#!/bin/bash #================================================= # PACKAGE UPDATING HELPER #================================================= # This script is meant to be run by GitHub Actions # The YunoHost-Apps organisation offers a template Action to run this script periodically # Since each app is different, maintainers can adapt its contents so as to perform # automatic actions when a new upstream release is detected. # Remove this exit command when you are ready to run this Action #exit 1 #================================================= # FETCHING LATEST RELEASE AND ITS ASSETS #================================================= # Fetching information current_version=$(cat manifest.toml | tomlq -j '.version|split("~")[0]') repo=$(cat manifest.toml | tomlq -j '.upstream.code|split("https://github.com/")[1]') # Some jq magic is needed, because the latest upstream release is not always the latest version (e.g. security patches for older versions) version=$(curl --silent "https://api.github.com/repos/$repo/releases" | jq -r '.[] | select( .prerelease != true ) | .tag_name' | sort -V | tail -1) assets=($(curl --silent "https://api.github.com/repos/$repo/releases" | jq -r '[ .[] | select(.tag_name=="'$version'").assets[].browser_download_url ] | join(" ") | @sh' | tr -d "'")) # Later down the script, we assume the version has only digits and dots # Sometimes the release name starts with a "v", so let's filter it out. # You may need more tweaks here if the upstream repository has different naming conventions. if [[ ${version:0:1} == "v" || ${version:0:1} == "V" ]] then version=${version:1} fi # Setting up the environment variables echo "Current version: $current_version" echo "Latest release from upstream: $version" echo "VERSION=$version" >> $GITHUB_ENV echo "REPO=$repo" >> $GITHUB_ENV # For the time being, let's assume the script will fail echo "PROCEED=false" >> $GITHUB_ENV # Proceed only if the retrieved version is greater than the current one if ! dpkg --compare-versions "$current_version" "lt" "$version" then echo "::warning ::No new version available" exit 0 # Proceed only if a PR for this new version does not already exist elif git ls-remote -q --exit-code --heads https://github.com/$GITHUB_REPOSITORY.git ci-auto-update-v$version then echo "::warning ::A branch already exists for this update" exit 0 fi # Each release can hold multiple assets (e.g. binaries for different architectures, source code, etc.) echo "${#assets[@]} available asset(s)" #================================================= # UPDATE SOURCE FILES #================================================= # Here we use the $assets variable to get the resources published in the upstream release. # Here is an example for Grav, it has to be adapted in accordance with how the upstream releases look like. # Let's loop over the array of assets URLs for asset_url in ${assets[@]} do filename=${asset_url##*/} echo "Handling asset $filename at $asset_url" # Assign the asset to a source file in conf/ directory # Here we base the source file name upon a unique keyword in the assets url (admin vs. update) # Leave $src empty to ignore the asset case $asset_url in *"scrutiny-web-frontend.tar.gz"*) #arch="" ;; *"scrutiny-web-linux-amd64"*) #arch="amd64" ;; *"scrutiny-web-linux-arm64"*) #arch="arm64" ;; *"scrutiny-collector-metrics-linux-amd64"*) #arch="amd64" ;; *"scrutiny-collector-metrics-linux-arm64"*) #arch="arm64" ;; *) filename="" ;; esac # If $src is not empty, let's process the asset if [ ! -z "$filename" ] then # Create the temporary directory tempdir="$(mktemp -d)" # Download sources and calculate checksum curl --silent -4 -L $asset_url -o "$tempdir/$filename" checksum=$(sha256sum "$tempdir/$filename" | head -c 64) # Delete temporary directory rm -rf $tempdir #DOES NOT WORK BECAUSE IT REORDER ALL THE MANIFEST IN A STRANGE WAY # Rewrite sources in manifest.toml # if [ -z "$arch" ] # then # echo "$(tomlq --toml-output --slurp --indent 4 ".[] | .resources.sources.$src.url = \"$asset_url\"" manifest.toml)" > manifest.toml # echo "$(tomlq --toml-output --slurp --indent 4 ".[] | .resources.sources.$src.sha256 = \"$checksum\"" manifest.toml)" > manifest.toml # else # echo "$(tomlq --toml-output --slurp --indent 4 ".[] | .resources.sources.$src.$arch.url = \"$asset_url\"" manifest.toml)" > manifest.toml # echo "$(tomlq --toml-output --slurp --indent 4 ".[] | .resources.sources.$src.$arch.sha256 = \"$checksum\"" manifest.toml)" > manifest.toml # fi # Get extension if [[ $filename == *.tar.gz ]] then extension="tar.gz" subdir=true extract=true else extension="binary" subdir="" extract=false fi # Rewrite source file cat < conf/src/$filename.src SOURCE_URL=$asset_url SOURCE_SUM=$checksum SOURCE_SUM_PRG=sha256sum SOURCE_FORMAT=$extension SOURCE_IN_SUBDIR=$subdir SOURCE_EXTRACT=$extract EOT echo "... conf/src/$filename.src updated" else echo "... asset ignored" fi done #================================================= # SPECIFIC UPDATE STEPS #================================================= # Any action on the app's source code can be done. # The GitHub Action workflow takes care of committing all changes after this script ends. #================================================= # GENERIC FINALIZATION #================================================= # Replace new version in manifest sed --in-place "s/^version = .*/version = \"$version~ynh1\"/" manifest.toml #DOES NOT WORK BECAUSE IT REORDER ALL THE MANIFEST IN A STRANGE WAY #echo "$(tomlq --toml-output --slurp --indent 4 ".[] | .version = \"$version~ynh1\"" manifest.toml)" > manifest.toml # No need to update the README, yunohost-bot takes care of it # The Action will proceed only if the PROCEED environment variable is set to true echo "PROCEED=true" >> $GITHUB_ENV exit 0