yq/.github/workflows/release.yml
Chen Xiong 91c9af7583 security: update Go version to 1.24.4 to fix CVE-2025-22874
- Updated go.mod to require Go 1.24.4 (minimum version)
- Updated GitHub workflows to use Go 1.24.4 instead of ^1.20
- Dockerfiles already using Go 1.24.4 (no changes needed)
- Fixes vulnerability CVE-2025-22874 in Go versions < 1.23.10, 1.24.4
2025-06-24 10:33:26 +08:00

52 lines
1.3 KiB
YAML

name: Release YQ
on:
push:
tags:
- 'v4.*'
- 'draft-*'
jobs:
publishGitRelease:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version: '1.24.4'
check-latest: true
- name: Compile man page markup
id: gen-man-page-md
run: |
./scripts/generate-man-page-md.sh
- name: Get the version
id: get_version
run: echo "VERSION=${GITHUB_REF##*/}" >> "${GITHUB_OUTPUT}"
- name: Generate man page
uses: docker://pandoc/core:2.14.2
id: gen-man-page
with:
args: >-
--standalone
--to man
--variable=title:"YQ"
--variable=section:"1"
--variable=header:"yq (https://github.com/mikefarah/yq/) version ${{ steps.get_version.outputs.VERSION }}"
--variable=author:"Mike Farah"
--output=yq.1
man.md
- name: Cross compile
run: |
sudo apt-get install rhash -y
go install github.com/goreleaser/goreleaser/v2@latest
./scripts/xcompile.sh
- name: Release
uses: softprops/action-gh-release@v1
with:
files: build/*
draft: true
fail_on_unmatched_files: true