Skip to content

patrick-kidger/action_update_python_project

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
.github
.github
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
action.yml
action.yml
 
 

Repository files navigation

Update Python project:
Check version / Test / git tag / GitHub Release / Deploy to PyPI

This is a GitHub Action to automate deployment of a new version of a Python project.

This action will:

  • Check out your code;
  • Check the version of your code against the latest version available on PyPI;
  • If your code has a newer version:
    • It will build both an sdist and a wheel;
    • It will run tests against both;
    • If both pass:
      • An annotated git tag is added;
      • A GitHub Release is made
      • The sdist and wheel are both uploaded to PyPI.

Usage

Requires a Linux runner.

Assumes that your project uses a pyproject.toml file; the project.name and project.version fields will be accessed. In particular the latter must not be dynamic. (You should put __version__ = importlib.metadata.version(your_package_name) in your top-level __init__.py file to get the version at runtime.)

You should go to <your repository> > Settings > Actions > General > Workflow permissions and enable Read and write permissions so that releases can be made to GitHub.

Example

name: Release

on:
  push:
    branches:
      - main

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Release
        uses: patrick-kidger/action_update_python_project@v7
        with:
            python-version: "3.11"
            test-script: |
                cp -r ${{ github.workspace }}/test ./test
                cp ${{ github.workspace }}/pyproject.toml ./pyproject.toml
                uv sync --extra dev --no-install-project --inexact
                uv run --no-sync pytest
            pypi-token: ${{ secrets.pypi_token }}
            github-user: your-username-here
            github-token: ${{ github.token }}  # automatically created token

This will run every time the main branch is updated. If the version has updated, then it will trigger things as described above.

Options

The following are mandatory arguments (for passing to with) that must be specified:

  • python-version: What Python version to run everything with. Must be at least 3.11. Set to false to skip this (and use whatever Python you already have on the system).
  • test-script: What test script to run. Will execute in a precreated uv venv, e.g. commands often look like uv sync --foo.
  • pypi-token: What password or token to use when pushing to PyPI. Set to false to use some other already-configured authentication mechanism, e.g. from a previous job that runs gcloud auth.
  • github-user: What GitHub user to use when authenticating the release with GitHub.
  • github-token: What GitHub token to use when authenticating the release with GitHub.

The following are optional arguments that come with a default value:

  • pypi-user: What username to use when pushing to PyPI. Defaults to '__token__', corresponding to the use of a PyPI token.
  • pypi-repository-url: What PyPI repository to use. Defaults to 'https://pypi.org/'
  • checkout: Whether to check out the repository. Set to false to disable this if you've already done this in an earlier step.
  • allow-first-release: Whether to allow a first release to PyPI. Defaults to false, to avoid accidentally pushing code publicly until you're ready. (We generally recommend pushing a first release manually when you're ready, but this flag can be useful if you're pushing to an internal PyPI repository that only your CD has authentication for.)

Notes on test-script:

  • It runs in a temporary directory. Thus you will need to copy your tests over as in the example above. This is to avoid spuriously passing tests: it can happen that files have been incorrectly left out of the sdist/wheel, but are still available through the repository itself.
  • Any " characters must be escaped as \".
  • The exit code of this script is used to determine whether the tests count as having passed or not. 0 is a pass; everything else is a failure.
  • The code from your library will have been installed into a fresh virtual environment at ./.venv using uv pip install. The uv sync command in the example above is the appropriate invocation to install the dev extras from copied pyproject.toml, without also overwriting the existing install, and without removing the existing install.

FAQ

I'm getting a random/spurious failure.

If you call this action shortly (<5 minutes?) after it triggers (and has pushed an update to PyPI) then sometimes the second invocation won't see that the updated version exists yet, so it will think that it has a new version -- and will attempt to start the update process itself. This should just be a harmless failure.

About

Github Action to: Check version / Test / git tag / GitHub Release / Deploy to PyPI

Topics

python pypi actions action github-actions

Resources

Readme

License

Apache-2.0 license
Activity

Stars

18 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases 6

v7 Latest
Jan 27, 2025
+ 5 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Contributors 2

  •  
  •