Nightly source-language update #3248
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: Bundle and Deploy EAS Update | |
| on: | |
| push: | |
| branches: | |
| - main | |
| workflow_dispatch: | |
| inputs: | |
| channel: | |
| type: choice | |
| description: Deployment channel to use | |
| options: | |
| - testflight | |
| - production | |
| runtimeVersion: | |
| type: string | |
| description: Runtime version (in x.x.x format) that this update is for | |
| required: true | |
| jobs: | |
| bundleDeploy: | |
| if: github.repository == 'bluesky-social/social-app' | |
| name: Bundle and Deploy EAS Update | |
| runs-on: ubuntu-latest | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}-deploy | |
| cancel-in-progress: true | |
| outputs: | |
| changes-detected: ${{ steps.fingerprint.outputs.includes-changes }} | |
| steps: | |
| - name: Check for EXPO_TOKEN | |
| run: > | |
| if [ -z "${{ secrets.EXPO_TOKEN }}" ]; then | |
| echo "You must provide an EXPO_TOKEN secret linked to this project's Expo account in this repo's secrets. Learn more: https://docs.expo.dev/eas-update/github-actions" | |
| exit 1 | |
| fi | |
| # Validate the version if one is supplied. This should generally happen if the update is for a production client | |
| - name: 🧐 Validate version | |
| if: ${{ inputs.runtimeVersion }} | |
| run: | | |
| if [ -z "${{ inputs.runtimeVersion }}" ]; then | |
| [[ "${{ inputs.runtimeVersion }}" =~ ^[0-9]+\.[0-9]+\.[0-9]+$ ]] && echo "Version is valid" || exit 1 | |
| fi | |
| - name: ⬇️ Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - name: ⬇️ Fetch commits from base branch | |
| if: ${{ github.ref != 'refs/heads/main' }} | |
| run: git fetch origin main:main --depth 100 | |
| - name: 🔧 Setup Node | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: .nvmrc | |
| cache: yarn | |
| - name: 📷 Check fingerprint and install dependencies | |
| id: fingerprint | |
| uses: bluesky-social/github-actions/fingerprint-native@main | |
| with: | |
| profile: ${{ inputs.channel || 'testflight' }} | |
| previous-commit-tag: ${{ inputs.runtimeVersion }} | |
| - name: Lint check | |
| run: yarn lint | |
| - name: Lint lockfile | |
| run: yarn lockfile-lint | |
| - name: Prettier check | |
| run: yarn prettier --check . | |
| - name: 🔤 Compile translations | |
| run: yarn intl:build 2>&1 | tee i18n.log | |
| - name: Check for i18n compilation errors | |
| run: if grep -q "invalid syntax" "i18n.log"; then echo "\n\nFound compilation errors!\n\n" && exit 1; else echo "\n\nNo compilation errors!\n\n"; fi | |
| - name: Type check | |
| run: yarn typecheck | |
| - name: 🔨 Setup EAS | |
| uses: expo/expo-github-action@v8 | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| with: | |
| expo-version: latest | |
| eas-version: latest | |
| token: ${{ secrets.EXPO_TOKEN }} | |
| - name: ⛏️ Setup Expo | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| run: yarn global add eas-cli-local-build-plugin | |
| - name: 🪛 Setup jq | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| uses: dcarbone/install-jq-action@v2 | |
| # eas.json not used here, set EXPO_PUBLIC_ENV | |
| - name: Env | |
| id: env | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| run: | | |
| export json='${{ secrets.GOOGLE_SERVICES_TOKEN }}' | |
| echo "${{ secrets.ENV_TOKEN }}" > .env | |
| echo "EXPO_PUBLIC_ENV=${{ inputs.channel || 'testflight' }}" >> .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> .env | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_DATE=$(date -u +"%y%m%d%H")" >> .env | |
| echo "EXPO_PUBLIC_SENTRY_DSN=${{ secrets.SENTRY_DSN }}" >> .env | |
| echo "EXPO_PUBLIC_BITDRIFT_API_KEY=${{ secrets.BITDRIFT_API_KEY }}" >> .env | |
| echo "EXPO_PUBLIC_GCP_PROJECT_ID=${{ secrets.EXPO_PUBLIC_GCP_PROJECT_ID }}" >> .env | |
| echo "$json" > google-services.json | |
| - name: 🏗️ Create Bundle | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| run: > | |
| SENTRY_AUTH_TOKEN=${{ secrets.SENTRY_AUTH_TOKEN }} | |
| SENTRY_RELEASE=${{ steps.env.outputs.EXPO_PUBLIC_RELEASE_VERSION }} | |
