Add GitHub Actions for CI/CD automation

Maxim Titovich · Maxim Titovich · commit 1fd099242c68 · 2025-03-07T14:02:15.000+01:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -0,0 +1,48 @@
+name: CI
+
+on:
+  push:
+    branches: [ "main", "develop" ]
+  pull_request:
+    branches: [ "main", "develop" ]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        node-version: [16.x, 18.x, 20.x]
+
+    steps:
+    - uses: actions/checkout@v3
+    
+    - name: Use Node.js ${{ matrix.node-version }}
+      uses: actions/setup-node@v3
+      with:
+        node-version: ${{ matrix.node-version }}
+        cache: 'npm'
+    
+    - name: Install dependencies
+      run: npm ci
+      
+    - name: Run linting and formatting checks
+      run: npm run check
+      
+    - name: Run security check
+      run: npm run security-check
+      
+    - name: Build
+      run: npm run build
+      
+    # We can't run test-connection here since it requires Azure DevOps credentials
+    # Instead, we can make sure the build doesn't have errors
+    - name: Verify build artifacts
+      run: |
+        if [ ! -f "./build/index.js" ]; then
+          echo "Build failed - index.js not found"
+          exit 1
+        fi
+        if [ ! -f "./build/sse-server.js" ]; then
+          echo "Build failed - sse-server.js not found"
+          exit 1
+        fi 
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -0,0 +1,60 @@
+name: Publish to npm
+
+on:
+  push:
+    branches: [ "main" ]
+    # Only trigger when package.json changes or when a release tag is created
+    paths:
+      - 'package.json'
+      - 'src/**'
+      - 'build/**'
+  release:
+    types: [created]
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v3
+    
+    - name: Use Node.js
+      uses: actions/setup-node@v3
+      with:
+        node-version: '20.x'
+        cache: 'npm'
+        registry-url: 'https://registry.npmjs.org'
+    
+    - name: Install dependencies
+      run: npm ci
+      
+    - name: Run checks
+      run: npm run check
+      
+    - name: Run security check
+      run: npm run security-check
+      
+    - name: Build
+      run: npm run build
+      
+    # This only runs on main branch pushes that have modified package.json or are from a release event
+    - name: Extract version from package.json
+      id: extract_version
+      run: echo "version=$(node -p "require('./package.json').version")" >> $GITHUB_OUTPUT
+      
+    - name: Check if version exists
+      id: version_check
+      run: |
+        if npm view cursor-azure-devops-mcp@${{ steps.extract_version.outputs.version }} version &> /dev/null; then
+          echo "exists=true" >> $GITHUB_OUTPUT
+          echo "Version ${{ steps.extract_version.outputs.version }} already exists on npm"
+        else
+          echo "exists=false" >> $GITHUB_OUTPUT
+          echo "Version ${{ steps.extract_version.outputs.version }} doesn't exist yet"
+        fi
+      continue-on-error: true
+      
+    - name: Publish to npm
+      if: steps.version_check.outputs.exists != 'true'
+      run: npm publish
+      env:
+        NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} 
diff --git a/.github/workflows/version-bump.yml b/.github/workflows/version-bump.yml
@@ -0,0 +1,64 @@
+name: Version Bump
+
+on:
+  workflow_dispatch:
+    inputs:
+      bump_type:
+        description: 'Version bump type (patch, minor, major)'
+        required: true
+        default: 'patch'
+        type: choice
+        options:
+          - patch
+          - minor
+          - major
+
+jobs:
+  bump-version:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      
+      - name: Setup Git
+        run: |
+          git config user.name "GitHub Actions Bot"
+          git config user.email "actions@github.com"
+          
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: '20.x'
+          
+      - name: Install dependencies
+        run: npm ci
+        
+      - name: Run checks
+        run: npm run check
+        
+      - name: Run security check
+        run: npm run security-check
+      
+      - name: Bump version
+        run: npm version ${{ github.event.inputs.bump_type }} -m "Bump version to %s [skip ci]"
+      
+      - name: Get version from package.json
+        id: package-version
+        run: echo "version=$(node -p "require('./package.json').version")" >> $GITHUB_OUTPUT
+      
+      - name: Push changes
+        run: |
+          git push
+          git push --tags
+      
+      - name: Create GitHub Release
+        uses: softprops/action-gh-release@v1
+        with:
+          tag_name: v${{ steps.package-version.outputs.version }}
+          name: Release v${{ steps.package-version.outputs.version }}
+          generate_release_notes: true
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} 
diff --git a/.gitignore b/.gitignore
@@ -14,6 +14,9 @@ backup/
 logs/
 *.swp
 .DS_Store
+# Don't ignore GitHub workflows
+!.github/
+!.github/workflows/
 
 # Environment and secrets
 .env
diff --git a/README.md b/README.md
@@ -310,6 +310,40 @@ npm run build
 npm publish
 ```
 
+## Continuous Integration and Deployment
+
+This project uses GitHub Actions for automated builds, testing, and publishing.
+
+### CI Workflow
+
+The CI workflow runs on every push to the main and develop branches, as well as on pull requests:
+
+- Builds the project with Node.js 16.x, 18.x, and 20.x
+- Runs linting and formatting checks
+- Performs security checks to prevent sensitive data exposure
+- Ensures the build completes successfully
+
+You can see the workflow details in `.github/workflows/ci.yml`.
+
+### CD Workflow (Publishing)
+
+The publishing workflow runs when:
+- A change is pushed to the main branch that modifies `package.json` or source code
+- A new GitHub release is created
+
+It performs the following steps:
+1. Runs all checks and builds the package
+2. Extracts the package version from package.json
+3. Checks if that version already exists on npm
+4. If the version is new, publishes the package to npm
+
+To use this workflow, you need to:
+1. Add an `NPM_TOKEN` secret to your GitHub repository settings
+2. Increase the version number in package.json when ready to publish
+3. Push to the main branch or create a new GitHub release
+
+You can see the workflow details in `.github/workflows/publish.yml`.
+
 ## Troubleshooting
 
 ### Summary of Common Issues and Solutions
diff --git a/package.json b/package.json
@@ -25,7 +25,11 @@
     "lint:fix": "eslint . --ext .ts --fix",
     "format": "prettier --write \"src/**/*.ts\"",
     "format:check": "prettier --check \"src/**/*.ts\"",
-    "check": "npm run format:check && npm run lint"
+    "check": "npm run format:check && npm run lint",
+    "version:patch": "npm version patch",
+    "version:minor": "npm version minor",
+    "version:major": "npm version major",
+    "release": "npm run version:patch && git push && git push --tags"
   },
   "keywords": [
     "cursor",
