Feat: finalize the GitHub Action - Githubissues

ashvardanian / tinysemver

Tiny Semantic Versioning (SemVer) library and GitHub CI, that doesn't depend on 300K lines of JavaScript code and fits in a single Python file

https://github.com/marketplace/actions/tinysemver

Apache License 2.0

17 stars 3 forks source link

Feat: finalize the GitHub Action #6

Closed grouville closed 3 months ago

grouville commented 3 months ago

Enhance TinySemVer: GitHub Release Creation & Security Improvements

This PR addresses current errors and adds new features to TinySemVer.

Key Changes

Automatic GitHub Release Creation
- New 'create-release' flag using GitHub CLI to generate the release
- Checks for CLI availability (especially for local runs)
Improved Security
- Use persist-credentials: false for checkout action. Context is detailed in commit message / documentation
- Added security considerations for PATs in README
Enhanced Error Handling
- Extended error logging for better debugging

Verification

Changes tested and working on fork: https://github.com/grouville/tinysemver

Security Note

Current setup is secure, with pipelines running only on main and releases.

Future Consideration

Potential enhancement of release notes generation.

@ashvardanian Please review, especially the release note process.

ashvardanian commented 3 months ago

Looks great! Will merge and try from the desktop in a couple of hours.