| SENTRY_DIST=${{ steps.env.outputs.EXPO_PUBLIC_BUNDLE_IDENTIFIER }} | |
| yarn export | |
| - name: 📦 Package Bundle and 🚀 Deploy | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| run: yarn use-build-number bash scripts/bundleUpdate.sh | |
| env: | |
| DENIS_API_KEY: ${{ secrets.DENIS_API_KEY }} | |
| RUNTIME_VERSION: ${{ inputs.runtimeVersion }} | |
| CHANNEL_NAME: ${{ inputs.channel || 'testflight' }} | |
| - name: ⬇️ Restore Cache | |
| id: get-base-commit | |
| uses: actions/cache@v4 | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| with: | |
| path: most-recent-testflight-commit.txt | |
| key: most-recent-testflight-commit | |
| - name: ✏️ Write commit hash to cache | |
| if: ${{ !steps.fingerprint.outputs.includes-changes }} | |
| run: echo ${{ github.sha }} > most-recent-testflight-commit.txt | |
| # GitHub actions are horrible so let's just copy paste this in | |
| buildIfNecessaryIOS: | |
| name: Build and Submit iOS | |
| runs-on: macos-15 | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}-build-ios | |
| cancel-in-progress: true | |
| needs: [bundleDeploy] | |
| # Gotta check if its NOT '[]' because any md5 hash in the outputs is detected as a possible secret and won't be | |
| # available here | |
| if: ${{ inputs.channel != 'production' && needs.bundleDeploy.outputs.changes-detected && github.repository == 'bluesky-social/social-app' }} | |
| steps: | |
| - name: Check for EXPO_TOKEN | |
| run: > | |
| if [ -z "${{ secrets.EXPO_TOKEN }}" ]; then | |
| echo "You must provide an EXPO_TOKEN secret linked to this project's Expo account in this repo's secrets. Learn more: https://docs.expo.dev/eas-update/github-actions" | |
| exit 1 | |
| fi | |
| - name: ⬇️ Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 5 | |
| - name: 🔧 Setup Node | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: .nvmrc | |
| cache: yarn | |
| - name: 🔨 Setup EAS | |
| uses: expo/expo-github-action@v8 | |
| with: | |
| expo-version: latest | |
| eas-version: latest | |
| token: ${{ secrets.EXPO_TOKEN }} | |
| - name: ⛏️ Setup EAS local builds | |
| run: yarn global add eas-cli-local-build-plugin | |
| - name: ⚙️ Install dependencies | |
| run: yarn install | |
| - uses: maxim-lobanov/setup-xcode@v1 | |
| with: | |
| xcode-version: "16.2" | |
| - name: ☕️ Setup Cocoapods | |
| uses: maxim-lobanov/setup-cocoapods@v1 | |
| with: | |
| version: 1.16.2 | |
| - name: 💾 Cache Pods | |
| uses: actions/cache@v3 | |
| id: pods-cache | |
| with: | |
| path: ./ios/Pods | |
| # We'll use the yarn.lock for our hash since we don't yet have a Podfile.lock. Pod versions will not | |
| # change unless the yarn version changes as well. | |
| key: ${{ runner.os }}-pods-${{ hashFiles('yarn.lock') }} | |
| - name: 🔤 Compile translations | |
| run: yarn intl:build | |
| # EXPO_PUBLIC_ENV is handled in eas.json | |
| - name: Env | |
| id: env | |
| run: | | |
| echo "${{ secrets.ENV_TOKEN }}" > .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> .env | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_DATE=$(date -u +"%y%m%d%H")" >> .env | |
| echo "EXPO_PUBLIC_SENTRY_DSN=${{ secrets.SENTRY_DSN }}" >> .env | |
| echo "EXPO_PUBLIC_BITDRIFT_API_KEY=${{ secrets.BITDRIFT_API_KEY }}" >> .env | |
| echo "EXPO_PUBLIC_GCP_PROJECT_ID=${{ secrets.EXPO_PUBLIC_GCP_PROJECT_ID }}" >> .env | |
| echo "${{ secrets.GOOGLE_SERVICES_TOKEN }}" > google-services.json | |
| - name: 🏗️ EAS Build | |
| run: > | |
| SENTRY_AUTH_TOKEN=${{ secrets.SENTRY_AUTH_TOKEN }} | |
| SENTRY_RELEASE=${{ steps.env.outputs.EXPO_PUBLIC_RELEASE_VERSION }} | |
| SENTRY_DIST=${{ steps.env.outputs.EXPO_PUBLIC_BUNDLE_IDENTIFIER }} | |
| yarn use-build-number-with-bump | |
| eas build -p ios | |
| --profile testflight | |
| --local --output build.ipa --non-interactive | |
| - name: 🚀 Deploy | |
| run: eas submit -p ios --non-interactive --path build.ipa | |
| - name: ⬇️ Restore Cache | |
| id: get-base-commit | |
| uses: actions/cache@v4 | |
| if: ${{ inputs.channel == 'testflight' }} | |
| with: | |
| path: most-recent-testflight-commit.txt | |
| key: most-recent-testflight-commit | |
