name: CI on: push: branches: - main - renovate/** pull_request: branches: - main concurrency: group: ${{ github.workflow }}-${{ github.ref }} jobs: check: runs-on: ubuntu-latest steps: - name: Checkout repository uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0 - name: Set up JDK uses: actions/setup-java@3f07048e3d294f56e9b90ac5ea2c6f74e9ad0f98 # v3.10.0 with: distribution: temurin java-version: 18 - name: Run unit tests uses: gradle/gradle-build-action@6095a76664413da4c8c134ee32e8a8ae900f0f1f # v2.4.0 with: arguments: --no-configuration-cache --stacktrace check gradle-home-cache-cleanup: true cache-read-only: ${{ github.ref != 'refs/heads/main' }} - name: (Fail-only) Upload test report if: failure() uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2 with: name: Test report path: android/build/reports deploy-release-snapshot: runs-on: ubuntu-latest if: "github.event_name == 'push' && github.event.ref == 'refs/heads/main'" needs: [ "check" ] steps: - name: Checkout repository uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0 - name: Set up JDK uses: actions/setup-java@3f07048e3d294f56e9b90ac5ea2c6f74e9ad0f98 # v3.10.0 with: distribution: temurin java-version: 18 - name: Decrypt secrets run: | ./scripts/setup-age.sh ./scripts/signing-setup.sh "$ENCRYPT_KEY" env: ENCRYPT_KEY: ${{ secrets.ENCRYPT_KEY }} - name: Build release app uses: gradle/gradle-build-action@6095a76664413da4c8c134ee32e8a8ae900f0f1f # v2.4.0 env: SENTRY_DSN: ${{ secrets.SENTRY_DSN }} with: arguments: --no-configuration-cache --stacktrace collectReleaseApks gradle-home-cache-cleanup: true cache-read-only: ${{ github.ref != 'refs/heads/main' }} - name: Clean secrets run: scripts/signing-cleanup.sh - name: Deploy snapshot run: scripts/deploy-snapshot.sh env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}