Create SECURITY.md #41

Workflow file for this run

	# This file is autogenerated by maturin v1.2.3
	# To update, run
	#
	# maturin generate-ci github
	#
	name: CI

	on:
	push:
	branches:
	- main
	tags:
	- '*'
	workflow_dispatch:
	pull_request:

	permissions:
	contents: read

	jobs:

	lint:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: '3.10'
	- run: pip install pre-commit
	name: Install pre-commit
	- run: pre-commit run --all
	name: Run pre-commit checks

	test:
	strategy:
	matrix:
	os: [ubuntu-latest, macos-latest, ] # windows-latest
	python_version: ['3.10', 'pypy-3.7', 'pypy-3.8', 'pypy-3.9', 'pypy-3.10']
	runs-on: ${{ matrix.os }}
	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: ${{ matrix.python_version }}
	- name: Setup dependencies
	run: pip install --upgrade pip pytest
	- name: Build wheels
	uses: PyO3/maturin-action@v1
	with:
	args: --release --out dist --interpreter ${{ matrix.python_version }}
	sccache: 'true'
	manylinux: auto
	- run: pip install dist/*.whl
	name: Install built package
	- run: \|
	rm -fR wassima
	pytest tests/
	name: Run tests

	linux:
	runs-on: ubuntu-latest
	needs:
	- test
	- lint
	strategy:
	matrix:
	target: [x86_64, x86, aarch64, armv7, s390x, ppc64le]
	python_version: ['3.10', 'pypy-3.7', 'pypy-3.8', 'pypy-3.9', 'pypy-3.10']
	manylinux: ['auto', 'musllinux_1_1']
	exclude:
	- manylinux: musllinux_1_1
	target: ppc64le
	- manylinux: musllinux_1_1
	target: s390x

	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: ${{ matrix.python_version }}
	- name: Build wheels
	uses: PyO3/maturin-action@v1
	with:
	target: ${{ matrix.target }}
	args: --release --out dist --interpreter ${{ matrix.python_version }}
	sccache: 'true'
	manylinux: ${{ matrix.manylinux }}
	- name: Upload wheels
	uses: actions/upload-artifact@v3
	with:
	name: wheels
	path: dist

	windows:
	needs:
	- test
	- lint
	runs-on: windows-latest
	strategy:
	matrix:
	target: [x64,]
	python_version: ['3.10', 'pypy-3.7', 'pypy-3.8', 'pypy-3.9', 'pypy-3.10']
	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: ${{ matrix.python_version }}
	architecture: ${{ matrix.target }}
	- name: Build wheels
	uses: PyO3/maturin-action@v1
	with:
	target: ${{ matrix.target }}
	args: --release --out dist
	sccache: 'true'
	- name: Upload wheels
	uses: actions/upload-artifact@v3
	with:
	name: wheels
	path: dist

	macos:
	needs:
	- test
	- lint
	runs-on: macos-latest
	strategy:
	matrix:
	target: [x86_64, aarch64]
	python_version: ['3.10', 'pypy-3.7', 'pypy-3.8', 'pypy-3.9', 'pypy-3.10']
	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: ${{ matrix.python_version }}
	- name: Build wheels
	uses: PyO3/maturin-action@v1
	with:
	target: ${{ matrix.target }}
	args: --release --out dist --interpreter ${{ matrix.python_version }}
	sccache: 'true'
	- name: Upload wheels
	uses: actions/upload-artifact@v3
	with:
	name: wheels
	path: dist

	sdist:
	needs:
	- test
	- lint
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	- name: Build sdist
	uses: PyO3/maturin-action@v1
	with:
	command: sdist
	args: --out dist
	- name: Upload sdist
	uses: actions/upload-artifact@v3
	with:
	name: wheels
	path: dist

	universal:
	needs:
	- test
	- lint
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v3
	- uses: actions/setup-python@v4
	with:
	python-version: '3.10'
	- name: Install dependencies
	run: python -m pip install build wheel
	- name: Use fallback pyproject.toml
	run: rm -f pyproject.toml && mv pyproject.fb.toml pyproject.toml
	- name: Build fallback wheel
	run: python -m build
	- name: Upload sdist
	uses: actions/upload-artifact@v3
	with:
	name: wheels
	path: dist/*.whl

	checksum:
	name: Compute hashes
	runs-on: ubuntu-latest
	needs: [linux, windows, macos, sdist, universal]
	if: "startsWith(github.ref, 'refs/tags/')"
	outputs:
	hashes: ${{ steps.compute.outputs.hashes }}
	steps:
	- uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
	- name: Download distributions
	uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
	with:
	name: wheels
	path: dist
	- name: Collected dists
	run: \|
	tree dist
	- name: Generate hashes
	id: compute # needs.checksum.outputs.hashes
	working-directory: ./dist
	run: echo "hashes=$(sha256sum * \| base64 -w0)" >> $GITHUB_OUTPUT

	provenance:
	needs: checksum
	if: "startsWith(github.ref, 'refs/tags/')"
	uses: slsa-framework/slsa-github-generator/.github/workflows/[email protected]
	permissions:
	actions: read
	id-token: write
	contents: write
	with:
	base64-subjects: ${{ needs.checksum.outputs.hashes }}
	upload-assets: true

	release:
	name: Release
	runs-on: ubuntu-latest
	if: "startsWith(github.ref, 'refs/tags/')"
	needs: provenance
	steps:
	- uses: actions/download-artifact@v3
	with:
	name: wheels
	- name: Publish to PyPI
	uses: PyO3/maturin-action@v1
	env:
	MATURIN_PYPI_TOKEN: ${{ secrets.PYPI_API_TOKEN }}
	with:
	command: upload
	args: --non-interactive --skip-existing *

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Create SECURITY.md #41

Workflow file

Create SECURITY.md #41

Jobs

Run details

Workflow file for this run