adding promote.yaml

cjm715 · cjm715 · commit 340ceb28992a · 2025-09-02T13:43:45.000-07:00
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -8,35 +8,21 @@ on:
   workflow_call:
     inputs:
       is_experimental:
-        description: "Create an experimental build (use latest constants)"
+        description: "Create an experimental build"
         type: boolean
         default: false
       onnxruntime_branch:
         type: string
         default: "main"
-      compiler_version:
-        default: "stable"
-        type: string
-      constants_version:
-        default: "stable"
-        type: string
   workflow_dispatch:
     inputs:
       is_experimental:
-        description: "Create an experimental build (use latest constants)"
+        description: "Create an experimental build"
         type: boolean
         default: false
       onnxruntime_branch:
         type: string
         default: "main"
-      compiler_version:
-        description: "compiler_version: stable, experimental or latest (unused by ONNX Runtime)"
-        default: "stable"
-        type: string
-      constants_version:
-        description: "constants_version: stable, latest or a branch name (unused by ONNX Runtime)"
-        default: "stable"
-        type: string
   push:
     branches:
       - main
diff --git a/.github/workflows/promote.yaml b/.github/workflows/promote.yaml
@@ -0,0 +1,110 @@
+name: Promote ONNX Runtime
+
+on:
+  workflow_call:
+    inputs:
+      stable_promotion:
+        required: true
+        type: boolean
+
+jobs:
+  promote:
+    if: inputs.stable_promotion
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      actions: read
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Get latest experimental release
+        id: get_experimental
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          # Get the latest release (should be experimental)
+          latest_release=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" \
+            https://api.github.com/repos/${{ github.repository }}/releases \
+            | jq -r '.[0]')
+
+          release_id=$(echo "$latest_release" | jq -r '.id')
+          release_tag=$(echo "$latest_release" | jq -r '.tag_name')
+
+          echo "experimental_release_id=$release_id" >> $GITHUB_ENV
+          echo "experimental_tag=$release_tag" >> $GITHUB_ENV
+          echo "Found experimental release: $release_tag (ID: $release_id)"
+
+      - name: Download experimental artifacts
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          # Download all assets from the experimental release
+          mkdir -p stable_artifacts
+
+          assets=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" \
+            https://api.github.com/repos/${{ github.repository }}/releases/${{ env.experimental_release_id }}/assets \
+            | jq -r '.[] | .url')
+
+          for asset_url in $assets; do
+            asset_name=$(curl -s -H "Authorization: Bearer $GITHUB_TOKEN" "$asset_url" | jq -r '.name')
+            echo "Downloading $asset_name..."
+            curl -L -H "Authorization: Bearer $GITHUB_TOKEN" \
+              -H "Accept: application/octet-stream" \
+              "$asset_url" -o "stable_artifacts/$asset_name"
+          done
+
+      - name: Create stable release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          # Create stable tag and release
+          stable_tag="stable"
+
+          # Delete existing stable tag/release if it exists
+          curl -s -X DELETE \
+            -H "Authorization: Bearer $GITHUB_TOKEN" \
+            "https://api.github.com/repos/${{ github.repository }}/git/refs/tags/$stable_tag" || true
+
+          # Get current commit SHA
+          commit_sha=$(git rev-parse HEAD)
+
+          # Create new stable tag
+          curl -X POST \
+            -H "Authorization: Bearer $GITHUB_TOKEN" \
+            -H "Accept: application/vnd.github.v3+json" \
+            https://api.github.com/repos/${{ github.repository }}/git/refs \
+            -d "{\"ref\": \"refs/tags/$stable_tag\", \"sha\": \"$commit_sha\"}"
+
+          # Create stable release
+          release_response=$(curl -X POST \
+            -H "Authorization: Bearer $GITHUB_TOKEN" \
+            -H "Accept: application/vnd.github.v3+json" \
+            https://api.github.com/repos/${{ github.repository }}/releases \
+            -d "{
+              \"tag_name\": \"$stable_tag\",
+              \"name\": \"Stable Release\",
+              \"body\": \"Stable ONNX Runtime release promoted from ${{ env.experimental_tag }}\",
+              \"draft\": false,
+              \"prerelease\": false
+            }")
+
+          stable_release_id=$(echo "$release_response" | jq -r '.id')
+          echo "stable_release_id=$stable_release_id" >> $GITHUB_ENV
+
+      - name: Upload artifacts to stable release
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          for file in stable_artifacts/*; do
+            if [ -f "$file" ]; then
+              filename=$(basename "$file")
+              echo "Uploading $filename to stable release..."
+
+              curl -X POST \
+                -H "Authorization: Bearer $GITHUB_TOKEN" \
+                -H "Content-Type: application/octet-stream" \
+                --data-binary @"$file" \
+                "https://uploads.github.com/repos/${{ github.repository }}/releases/${{ env.stable_release_id }}/assets?name=$filename"
+            fi
+          done
