This is the source of many, many bugs in software that is shipped, and many many regressions as "release" branches are reused inappropriately.
One day my manager asked me if I could cherry-pick a large amount of code from master into their Frankenstein "release" branch. I thought about it for a minute trying to figure out a polite way to say "you all are fucking insane, you know?" before settling on "okay, I can do that but if this breaks it's on you."
I'm pretty sure if you have releases and they involve half a dozen "hot fixes" then you're doing CI/CD wrong. But what do I know. Everyone is still drinking that agile kool-aid.
build-job:
script:
- ./build-dist-artifacts.sh
artifacts:
paths:
- dist/*
Large binary files may consume lots of storage, and need regular cleanup. `expire_in` allows to control the cleanup in GitLab. For older builds, you can always retry the build job/pipeline, and generate artifacts on demand, i.e. when debugging a problem between older release versions.
This is helpful for tarballs, also RPM/DEB packages, etc - anything which requires time and knowledge to build manually on a local development environment. With GitLab API access, you can integrate the job artifacts into more automated workflows or custom index websites of your choice, leaving the storage as SSoT in GitLab.
https://docs.gitlab.com/ee/api/job_artifacts.html#download-a...
The job artifacts can be put into a cloud object storage, like S3, too. https://docs.gitlab.com/ee/administration/job_artifacts.html...
Last but but not least: If you prefer building your own file index based on smaller sized artifacts, you could use GitLab Pages and follow this post: https://forum.gitlab.com/t/how-to-allow-directory-listing-on... to publish the artifacts and create an html index.
I've done a similar approach to publish custom code coverage reports in CI/CD in a past workshop: https://gitlab.com/gitlab-de/workshops/ci-monitoring-webcast... - can be handy for reviews and QA checks too.
//.github/workflows/main.yml
name: Main
on:
push:
branches: [ main ]
pull_request:
branches: [ main ]
jobs:
build:
runs-on: self-hosted
steps:
- uses: actions/checkout@v2
- name: Set up Go
uses: actions/setup-go@v2
with:
go-version: 1.16
- name: Test
run: go test -v ./...
- name: Build Discover Command
run: go build -o discover cmd/discover/main.go
- name: Upload Build Artifacts
uses: actions/upload-artifact@v2
with:
name: discover
path: discover
//.github/workflows/release.yml
name: Release
on:
release:
types:
- published
jobs:
build:
runs-on: self-hosted
env:
GOPRIVATE: "github.com/OUR-ORG-NAME/\*"
NAME: deploy-${{ github.event.release.tag_name }}-${{ matrix.GOOS }}-${{ matrix.GOARCH }}${{ matrix.EXTENSION }}
strategy:
matrix:
GOOS: [ windows, linux, darwin ]
GOARCH: [ amd64, 386 ]
exclude:
# excludes 32bit on macOS
- GOOS: darwin
GOARCH: 386
include:
# includes a new variable for windows builds
- GOOS: windows
EXTENSION: ".exe"
steps:
# Runs a single command using the runners shell
- name: Print Info
run: echo '${{ toJSON(github.event.release) }}'
- uses: actions/checkout@v2
- name: Set up Go
uses: actions/setup-go@v2
with:
go-version: 1.16
# From https://github.com/mvdan/github-actions-golang/blob/master/README.md
- name: Configure git for private modules
run: |
git config --global \
url."https://${{ secrets.GHUSER }}:${{ secrets.GHTOKEN }}@github.com".insteadOf \
"https://github.com"
- name: Build ${{ env.NAME }} Command
run: |
GOOS=${{ matrix.GOOS }} \
GOARCH=${{ matrix.GOARCH }} \
go build -o ${{ env.NAME }} cmd/main.go
- name: Upload Release Asset - ${{ matrix.GOOS }} / ${{ matrix.GOARCH }}
uses: actions/upload-release-asset@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
upload_url: ${{ github.event.release.upload_url }}
asset_path: ./${{ env.NAME }}
asset_name: ${{ env.NAME }}
asset_content_type: application/octet-stream