Google Git
Sign in
apache/tooling-actions

Apache Trusted Release Actions

Mirrored from https://github.com/apache/tooling-actions.git
Clone this repo:

Branches

  1. 5242d26 Rename slug to mavencentral by Alastair McFarlane · 2 days ago main
  2. 2ef48c9 Poll Central API for status and report errors by Alastair McFarlane · 2 days ago
  3. dc31171 Take out profiles, they created an issue by Alastair McFarlane · 2 days ago
  4. 4d9e7b8 Rename central ID by Alastair McFarlane · 2 days ago
  5. 401ed79 Try redirecting to Central by Alastair McFarlane · 2 days ago

ASF Tooling Actions

This repository contains GitHub Actions written and maintained by the Apache Software Foundation (ASF) Tooling team.

Note: ASF Tooling is an operational team. Unlike Project Management Committees (PMCs), we do not make Board-approved releases.

If you are looking for infrastructure-related actions, please visit ASF Infrastructure Actions instead.

Versioning Policy

We do not tag versions. For security and stability, you must refer to every action by its pinned commit hash (SHA). Do not use @main or @v1.

Available Actions

apache/tooling-actions/upload-to-atr

Status: Experimental

Upload your artifacts to the Apache Trusted Release (ATR) system using OIDC and an ephemeral SSH key.

Who is this for?

If you are a PMC Release Manager testing the ATR, we need your help testing this action. Please report any issues you encounter.

Usage Example

Add the following to your workflow .yml file. Ensure you replace <COMMIT_HASH> with the full SHA of the specific commit you wish to use.

jobs:
  release:
    runs-on: ubuntu-latest
    permissions:
      id-token: write # Required for OIDC
      contents: read
    steps:
      - name: Checkout code
        uses: actions/checkout@<COMMIT_HASH>

      - name: Upload to ATR
        uses: apache/tooling-actions/upload-to-atr@<COMMIT_HASH>
        with:
          # Add specific inputs here that are required by the action
          # project: example
          # version: ${{ github.ref_name }}