOT
/name = "com_google_googleapis",/,/strip_prefix = "/ {
s;/com_google_googleapis/.*.tar.gz",;/com_google_googleapis/${COMMIT}.tar.gz",;
s;/${REPO}/archive/.*.tar.gz",;/${REPO}/archive/${COMMIT}.tar.gz",;
s/sha256 = ".*",/sha256 = "${SHA256}",/
s/strip_prefix = "googleapis-.*",/strip_prefix = "googleapis-${COMMIT}",/
}
EOT
env:
COMMIT: ${{ env.COMMIT }}
REPO: ${{ env.REPO }}
SHA256: ${{ env.SHA256 }}
- name: Updating CMake dependencies
run: |
sed -i -f - cmake/GoogleapisConfig.cmake <<EOT
/^set(_GOOGLE_CLOUD_CPP_GOOGLEAPIS_COMMIT_SHA$/ {
n
s/".*"/"${COMMIT}"/
}
/^set(_GOOGLE_CLOUD_CPP_GOOGLEAPIS_SHA256$/ {
n
s/".*"/"${SHA256}"/
}
EOT
env:
COMMIT: ${{ env.COMMIT }}
SHA256: ${{ env.SHA256 }}
- name: Check if there are any updates
id: diff-deps
run: |
if git diff --quiet bazel/google_cloud_cpp_deps.bzl \
cmake/GoogleapisConfig.cmake; then
echo "No updates"
exit 0
fi
- name: Updating the protodeps/protolists
run: external/googleapis/update_libraries.sh
- name: Regenerating libraries
run: | # generate-libraries fails if it creates a diff, so ignore its status.
ci/cloudbuild/build.sh --docker --trigger=generate-libraries-pr || true
- name: Create commits
run: |
git config user.name 'Anonymous'
git config user.email '<>'
git commit -m"chore: update googleapis SHA" \
bazel/google_cloud_cpp_deps.bzl cmake/GoogleapisConfig.cmake
if ! git diff --quiet external/googleapis/protodeps \
external/googleapis/protolists; then
git commit -m"Update the protodeps/protolists" \
external/googleapis/protodeps external/googleapis/protolists
fi
if ! git diff --quiet .; then
git commit -m"Regenerate libraries" google/cloud
fi
- name: Create Pull Request
uses: peter-evans/create-pull-request@v5
with:
title: 'chore(googleapis-sha): update the sha circa ${{ env.DATE }}'
body: >
This PR is auto-generated by
[updated-googleapis-sha](https://github.com/googleapis/google-cloud-cpp/.github/workflows/update-googleapis-sha).
- The new SHA256 is ${{ env.SHA256 }}
labels: dependencies