diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 98ee9568..b2d2e938 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,18 +1,36 @@ -name: 'CI' +name: CI + +permissions: {} on: pull_request: push: + branches: + - alpha + - beta + - main + - master + - renovate/** jobs: + ci-optimization: + name: CI optimization + uses: dargmuesli/github-actions/.github/workflows/ci-optimization.yml@714a68188444d710ffa3e9f35a05f6a9d420931d # 3.2.0 + permissions: + pull-requests: read build: - name: DargStack rgen - uses: dargmuesli/github-actions/.github/workflows/dargstack-rgen.yml@2b47b35b82df04152c34ae042bd011dd83f28ffd # 2.8.0 + needs: ci-optimization + if: needs.ci-optimization.outputs.continue == 'true' + name: dargstack rgen + uses: dargmuesli/github-actions/.github/workflows/dargstack-rgen.yml@714a68188444d710ffa3e9f35a05f6a9d420931d # 3.2.0 + permissions: + contents: read release-semantic: needs: build name: Semantic Release - uses: dargmuesli/github-actions/.github/workflows/release-semantic.yml@2b47b35b82df04152c34ae042bd011dd83f28ffd # 2.8.0 + uses: dargmuesli/github-actions/.github/workflows/release-semantic.yml@714a68188444d710ffa3e9f35a05f6a9d420931d # 3.2.0 permissions: contents: write + id-token: write secrets: PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }} diff --git a/.github/workflows/release-schedule.yml b/.github/workflows/release-schedule.yml index 32b718d0..13ef2b34 100644 --- a/.github/workflows/release-schedule.yml +++ b/.github/workflows/release-schedule.yml @@ -8,7 +8,7 @@ on: jobs: release-schedule: name: 'Release: Scheduled' - uses: dargmuesli/github-actions/.github/workflows/release-schedule.yml@2b47b35b82df04152c34ae042bd011dd83f28ffd # 2.8.0 + uses: dargmuesli/github-actions/.github/workflows/release-schedule.yml@714a68188444d710ffa3e9f35a05f6a9d420931d # 3.2.0 secrets: PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }} with: