Files
openclaw/test/scripts/openclaw-npm-extended-stable-full-validation-workflow.test.ts
Kevin Lin ba7b5db74c feat(release): add monthly npm extended-stable publication (#99352)
* feat(release): add npm stable publication

* fix(release): allow stable full validation

* feat(release): add stable guard test bypass

* fix(release): allow stable maintenance after month rollover

* docs: refresh release documentation map

* refactor(release): rename monthly channel to extended-stable

* fix(release): repair extended-stable selector forward

* docs(release): fix extended-stable link
2026-07-04 08:22:39 -07:00

111 lines
3.7 KiB
TypeScript

import { spawnSync } from "node:child_process";
import { readFileSync } from "node:fs";
import { describe, expect, it } from "vitest";
import { parse } from "yaml";
const fullValidationPath = ".github/workflows/full-release-validation.yml";
const releaseChecksPath = ".github/workflows/openclaw-release-checks.yml";
type Step = { name?: string; run?: string };
type Job = { steps?: Step[] };
type Workflow = { jobs?: Record<string, Job> };
function workflow(path: string): Workflow {
return parse(readFileSync(path, "utf8")) as Workflow;
}
function stepRun(path: string, jobName: string, stepName: string): string {
const job = workflow(path).jobs?.[jobName];
const step = job?.steps?.find((candidate) => candidate.name === stepName);
if (!step?.run) {
throw new Error(`Missing workflow step: ${jobName} / ${stepName}`);
}
return step.run;
}
function runReleaseChecksTrustedRefGuard(workflowRef: string): ReturnType<typeof spawnSync> {
const guard = stepRun(
releaseChecksPath,
"resolve_target",
"Require trusted workflow ref for release checks",
);
return spawnSync("bash", ["-euo", "pipefail", "-c", guard], {
encoding: "utf8",
env: {
...process.env,
RELEASE_REF: "extended-stable/2026.6.33",
WORKFLOW_REF: workflowRef,
},
});
}
describe("extended-stable Full Release Validation workflow", () => {
it("lets the exact extended-stable branch reach every child at the target SHA", () => {
const fullValidation = readFileSync(fullValidationPath, "utf8");
const childDispatches = [
{
job: "normal_ci",
step: "Dispatch and monitor CI",
workflow: "ci.yml",
target: '-f target_ref="$TARGET_SHA"',
},
{
job: "plugin_prerelease",
step: "Dispatch and monitor plugin prerelease",
workflow: "plugin-prerelease.yml",
target: '-f target_ref="$TARGET_SHA" -f expected_sha="$TARGET_SHA"',
},
{
job: "release_checks",
step: "Dispatch and monitor release checks",
workflow: "openclaw-release-checks.yml",
target: '-f expected_sha="$TARGET_SHA"',
},
{
job: "performance",
step: "Dispatch and monitor OpenClaw Performance",
workflow: "openclaw-performance.yml",
target: '-f target_ref="$TARGET_SHA"',
},
];
for (const child of childDispatches) {
const run = stepRun(fullValidationPath, child.job, child.step);
expect(run).toContain(child.workflow);
expect(run).toContain('--ref "$CHILD_WORKFLOW_REF"');
expect(run).toContain(child.target);
}
expect(fullValidation).toContain(
'"$CHILD_WORKFLOW_REF" =~ ^extended-stable/[0-9]{4}\\.([1-9]|1[0-2])\\.33$',
);
expect(fullValidation).toContain(
"Dispatch Full Release Validation from a release-ci or extended-stable ref pinned to the target SHA",
);
});
it("accepts only the exact extended-stable/YYYY.M.33 workflow-ref shape", () => {
for (const valid of [
"refs/heads/extended-stable/2026.6.33",
"refs/heads/extended-stable/2026.12.33",
]) {
const result = runReleaseChecksTrustedRefGuard(valid);
expect(result.status, result.stderr).toBe(0);
}
for (const invalid of [
"refs/heads/extended-stable/2026.0.33",
"refs/heads/extended-stable/2026.01.33",
"refs/heads/extended-stable/2026.13.33",
"refs/heads/extended-stable/2026.6.32",
"refs/heads/extended-stable/2026.6.34",
"refs/heads/extended-stable/2026.6.33/extra",
"refs/heads/extended-stable/not-a-release",
]) {
const result = runReleaseChecksTrustedRefGuard(invalid);
expect(result.status, invalid).not.toBe(0);
expect(result.stderr).toContain("extended-stable/YYYY.M.33");
}
});
});