init

Author: thymikee

.github/actions/find-artifact/action.yml

@@ -0,0 +1,32 @@
+# Note: this action will be published separate on the GitHub.
+# It's here only temporary for the development purposes.
+
+name: 'Find Artifact'
+description: 'Find the latest artifact'
+inputs:
+  name:
+    description: 'Artifact name'
+    required: false
+  re-sign:
+    description: Re-sign the app bundle with new JS bundle
+    required: false
+  github-token:
+    description: A GitHub Personal Access Token with write access to the project
+    required: false
+    default: ${{ github.token }}
+  repository:
+    description:
+      'The repository owner and the repository name joined together by "/".
+      If github-token is specified, this is the repository that artifacts will be downloaded from.'
+    required: false
+    default: ${{ github.repository }}
+outputs:
+  artifact-id:
+    description: 'The ID of the artifact'
+  artifact-url:
+    description: 'The URL of the artifact'
+  artifact-ids:
+    description: 'All IDs of the artifacts matching the name'
+runs:
+  using: 'node20'
+  main: 'index.js'

.github/actions/find-artifact/index.js

@@ -0,0 +1,112 @@
+const core = require('@actions/core');
+const github = require('@actions/github');
+
+const perPage = 100; // Maximum allowed by GitHub API
+
+async function fetchArtifacts(octokit, repository, name) {
+  const result = [];
+  let page = 1;
+
+  while (true) {
+    const response = await octokit.rest.actions.listArtifactsForRepo({
+      owner: repository.split('/')[0],
+      repo: repository.split('/')[1],
+      name,
+      per_page: perPage,
+      page,
+    });
+
+    const artifacts = response.data.artifacts;
+    result.push(...artifacts);
+
+    if (artifacts.length < perPage) {
+      break;
+    }
+
+    page++;
+  }
+
+  result.sort((a, b) => new Date(b.expires_at) - new Date(a.expires_at));
+  return result;
+}
+
+function getPrNumber() {
+  if (github.context.eventName === 'pull_request') {
+    return github.context.payload.pull_request.number;
+  }
+  return undefined;
+}
+
+async function run() {
+  try {
+    const token = core.getInput('github-token');
+    const repository = core.getInput('repository');
+    const name = core.getInput('name');
+    const reSign = core.getInput('re-sign');
+    const prNumber = getPrNumber();
+
+    const octokit = github.getOctokit(token);
+    const artifactsByName = await fetchArtifacts(octokit, repository, name);
+    const artifactsByPrNumber =
+      prNumber && reSign
+        ? await fetchArtifacts(octokit, repository, `${name}-${prNumber}`)
+        : [];
+    const artifacts = [...artifactsByPrNumber, ...artifactsByName];
+
+    if (artifacts.length === 0) {
+      return;
+    }
+
+    console.log(`Found ${artifacts.length} related artifacts:`);
+    for (const artifact of artifacts) {
+      console.log(
+        `- ID: ${artifact.id}, Name: ${artifact.name}, Size: ${formatSize(
+          artifact.size_in_bytes,
+        )}, Expires at: ${artifact.expires_at}`,
+      );
+    }
+
+    const firstArtifact = artifacts.find(artifact => !artifact.expired);
+    console.log(`First artifact: ${JSON.stringify(firstArtifact, null, 2)}`);
+
+    const url = formatDownloadUrl(
+      repository,
+      firstArtifact.workflow_run.id,
+      firstArtifact.id,
+    );
+    console.log('Stable download URL:', url);
+
+    let artifactName = name;
+    // There are artifacts from PR but the base artifact is gone, recreate with the original name
+    if (artifactsByName.length === 0) {
+      artifactName = name;
+      // First time an artifact is re-signed, it's not yet in artifact storage, setting the name explicitly.
+    } else if (prNumber && reSign) {
+      artifactName = `${name}-${prNumber}`;
+    }
+    core.setOutput('artifact-name', artifactName);
+    core.setOutput('artifact-id', firstArtifact.id);
+    core.setOutput('artifact-url', url);
+    core.setOutput(
+      'artifact-ids',
+      artifactsByPrNumber.map(artifact => artifact.id).join(' '),
+    );
+  } catch (error) {
+    core.setFailed(`Action failed with error: ${error.message}`);
+  }
+}
+
+// The artifact URL returned by the GitHub API expires in 1 minute, we need to generate a permanent one.
+function formatDownloadUrl(repository, workflowRunId, artifactId) {
+  return `https://github.com/${repository}/actions/runs/${workflowRunId}/artifacts/${artifactId}`;
+}
+
+function formatSize(size) {
+  if (size > 0.75 * 1024 * 1024) {
+    return `${(size / 1024 / 1024).toFixed(2)} MB`;
+  }
+
+  return `${(size / 1024).toFixed(2)} KB`;
+}
+
+run();

