From b9bd9948039496852968b5e13dc0165dcc2a2bef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E7=85=8E=E9=A5=BC=E6=9E=9C=E5=AD=90=E5=8D=B7=E9=B2=A8?=
 =?UTF-8?q?=E9=B1=BC=E8=BE=A3=E6=A4=92?= <yuaotian1998@163.com>
Date: Mon, 30 Dec 2024 19:03:03 +0800
Subject: [PATCH] chore: enhance auto-tag workflow with additional checks and
 Go environment setup

- Added a configuration check step for GoReleaser to ensure the presence of the configuration file before execution.
- Introduced a step to set up the Go workspace environment, improving the build process.
- Implemented dependency checks to verify and download Go modules, enhancing reliability.
- Modified the GoReleaser steps to handle cases with and without GPG signing, improving flexibility in the release process.
- Enhanced the verification step to include checks for the executability of generated binaries, ensuring successful builds.
---
 .github/workflows/auto-tag-release.yml | 82 ++++++++++++++++++++++++--
 1 file changed, 78 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/auto-tag-release.yml b/.github/workflows/auto-tag-release.yml
index 536b0b3..4c9c7b1 100644
--- a/.github/workflows/auto-tag-release.yml
+++ b/.github/workflows/auto-tag-release.yml
@@ -128,8 +128,9 @@ jobs:
       - name: Import GPG key
         id: import_gpg
         if: |
-          startsWith(github.ref, 'refs/tags/v') || 
-          (success() && steps.get_latest_tag.outputs.version != '')
+          (startsWith(github.ref, 'refs/tags/v') || 
+          (success() && steps.get_latest_tag.outputs.version != '')) &&
+          secrets.GPG_PRIVATE_KEY != ''
         uses: crazy-max/ghaction-import-gpg@v5
         with:
           gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
@@ -139,10 +140,36 @@ jobs:
           git_commit_gpgsign: true
           git_tag_gpgsign: true
 
+      # 在 Run GoReleaser 之前添加配置检查步骤
+      - name: Check GoReleaser config
+        run: |
+          if [ ! -f ".goreleaser.yml" ] && [ ! -f ".goreleaser.yaml" ]; then
+            echo "::error::GoReleaser configuration file not found"
+            exit 1
+          fi
+
+      # 添加 Go 工作目录设置
+      - name: Set Go Work Directory
+        run: |
+          echo "GOPATH=${{ github.workspace }}/go" >> $GITHUB_ENV
+          echo "${{ github.workspace }}/go/bin" >> $GITHUB_PATH
+
+      # 添加依赖检查步骤
+      - name: Check Dependencies
+        run: |
+          go mod verify
+          go mod download
+          # 如果使用 vendor 模式，则执行以下命令
+          if [ -d "vendor" ]; then
+            go mod vendor
+          fi
+
+      # 修改 GoReleaser 步骤的环境变量
       - name: Run GoReleaser
         if: |
-          startsWith(github.ref, 'refs/tags/v') || 
-          (success() && steps.get_latest_tag.outputs.version != '')
+          (startsWith(github.ref, 'refs/tags/v') || 
+          (success() && steps.get_latest_tag.outputs.version != '')) &&
+          (steps.import_gpg.outcome == 'success' || steps.import_gpg.outcome == 'skipped')
         uses: goreleaser/goreleaser-action@v4
         with:
           distribution: goreleaser
@@ -152,12 +179,40 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           GPG_FINGERPRINT: ${{ steps.import_gpg.outputs.fingerprint }}
           VERSION: ${{ steps.get_latest_tag.outputs.version }}
+          CGO_ENABLED: 0
+          GOFLAGS: -mod=vendor
+          GOPATH: ${{ github.workspace }}/go
+          GOROOT: ${{ env.GOROOT }}
+          GOCACHE: ${{ github.workspace }}/.cache/go-build
+          GOMODCACHE: ${{ github.workspace }}/go/pkg/mod
+
+      # 修改无 GPG 的 GoReleaser 步骤
+      - name: Run GoReleaser without GPG
+        if: |
+          (startsWith(github.ref, 'refs/tags/v') || 
+          (success() && steps.get_latest_tag.outputs.version != '')) &&
+          secrets.GPG_PRIVATE_KEY == ''
+        uses: goreleaser/goreleaser-action@v4
+        with:
+          distribution: goreleaser
+          version: latest
+          args: release --clean --timeout 60m --skip-sign
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          VERSION: ${{ steps.get_latest_tag.outputs.version }}
+          CGO_ENABLED: 0
+          GOFLAGS: -mod=vendor
+          GOPATH: ${{ github.workspace }}/go
+          GOROOT: ${{ env.GOROOT }}
+          GOCACHE: ${{ github.workspace }}/.cache/go-build
+          GOMODCACHE: ${{ github.workspace }}/go/pkg/mod
 
       - name: Set Release Version
         if: startsWith(github.ref, 'refs/tags/v')
         run: |
           echo "VERSION=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV
 
+      # 改进验证步骤
       - name: Verify Release
         if: |
           startsWith(github.ref, 'refs/tags/v') || 
@@ -168,6 +223,25 @@ jobs:
             echo "::error::Release artifacts not found"
             exit 1
           fi
+          # 验证生成的二进制文件
+          for file in dist/cursor-id-modifier_*; do
+            if [ -f "$file" ]; then
+              echo "Verifying: $file"
+              if [[ "$file" == *.exe ]]; then
+                # Windows 二进制文件检查
+                if ! [ -x "$file" ]; then
+                  echo "::error::$file is not executable"
+                  exit 1
+                fi
+              else
+                # Unix 二进制文件检查
+                if ! [ -x "$file" ]; then
+                  echo "::error::$file is not executable"
+                  exit 1
+                fi
+              fi
+            fi
+          done
 
       - name: Notify on failure
         if: failure()