dcsync fix, remote registry secrets feature #4
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Build Windows Executable - PyInstaller | |
| # Description: | |
| # Most of my projects come with a build.bat script that uses PyInstaller to freeze the examples | |
| # to an executable file. This Action will set up the environment and run this build.bat script, | |
| # then upload the resulting executables to a google cloud bucket. | |
| # Additionally, the executables will be compressed and encrypted using 7z. | |
| on: | |
| push: | |
| branches: | |
| - main # Trigger on push to main branch | |
| tags: | |
| - '*' # Trigger on any tag push | |
| jobs: | |
| build: | |
| runs-on: windows-latest # Use a Windows runner | |
| permissions: | |
| contents: 'read' | |
| id-token: 'write' | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 0 | |
| - id: auth | |
| uses: google-github-actions/auth@v1 | |
| with: | |
| credentials_json: '${{ secrets.GCLOUD_BUCKET_SERVICE_USER_SECRET }}' | |
| - name: Set up Python | |
| uses: actions/setup-python@v2 | |
| with: | |
| python-version: '3.9' | |
| - name: Install Dependencies | |
| run: | | |
| python -m pip install --upgrade pip | |
| pip install pyinstaller virtualenv | |
| - name: Run Batch File to Build Executable | |
| run: builder\pyinstaller\build.bat | |
| - name: Compress executables | |
| run: | | |
| "C:\Program Files\7-Zip\7z.exe" a secure.7z *.exe -pprotected | |
| working-directory: ${{ github.workspace }}/builder/pyinstaller | |
| shell: cmd | |
| - name: Upload Artifacts for Download | |
| uses: actions/upload-artifact@v2 | |
| with: | |
| name: executables.zip | |
| path: builder\pyinstaller\*.exe | |
| retention-days: 10 | |
| - name: 'Set up Cloud SDK' | |
| uses: google-github-actions/setup-gcloud@v1 | |
| with: | |
| version: '>= 390.0.0' | |
| - name: Upload Executables to GCS | |
| run: | | |
| $PROJVERSION = python -c "import sys; sys.path.append('${{ github.event.repository.name }}'); import _version; print(_version.__version__)" | |
| Write-Host "Detected Version: $PROJVERSION" | |
| gsutil cp builder\pyinstaller\*.exe gs://skelsec-github-foss/${{ github.event.repository.name }}/$PROJVERSION/ | |
| gsutil cp builder\pyinstaller\*.7z gs://skelsec-github-foss/${{ github.event.repository.name }}/$PROJVERSION/ | |
| shell: powershell | |
| - name: Create GitHub Release | |
| if: startsWith(github.ref, 'refs/tags/') | |
| uses: actions/create-release@v1 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| tag_name: ${{ github.ref_name }} | |
| release_name: Release ${{ github.ref_name }} | |
| draft: false | |
| prerelease: false | |
| files: | | |
| builder\pyinstaller\*.exe | |
| builder\pyinstaller\*.7z | |
| - uses: sarisia/actions-status-discord@v1 | |
| if: always() | |
| with: | |
| webhook: ${{ secrets.DISCORD_WEBHOOK }} | |
| status: ${{ job.status }} | |
| content: | | |
| ${{ github.event_name == 'push' && format('Hey @here! A new commit was pushed to {0}!', github.repository) || '' }} | |
| ${{ github.event_name == 'pull_request' && format('Hey @here! A new pull request has been opened on {0}!', github.repository) || '' }} | |
| ${{ github.event_name == 'release' && format('Hey @here! A new release was created for project {0}!', github.event.repository.name) || '' }} | |
| title: | | |
| ${{ github.event_name == 'push' && 'Push Notification' || '' }} | |
| ${{ github.event_name == 'pull_request' && 'Pull Request Notification' || '' }} | |
| ${{ github.event_name == 'release' && 'Release Notification' || '' }} | |
| color: | | |
| ${{ github.event_name == 'push' && '0x00ff00' || '' }} | |
| ${{ github.event_name == 'pull_request' && '0xff0000' || '' }} | |
| ${{ github.event_name == 'release' && '0x0000ff' || '' }} | |
| url: "${{ github.server_url }}/${{ github.repository }}" | |
| username: GitHub Actions | |
| avatar_url: "https://avatars.githubusercontent.com/u/19204702" |