.github/actions/rnef-native-fingerprint/action.yml

@@ -0,0 +1,19 @@
+# Note: this action will be published separate on the GitHub.
+# It's here only temporary for the development purposes.
+
+name: 'Fingerprint'
+description: 'Fingerprint the current native-related files'
+inputs:
+  platform:
+    description: 'The platform to fingerprint: android or ios'
+    required: true
+  working-directory:
+    description: 'The working directory to fingerprint, where the rnef.config.mjs is located'
+    required: true
+    default: '.'
+outputs:
+  hash:
+    description: 'The fingerprint hash'
+runs:
+  using: 'node20'
+  main: 'index.mjs'

.github/actions/rnef-native-fingerprint/index.mjs

@@ -0,0 +1,31 @@
+import path from 'node:path';
+import core from '@actions/core';
+import {getConfig} from '@rnef/config';
+import {nativeFingerprint} from '@rnef/tools';
+
+const ALLOWED_PLATFORMS = ['android', 'ios'];
+
+async function run() {
+  const platform = core.getInput('platform');
+  const workingDirectory = core.getInput('working-directory');
+  if (!ALLOWED_PLATFORMS.includes(platform)) {
+    throw new Error(`Invalid platform: ${platform}`);
+  }
+  const dir = path.isAbsolute(workingDirectory)
+    ? workingDirectory
+    : path.join(process.cwd(), workingDirectory);
+  const config = await getConfig(dir);
+  const fingerprintOptions = config.getFingerprintOptions();
+
+  const fingerprint = await nativeFingerprint(dir, {
+    platform,
+    ...fingerprintOptions,
+  });
+
+  console.log('Hash:', fingerprint.hash);
+  console.log('Sources:', fingerprint.sources);
+
+  core.setOutput('hash', fingerprint.hash);
+}
+
+await run();

.github/actions/rnef-post-build/action.yml

@@ -0,0 +1,20 @@
+# Note: this action will be published separate on the GitHub.
+# It's here only temporary for the development purposes.
+
+name: 'Post Build'
+description: 'Post Build info'
+
+inputs:
+  artifact-url:
+    description: 'The URL of the artifact to post'
+    required: true
+  title:
+    description: 'The title of the GitHub comment'
+    required: true
+  github-token:
+    description: A GitHub Personal Access Token with write access to the project
+    required: false
+    default: ${{ github.token }}
+runs:
+  using: 'node20'
+  main: 'index.js'

