Add Go Driver Actions

[blink1073]

Re-use existing pieces

Bump Version (new top level)

Since we'll need flexibility to set prerelease and major versions, use the same bump action as python, but add option for the commit message

• Accepts a script to call to bump the version that takes the version as the first argument
• Update version
• Create signed commit
• Push Commit unless dry run

Tag Version (new top level)

Use the same tag action as python, but add tag template and tag message template.

• Create signed tag
• Push tag unless dry run

Generate Reports (new top level)

Separate out this portion of the python publish to handle the SSDLC reports

• Create SBOM
• Create SARIF
• Create authorized pub (with no files for go)
• Create compliance report
• Upload to S3 unless dry run

---

Go-specifc

Go Prep Release

• Run bump version
• Run tag version

Go Release

• Call Generate Reports Action
• Create github.md and forum.md using notes.go
• Create draft release with github.md as body unless dry run
• Print forum.md as part of job output
• Print draft release url as part of job output
• Bump prelease version

---

Then the workflow in the Go Driver repo will:

• Accept next and prerelease version as input
• Go Prep Release Action
• Run CodeQL using workflow_call against the new version
• Run Go Release Action

The user will choose which branch to release from, and the two versions

---

Python-specific

For the Python Driver, we have:

Python Prep Release (new)

• Run bump version
• Run tag version

Python Dist (new)

• Download and sign dist files

Python Release (replaces python publish)

• Call Python Dist Action
• Call Generate Reports Action
• Publish to pypi unless dry run
• Create draft release unless dry run
• Bump following version

Then the workflow in the Python Driver repos will:

• Accept next and prerelease version as input
• Python Prep Release Action
• Run Dist workflow using workflow_call
• Run CodeQL using workflow_call against the new version
• Run Python Release Action

The user will choose which branch to release from, and the two versions

[blink1073]

cc @matthewdale

[blink1073]

Simple script to bump the Go Driver version:

package main

import (
	"bufio"
	"fmt"
	"os"
	"path"
)

const (
	versionFile      = "version/version.go"
)

func main() {
	repoDir, err := os.Getwd()
	versionFilePath := path.Join(repoDir, versionFile)
	readFile, err := os.Open(versionFilePath)

	if err != nil {
		fmt.Println(err)
	}
	fileScanner := bufio.NewScanner(readFile)
	fileScanner.Split(bufio.ScanLines)
	var fileLines []string

	for fileScanner.Scan() {
		fileLines = append(fileLines, fileScanner.Text())
	}

	readFile.Close()

	fileLines[len(fileLines)-1] = "var Driver = \"" + os.Args[1] + "\""

	writeFile, err := os.OpenFile(versionFilePath, os.O_WRONLY, 0644)
	if err != nil {
		fmt.Println(err)
	}
	for _, line := range fileLines {
		fmt.Fprintln(writeFile, line)
	}

	writeFile.Close()
}

[blink1073]

Fixed by #36