[llvm] [libclang/python][ci] Add release Clang Python Bindings CI workflow (PR #168234)
Aiden Grossman via llvm-commits
llvm-commits at lists.llvm.org
Mon Dec 1 07:42:07 PST 2025
================
@@ -0,0 +1,120 @@
+name: Release Clang Python Bindings
+
+permissions:
+ contents: read
+
+on:
+ push:
+ branches:
+ - main
+ - release/*
+ paths:
+ - .github/workflows/release-clang-pypi.yml
+ - 'clang/bindings/python/**'
+
+ pull_request:
+ paths:
+ - .github/workflows/release-clang-pypi.yml
+ - 'clang/bindings/python/**'
+
+ workflow_dispatch:
+ inputs:
+ release-version:
+ description: 'Release Version'
+ required: false
+ type: string
+
+ workflow_call:
+ inputs:
+ release-version:
+ description: 'Release Version'
+ required: true
+ type: string
+ secrets:
+ RELEASE_TASKS_USER_TOKEN:
+ description: "Secret used to check user permissions."
+ required: false
+
+jobs:
+ build-release:
+ if: github.repository_owner == 'llvm' || github.event_name == 'workflow_dispatch'
+ runs-on: ubuntu-24.04
+ steps:
+ - name: Checkout LLVM (tagged release)
+ if: inputs.release-version != ''
+ uses: actions/checkout at 08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+ with:
+ ref: "llvmorg-${{ inputs.release-version }}"
+ fetch-depth: 2
+ sparse-checkout: |
+ clang/bindings/python/
+ llvm/utils/git/requirements_packaging.txt
+
+ - name: Checkout LLVM (latest commit)
+ if: inputs.release-version == ''
+ uses: actions/checkout at 08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
+ with:
+ fetch-depth: 0
+ sparse-checkout: |
+ clang/bindings/python/
+ llvm/utils/git/requirements_packaging.txt
+
----------------
boomanaiden154 wrote:
I wouldn't worry too much about the CodeQL warning. That check has some false positives.
Double check that you aren't checking out user code under an event that does have permissions though.
https://github.com/llvm/llvm-project/pull/168234
More information about the llvm-commits
mailing list