Skip to content

fix: merge publish into release workflow#184

Merged
piitaya merged 1 commit into
masterfrom
single_release_workflow
May 24, 2026
Merged

fix: merge publish into release workflow#184
piitaya merged 1 commit into
masterfrom
single_release_workflow

Conversation

@piitaya
Copy link
Copy Markdown
Collaborator

@piitaya piitaya commented May 24, 2026
edited
Loading

The default GITHUB_TOKEN doesn't trigger downstream workflows. That's why publish.yml didn't fire after release.yml created v3.1.1; the release: published event was suppressed.

Folding everything into a single workflow sidesteps the chain. Same job bumps the version, creates the GitHub release, builds, and publishes to PyPI. OIDC Trusted Publisher and Sigstore attestations stay in place.

Trade-off: the publish step now shares contents: write with the rest of the job instead of running in an isolated job. For a solo-maintainer repo the simpler structure is worth more than the extra isolation.

Once this merges, the next conventional commit (fix:, feat:, etc) will produce an attested release on PyPI, which should clear the HA core requirements bot.

@piitaya
fix: merge publish into release workflow
e54a49d 
The default GITHUB_TOKEN doesn't trigger downstream workflows, so the
release: published event from release.yml never fired publish.yml.
Folding both into a single workflow sidesteps the chain entirely.

PyPI publishing still uses Trusted Publisher (OIDC) with Sigstore
attestations, just inside the same job that bumps the version and
creates the GitHub release.
@piitaya piitaya merged commit ce57992 into master May 24, 2026
9 checks passed
@piitaya piitaya deleted the single_release_workflow branch May 24, 2026 13:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@piitaya