Fix release workflow and temporarily disable Publish package action to PyPI

mit-aws · mit-aws · commit 0ab5d1027a30 · 2025-02-07T15:03:53.000-08:00
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -25,7 +25,7 @@ jobs:
           python-version: "3.9"
       - name: Install Poetry
         run: |
-          pip install poetry==1.4.0
+          pip install poetry
           poetry --version
       - name: Check if there is a parent commit
         id: check-parent-commit
@@ -34,7 +34,7 @@ jobs:
       - name: Detect and tag new version
         id: check-version
         if: steps.check-parent-commit.outputs.sha
-        uses: salsify/action-detect-and-tag-new-version@b1778166f13188a9d478e2d1198f993011ba9864 # v2.0.3
+        uses: salsify/action-detect-and-tag-new-version@v2
         with:
           version-command: |
             bash -o pipefail -c "poetry version | awk '{ print \$2 }'"
@@ -54,7 +54,7 @@ jobs:
         run: |
           poetry run pytest --cov=sns_extended_client test --cov-report term-missing
       - name: configure aws credentials
-        uses: aws-actions/configure-aws-credentials@5fd3084fc36e372ff1fff382a39b10d03659f355 # v2.2.0
+        uses: aws-actions/configure-aws-credentials@v4
         with:
           role-to-assume: ${{ vars.OIDC_ROLE_NAME }}
           role-session-name: publishrolesession
@@ -71,14 +71,14 @@ jobs:
           echo "token=$(aws secretsmanager get-secret-value --secret-id ${{ vars.PYPI_TOKEN_NAME }} | jq -r '.SecretString')" >> $GITHUB_OUTPUT
       - name: Publish package on TestPyPI
         if: "! steps.check-version.outputs.tag"
-        uses: pypa/gh-action-pypi-publish@f8c70e705ffc13c3b4d1221169b84f12a75d6ca8 # release/v1
+        uses: pypa/gh-action-pypi-publish@release/v1 # release/v1
         with:
           user: __token__
           password: ${{ steps.get-test-pypi-token.outputs.token }}
           repository_url: https://test.pypi.org/legacy/
-      - name: Publish package on PyPI
-        if: steps.check-version.outputs.tag
-        uses: pypa/gh-action-pypi-publish@f8c70e705ffc13c3b4d1221169b84f12a75d6ca8 # release/v1
-        with:
-          user: __token__
-          password: ${{ steps.get-pypi-token.outputs.token }}
+      # - name: Publish package on PyPI
+      #   if: steps.check-version.outputs.tag
+      #   uses: pypa/gh-action-pypi-publish@f8c70e705ffc13c3b4d1221169b84f12a75d6ca8 # release/v1
+      #   with:
+      #     user: __token__
+      #     password: ${{ steps.get-pypi-token.outputs.token }}
