Skip to content

Upgrade: [dependabot] - bump pino-pretty from 11.3.0 to 13.0.0 (#2934) #358

Upgrade: [dependabot] - bump pino-pretty from 11.3.0 to 13.0.0 (#2934)

Upgrade: [dependabot] - bump pino-pretty from 11.3.0 to 13.0.0 (#2934) #358

Workflow file for this run

name: release workflow
on:
push:
branches: [master]
tags: [v**]
env:
BRANCH_NAME: ${{ github.event.ref.BRANCH_NAME }}
jobs:
quality_checks:
uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/[email protected]
secrets:
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
get_version:
runs-on: ubuntu-latest
outputs:
version: ${{ steps.set_version.outputs.version }}
steps:
- name: Checkout code
uses: actions/checkout@v4
- name: Set version
id: set_version
run: echo "version=$(cat VERSION)" >> "$GITHUB_OUTPUT"
get_commit_id:
runs-on: ubuntu-latest
outputs:
commit_id: ${{ steps.commit_id.outputs.commit_id }}
short_commit_id: ${{ steps.short_commit_id.outputs.short_commit_id }}
steps:
- name: Get Commit ID
id: commit_id
run: echo "commit_id=${{ github.sha }}" >> "$GITHUB_OUTPUT"
- name: Get Short Commit ID
id: short_commit_id
run: echo "short_commit_id=$(echo ${{ github.sha }} | cut -c1-7)" >> "$GITHUB_OUTPUT"
tag_release:
needs: quality_checks
runs-on: ubuntu-latest
outputs:
spec_version: ${{steps.output_spec_version.outputs.SPEC_VERSION}}
steps:
- name: Checkout code
uses: actions/checkout@v4
with:
ref: ${{ env.BRANCH_NAME }}
fetch-depth: 0
# using git commit sha for version of action to ensure we have stable version
- name: Install asdf
uses: asdf-vm/actions/setup@05e0d2ed97b598bfce82fd30daf324ae0c4570e6
with:
asdf_branch: v0.11.3
- name: Cache asdf
uses: actions/cache@v4
with:
path: |
~/.asdf
key: ${{ runner.os }}-asdf-${{ hashFiles('**/.tool-versions') }}
restore-keys: |
${{ runner.os }}-asdf-
- name: Install asdf dependencies in .tool-versions
uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6
with:
asdf_branch: v0.11.3
env:
PYTHON_CONFIGURE_OPTS: --enable-shared
- name: Install python packages
run: |
make install-python
- name: Set SPEC_VERSION env var for merges to master
run: echo "SPEC_VERSION=$(poetry run python scripts/calculate_version.py)" >> "$GITHUB_ENV"
if: github.ref == 'refs/heads/master'
- name: Set SPEC_VERSION env var for tags
run: echo "SPEC_VERSION=${{ github.ref_name }}" >> "$GITHUB_ENV"
if: github.ref != 'refs/heads/master'
- name: Create release (tags and master)
id: create-release
# using commit hash for version v1.13.0
uses: ncipollo/release-action@2c591bcc8ecdcd2db72b97d6147f871fcd833ba5
continue-on-error: true
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
tag: ${{ env.SPEC_VERSION }}
commit: ${{ github.sha }}
body: |
## Commit message
${{ github.event.head_commit.message }}
## Info
[See code diff](${{ github.event.compare }})
[Release workflow run](${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }})
It was initialized by [${{ github.event.sender.login }}](${{ github.event.sender.html_url }})
- name: output SPEC_VERSION
id: output_spec_version
run: |
echo "## RELEASE TAG :** ${{ env.SPEC_VERSION }}" >> "$GITHUB_STEP_SUMMARY"
echo "SPEC_VERSION=${{ env.SPEC_VERSION }}" >> "$GITHUB_OUTPUT"
package_code:
needs: [get_version, get_commit_id, tag_release]
uses: ./.github/workflows/sam_package_code.yml
with:
VERSION_NUMBER: ${{ needs.tag_release.outputs.spec_version }}
COMMIT_ID: ${{ needs.get_commit_id.outputs.commit_id }}
release_dev:
needs: [tag_release, package_code, get_commit_id]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense
AWS_ENVIRONMENT: dev
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
# CREATE_INT_RELEASE_NOTES: true
# CREATE_PROD_RELEASE_NOTES: true
DOMAIN_NAME_EXPORT: eps-route53-resources:EPS-domain
ZONE_ID_EXPORT: eps-route53-resources:EPS-ZoneID