.github/actions/rnef-post-build/index.js

@@ -0,0 +1,43 @@
+const core = require('@actions/core');
+const github = require('@actions/github');
+
+async function run() {
+  const token = core.getInput('github-token');
+  const titleInput = core.getInput('title');
+  const artifactUrl = core.getInput('artifact-url');
+
+  const title = `## ${titleInput}`;
+  const body = `🔗 [Download link](${artifactUrl}).\n\n
+Note: if the download link expires, please re-run the workflow to generate a new build.\n\n
+*Generated at ${new Date().toISOString()} UTC*\n`;
+
+  const octokit = github.getOctokit(token);
+  const {data: comments} = await octokit.rest.issues.listComments({
+    ...github.context.repo,
+    issue_number: github.context.issue.number,
+  });
+
+  const botComment = comments.find(
+    comment =>
+      comment.user.login === 'github-actions[bot]' &&
+      comment.body.includes(title),
+  );
+
+  if (botComment) {
+    await octokit.rest.issues.updateComment({
+      ...github.context.repo,
+      comment_id: botComment.id,
+      body: `${title}\n\n${body}`,
+    });
+    console.log('Updated comment');
+  } else {
+    await octokit.rest.issues.createComment({
+      ...github.context.repo,
+      issue_number: github.context.issue.number,
+      body: `${title}\n\n${body}`,
+    });
+    console.log('Created comment');
+  }
+}
+
+run();

.github/workflows/main.yml

@@ -0,0 +1,21 @@
+name: Test
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: ['**']
+
+jobs:
+  build-simulator:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Setup Node
+        uses: actions/setup-node@v4
+        with:
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm install

.gitignore

@@ -0,0 +1 @@
+node_modules

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Callstack Incubator
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,79 @@
+# RNEF Android GitHub Action
+
+This GitHub Action enables remote building of Android applications using RNEF (React Native Enterprise Framework). It supports both debug and release builds, with automatic artifact caching and code signing capabilities.
+
+## Features
+
+- Build Android apps in debug or release mode
+- Automatic artifact caching to speed up builds
+- Code signing support for release builds
+- Re-signing capability for PR builds
+- Native fingerprint-based caching
+- Configurable build parameters
+- Gradle wrapper validation
+
+## Usage
+
+```yaml
+name: Android Build
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: ['**']
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Build Android
+        uses: callstackincubator/android@v1
+        with:
+          variant: 'debug' # or else
+          # For release builds, add these:
+          # sign: true
+          # keystore-base64: ${{ secrets.KEYSTORE_BASE64 }}
+          # keystore-store-file: 'your-keystore.jks'
+          # keystore-store-password: ${{ secrets.KEYSTORE_STORE_PASSWORD }}
+          # keystore-key-alias: 'your-key-alias'
+          # keystore-key-password: ${{ secrets.KEYSTORE_KEY_PASSWORD }}
+```
+
+## Inputs
+
+| Input                     | Description                             | Required | Default               |
+| ------------------------- | --------------------------------------- | -------- | --------------------- |
+| `github-token`            | GitHub Token                            | No       | `${{ github.token }}` |
+| `working-directory`       | Working directory for the build command | No       | `.`                   |
+| `validate-gradle-wrapper` | Whether to validate the Gradle wrapper  | No       | `true`                |
+| `variant`                 | Build variant (debug/release)           | No       | `debug`               |
+| `sign`                    | Whether to sign the build with keystore | No       | -                     |
+| `re-sign`                 | Re-sign the APK with new JS bundle      | No       | `false`               |
+| `keystore-base64`         | Base64 encoded keystore file            | No       | -                     |
+| `keystore-store-file`     | Keystore store file name                | No       | -                     |
+| `keystore-store-password` | Keystore store password                 | No       | -                     |
+| `keystore-key-alias`      | Keystore key alias                      | No       | -                     |
+| `keystore-key-password`   | Keystore key password                   | No       | -                     |
+| `rnef-build-extra-params` | Extra parameters for rnef build:android | No       | -                     |
+| `comment-bot`             | Whether to comment PR with build link   | No       | `true`                |
+
+## Outputs
+
+| Output         | Description               |
+| -------------- | ------------------------- |
+| `artifact-url` | URL of the build artifact |
+| `artifact-id`  | ID of the build artifact  |
+
+## Prerequisites
+
+- Ubuntu runner
+- RNEF CLI installed in your project
+- For release builds:
+  - Valid Android keystore file
+  - Proper code signing setup
+
+## License
+
+MIT