search

microsoft / sarif-tools

A set of Python command line tools for working with SARIF files produced by code analysis tools
MIT License
91 stars 21 forks source link

Release and build pipelines #65

Closed debonte closed 2 months ago

debonte commented 2 months ago

Adds an AzDO pipeline, Sarif-Tools-Release that can publish to PyPi using a service connection so no PAT is required.

The first successful run, publishing 3.0.2, is here.

With the introduction of this pipeline, the release process will be:

  1. Update version in pyproject.toml and __init__.py.
  2. Update changelog.
  3. Run pipeline against main
  4. When the pipeline pauses for validation, download the wheel from the GitHub Release assets and test it.
  5. When done testing, press the "Review" button on the pipeline view. Press "Resume" if the tests passed, otherwise press "Reject" to abort publishing.
  6. Update the draft GitHub Release description with changelog info.
  7. Publish GitHub Release.

I documented this on a new Release Process wiki page.

I also added a CI build pipeline as part of this -- Sarif-Tools-Build. I was planning to use this for PR builds as well, but realized that that doesn't make sense since the results wouldn't be visible to external users. I'll create a GitHub Action for that.