Skip to content

Split CI workflows into 'test' and 'deploy'#367

Merged
bluetech merged 7 commits intopytest-dev:mainfrom
nicoddemus:split-workflows
May 1, 2026
Merged

Split CI workflows into 'test' and 'deploy'#367
bluetech merged 7 commits intopytest-dev:mainfrom
nicoddemus:split-workflows

Conversation

@nicoddemus
Copy link
Copy Markdown
Member

@nicoddemus nicoddemus commented Nov 15, 2022

This makes them easier to maintain and follows how other pytest repositories have evolved.

Also made some changes to the deploy workflow:

  • Using Python 3.10
  • Using build package instead of calling python setup.py

@nicoddemus nicoddemus changed the title Split CI workflows in test and deploy Split CI workflows into 'test' and 'deploy' Nov 15, 2022
nicoddemus
nicoddemus commented Nov 15, 2022
View reviewed changes
Comment thread .github/workflows/deploy.yml
tags:
- "*"

permissions: {}
Copy link
Copy Markdown
Member Author

@nicoddemus nicoddemus Nov 15, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copied from pytest

@RonnyPfannschmidt
Copy link
Copy Markdown
Member

RonnyPfannschmidt commented Nov 15, 2022

im a bit unhappy with the splitting, i'd prefer if we started to install from the build artifacts for testing (like i have done for some of my projects)

@nicoddemus
Copy link
Copy Markdown
Member Author

nicoddemus commented Nov 15, 2022

im a bit unhappy with the splitting, i'd prefer if we started to install from the build artifacts for testing (like i have done for some of my projects)

What do you mean? IIUC, you mean to test the package instead of source, but isn't that what tox does for us?

Or do you mean to generate a single artifact, test over it, and then deploy that same artifact?

@nicoddemus
Copy link
Copy Markdown
Member Author

nicoddemus commented Nov 15, 2022
edited
Loading

Happy to try out something like that, can you point to a project to use as reference?

@RonnyPfannschmidt
Copy link
Copy Markdown
Member

RonnyPfannschmidt commented Nov 15, 2022

https://github.com/RonnyPfannschmidt/pytest-manual-marker/blob/main/.github/workflows/pythonapp.yml

@RonnyPfannschmidt
Copy link
Copy Markdown
Member

RonnyPfannschmidt commented Nov 15, 2022

@nicoddemus i'd love to extract this into something reusable, but currently im a bit tied up with other priorities

nicoddemus and others added 7 commits May 1, 2026 11:25
@nicoddemus @bluetech
Split CI workflows into 'test' and 'deploy'
ac70302 
This makes them easier to maintain and follows how other pytest repositories have evolved.
@bluetech
ci: tighten job permissions
63470b3
@bluetech
ci: don't persist credentials from checkout
85173a0 
Not needed, improves security.
@bluetech
ci: enable github build provenance attestation
fbe42b5 
See https://github.com/hynek/build-and-inspect-python-package#inputs
Following pytest.
@bluetech
dependabot: add 7 day cooldown period
bbe0b33 
As suggested by zizmor.

https://docs.zizmor.sh/audits/#dependabot-cooldown
@bluetech
ci: pin github actions
6a422b7 
Fix https://docs.zizmor.sh/audits/#unpinned-uses.

Used `uvx gha-update`: https://github.com/davidism/gha-update
@bluetech
ci: fix zizmor template-injection suggestions
00ba431 
Not actually vulnerable, but better use the safe pattern anyway.

https://docs.zizmor.sh/audits/#template-injection
@bluetech bluetech force-pushed the split-workflows branch from e1227ad to 00ba431 Compare May 1, 2026 08:49
@bluetech
Copy link
Copy Markdown
Member

bluetech commented May 1, 2026

Rebased and also brought over some other improvements from pytest, and some zizmor fixes.

@bluetech bluetech merged commit a469596 into pytest-dev:main May 1, 2026
18 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bluetech bluetech bluetech approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@nicoddemus @RonnyPfannschmidt @bluetech