name: Publish to crates.io
on:
push:
tags: ["v*"]
workflow_dispatch:
inputs:
release_tag:
description: "Release tag (e.g., v1.0.0)"
required: true
type: string
jobs:
build:
runs-on: ${{ matrix.os }}
strategy:
matrix:
include:
- os: macos-latest
target: x86_64-apple-darwin
- os: macos-latest
target: aarch64-apple-darwin
- os: ubuntu-latest
target: x86_64-unknown-linux-gnu
- os: ubuntu-latest
target: x86_64-unknown-linux-musl
- os: windows-latest
target: x86_64-pc-windows-msvc
steps:
- uses: actions/checkout@v5
- uses: dtolnay/rust-toolchain@stable
with:
targets: ${{ matrix.target }}
- if: matrix.target == 'x86_64-unknown-linux-musl'
run: sudo apt-get update && sudo apt-get install -y musl-tools
- run: cargo build --release --target ${{ matrix.target }}
- run: |
for file in target/${{ matrix.target }}/release/whatwaf*; do
mv "$file" "whatwaf-${{ matrix.target }}${file##*/release/whatwaf}"
done
shell: bash
- uses: actions/upload-artifact@v4
with:
name: whatwaf-${{ matrix.target }}
path: whatwaf-${{ matrix.target }}*
release:
runs-on: ubuntu-latest
needs: build
permissions:
contents: write
steps:
- uses: actions/checkout@v5
- uses: actions/download-artifact@v5
with:
path: ./artifacts
- run: |
find ./artifacts -type f -exec mv {} . \;
gh release create ${{ github.ref_name || inputs.release_tag }} whatwaf-* --generate-notes
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
publish:
runs-on: ubuntu-latest
needs: release
permissions:
id-token: write
steps:
- uses: actions/checkout@v5
- uses: rust-lang/crates-io-auth-action@v1
id: auth
- run: cargo publish
env:
CARGO_REGISTRY_TOKEN: ${{ steps.auth.outputs.token }}