Build

wip: nixify #94

	name: Build

	on:
	workflow_dispatch:
	inputs: {}
	push:
	branches: [ "main" ]
	tags: [ "v**" ]
	pull_request:
	branches: [ "main" ]

	jobs:
	build-test:
	runs-on: ubuntu-latest
	steps:
	- uses: 7mind/github-env@minimal
	- name: Run test build
	run: ./build.sh nix test
	publish-scala:
	runs-on: ubuntu-latest
	needs: [ build-test ]
	steps:
	- uses: 7mind/github-env@minimal
	- uses: bitwarden/sm-action@v2
	with:
	access_token: ${{ secrets.TOKEN_BITWARDEN_SM }}
	secrets: \|
	994f97a2-97a4-4fe1-806a-b1930104435f > SONATYPE_CREDENTIALS_FILE
	749f4227-9f11-4ceb-9121-b1930110c3a9 > OPENSSL_KEY
	a2fe5b5b-5f3f-47f8-961c-b1930110cea7 > OPENSSL_IV
	- name: Build and Test
	run: \|
	if [[ "$CI_PULL_REQUEST" == "false" ]] ; then
	pushd .
	cd json-sick-scala
	mkdir .secrets
	echo "$SONATYPE_CREDENTIALS_FILE" > ".secrets/credentials.sonatype-nexus.properties"
	openssl aes-256-cbc -K "${OPENSSL_KEY}" -iv "${OPENSSL_IV}" -in ../secrets.tar.enc -out secrets.tar -d
	tar xvf secrets.tar
	popd
	fi

	./build.sh nix publish-scala
	publish-cs:
	runs-on: ubuntu-latest
	needs: [ build-test ]
	steps:
	- uses: 7mind/github-env@minimal
	with:
	cache-scala: false
	- uses: bitwarden/sm-action@v2
	with:
	access_token: ${{ secrets.TOKEN_BITWARDEN_SM }}
	secrets: \|
	637c5cad-a680-4ea3-ac8b-b193010bee40 > TOKEN_NUGET
	- name: Build and Test
	run: ./build.sh nix publish-cs

Provide feedback