TARGET_SPINE_SERVER: veit07.devspineservices.nhs.uk
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_DEPLOY_ROLE }}
DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
INT_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.INT_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE }}
release_dev_sandbox:
needs: [tag_release, package_code, get_commit_id]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense-sandbox
AWS_ENVIRONMENT: dev
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_sandbox_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-sandbox-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: sandbox
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
DOMAIN_NAME_EXPORT: eps-route53-resources:EPS-domain
ZONE_ID_EXPORT: eps-route53-resources:EPS-ZoneID
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_DEPLOY_ROLE }}
release_ref:
needs:
[
tag_release,
release_dev,
release_dev_sandbox,
package_code,
get_commit_id,
]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense
AWS_ENVIRONMENT: ref
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: prescriptions.refspineservices.nhs.uk
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.REF_CLOUD_FORMATION_DEPLOY_ROLE }}
release_qa:
needs:
[
tag_release,
release_dev,
release_dev_sandbox,
package_code,
get_commit_id,
]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense
AWS_ENVIRONMENT: qa
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: msg.intspineservices.nhs.uk
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.QA_CLOUD_FORMATION_DEPLOY_ROLE }}
release_int:
needs: [tag_release, release_qa, package_code, get_commit_id]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense
AWS_ENVIRONMENT: int
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: msg.intspineservices.nhs.uk
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
# CREATE_INT_RELEASE_NOTES: true
# CREATE_INT_RC_RELEASE_NOTES: false
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.INT_CLOUD_FORMATION_DEPLOY_ROLE }}
DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
INT_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.INT_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE }}
release_sandbox:
needs: [tag_release, release_qa, package_code, get_commit_id]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense-sandox
AWS_ENVIRONMENT: int
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_sandbox_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-sandbox-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: sandbox
# LOG_LEVEL: DEBUG
LOG_RETENTION_DAYS: 30
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.INT_CLOUD_FORMATION_DEPLOY_ROLE }}
release_prod:
needs:
[tag_release, release_int, release_sandbox, package_code, get_commit_id]
uses: ./.github/workflows/sam_release_code.yml
with:
ARTIFACT_BUCKET_PREFIX: ${{needs.tag_release.outputs.spec_version}}
STACK_NAME: prescribe-dispense
AWS_ENVIRONMENT: prod
ENABLE_MUTUAL_TLS: true
BUILD_ARTIFACT: packaged_code
SPEC_ARTIFACT: specification_code
TRUSTSTORE_FILE: fhirfacade-truststore.pem
VERSION_NUMBER: ${{needs.tag_release.outputs.spec_version}}
COMMIT_ID: ${{needs.get_commit_id.outputs.commit_id}}
TARGET_SPINE_SERVER: prescriptions.spineservices.nhs.uk
# LOG_LEVEL: INFO
LOG_RETENTION_DAYS: 731
# MARK_JIRA_RELEASED: true
# CREATE_PROD_RELEASE_NOTES: true
secrets:
CLOUD_FORMATION_DEPLOY_ROLE: ${{ secrets.PROD_CLOUD_FORMATION_DEPLOY_ROLE }}
DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
INT_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.INT_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE: ${{ secrets.PROD_CLOUD_FORMATION_CHECK_VERSION_ROLE }}
DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE: ${{ secrets.DEV_CLOUD_FORMATION_EXECUTE_LAMBDA_ROLE }}