| - name: ✏️ Write commit hash to cache | |
| if: ${{ inputs.channel == 'testflight' }} | |
| run: echo ${{ github.sha }} > most-recent-testflight-commit.txt | |
| buildIfNecessaryAndroid: | |
| name: Build and Submit Android | |
| runs-on: ubuntu-latest | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event_name }}-${{ github.ref }}-build-android | |
| cancel-in-progress: false | |
| needs: [bundleDeploy] | |
| # Gotta check if its NOT '[]' because any md5 hash in the outputs is detected as a possible secret and won't be | |
| # available here | |
| if: ${{ inputs.channel != 'production' && needs.bundleDeploy.outputs.changes-detected && github.repository == 'bluesky-social/social-app'}} | |
| steps: | |
| - name: Check for EXPO_TOKEN | |
| run: > | |
| if [ -z "${{ secrets.EXPO_TOKEN }}" ]; then | |
| echo "You must provide an EXPO_TOKEN secret linked to this project's Expo account in this repo's secrets. Learn more: https://docs.expo.dev/eas-update/github-actions" | |
| exit 1 | |
| fi | |
| - name: ⬇️ Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 5 | |
| - name: 🔧 Setup Node | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: .nvmrc | |
| cache: yarn | |
| - name: 🔨 Setup EAS | |
| uses: expo/expo-github-action@v8 | |
| with: | |
| expo-version: latest | |
| eas-version: latest | |
| token: ${{ secrets.EXPO_TOKEN }} | |
| - name: ⛏️ Setup EAS local builds | |
| run: yarn global add eas-cli-local-build-plugin | |
| - uses: actions/setup-java@v4 | |
| with: | |
| distribution: "temurin" | |
| java-version: "17" | |
| - name: ⚙️ Install dependencies | |
| run: yarn install | |
| - name: 🔤 Compile translations | |
| run: yarn intl:build | |
| # EXPO_PUBLIC_ENV is handled in eas.json | |
| - name: Env | |
| id: env | |
| run: | | |
| export json='${{ secrets.GOOGLE_SERVICES_TOKEN }}' | |
| echo "${{ secrets.ENV_TOKEN }}" > .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> .env | |
| echo "EXPO_PUBLIC_RELEASE_VERSION=$(jq -r '.version' package.json)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> .env | |
| echo "EXPO_PUBLIC_BUNDLE_IDENTIFIER=$(git rev-parse HEAD)" >> $GITHUB_OUTPUT | |
| echo "EXPO_PUBLIC_BUNDLE_DATE=$(date -u +"%y%m%d%H")" >> .env | |
| echo "EXPO_PUBLIC_SENTRY_DSN=${{ secrets.SENTRY_DSN }}" >> .env | |
| echo "EXPO_PUBLIC_BITDRIFT_API_KEY=${{ secrets.BITDRIFT_API_KEY }}" >> .env | |
| echo "EXPO_PUBLIC_GCP_PROJECT_ID=${{ secrets.EXPO_PUBLIC_GCP_PROJECT_ID }}" >> .env | |
| echo "$json" > google-services.json | |
| - name: 🏗️ EAS Build | |
| run: > | |
| SENTRY_AUTH_TOKEN=${{ secrets.SENTRY_AUTH_TOKEN }} | |
| SENTRY_RELEASE=${{ steps.env.outputs.EXPO_PUBLIC_RELEASE_VERSION }} | |
| SENTRY_DIST=${{ steps.env.outputs.EXPO_PUBLIC_BUNDLE_IDENTIFIER }} | |
| yarn use-build-number-with-bump | |
| eas build -p android | |
| --profile testflight-android | |
| --local --output build.apk --non-interactive | |
| - name: ⏰ Get a timestamp | |
| id: timestamp | |
| uses: nanzm/get-time-action@master | |
| with: | |
| format: "MM-DD-HH-mm-ss" | |
| - name: 🚀 Upload Artifact | |
| id: upload-artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| retention-days: 30 | |
| compression-level: 0 | |
| name: build-${{ steps.timestamp.outputs.time }}.apk | |
| path: build.apk | |
| - name: 🔔 Notify Slack | |
| uses: slackapi/[email protected] | |
| with: | |
| payload: | | |
| { | |
| "text": "Android build is ready for testing. Download the artifact here: ${{ steps.upload-artifact.outputs.artifact-url }}" | |
| } | |
| env: | |
| SLACK_WEBHOOK_URL: ${{ secrets.SLACK_CLIENT_ALERT_WEBHOOK }} | |
| SLACK_WEBHOOK_TYPE: INCOMING_WEBHOOK | |
| - name: ⬇️ Restore Cache | |
| id: get-base-commit | |
| uses: actions/cache@v4 | |
| if: ${{ inputs.channel != 'testflight' && inputs.channel != 'production' }} | |
| with: | |
| path: most-recent-testflight-commit.txt | |
| key: most-recent-testflight-commit | |
| - name: ✏️ Write commit hash to cache | |
| if: ${{ inputs.channel != 'testflight' && inputs.channel != 'production' }} | |
| run: echo ${{ github.sha }} > most-recent-testflight-commit.txt |