add build scripts

Author: pashagolub

.github/workflows/README.md

@@ -0,0 +1,81 @@
+# GitHub Actions Workflows
+
+This directory contains GitHub Actions workflows for automated CI/CD.
+
+## Workflows
+
+### `release.yml` - Release Automation
+
+**Trigger**: Push version tags (e.g., `v1.0.0`)
+
+**Actions**:
+1. Checkout code
+2. Setup Node.js 20 with npm cache
+3. Install dependencies
+4. Run tests (`npm run test:ci`)
+5. Run linter (`npm run lint`)
+6. Type check (`npm run typecheck`)
+7. Build plugin (`npm run build`)
+8. Sign plugin if `GRAFANA_ACCESS_POLICY_TOKEN` secret exists
+9. Create distribution package (`npm run package`)
+10. Create GitHub Release with artifacts
+11. Upload artifacts with 90-day retention
+
+**Outputs**:
+- GitHub Release with release notes
+- `cybertec-pev-panel.zip` - Signed plugin package
+- `MANIFEST.txt` - Signature verification file
+- Full `dist/` directory artifacts
+
+**Setup Requirements**:
+
+To enable plugin signing, add the `GRAFANA_ACCESS_POLICY_TOKEN` secret:
+1. Go to Repository Settings → Secrets and variables → Actions
+2. Click "New repository secret"
+3. Name: `GRAFANA_ACCESS_POLICY_TOKEN`
+4. Value: Token from [Grafana Cloud Portal](https://grafana.com/orgs)
+
+### Other Workflows
+
+- `ci.yml` - Continuous integration for pull requests
+- `bundle-stats.yml` - Bundle size analysis
+- `is-compatible.yml` - Grafana version compatibility check
+- `cp-update.yml` - Dependency updates
+
+## Creating a Release
+
+1. Update version in `src/plugin.json`
+2. Commit changes: `git commit -am "Release v1.2.0"`
+3. Create and push tag:
+   ```bash
+   git tag v1.2.0
+   git push origin main --tags
+   ```
+4. GitHub Actions will automatically build and create the release
+
+## Local Testing
+
+Test the release process locally:
+
+```bash
+# Clean previous builds
+npm run clean
+
+# Run full build pipeline
+npm run build
+
+# Create distribution package
+npm run package
+
+# Sign plugin (requires GRAFANA_ACCESS_POLICY_TOKEN env var)
+export GRAFANA_ACCESS_POLICY_TOKEN=your_token
+npm run sign
+```
+
+## Workflow Maintenance
+
+All workflows use:
+- Node.js 20 (LTS)
+- Ubuntu latest runner
+- npm for package management
+- Node.js scripts (work on all platforms)

.github/workflows/release.yml

@@ -1,29 +1,98 @@
-# This GitHub Action automates the process of building Grafana plugins.
-# (For more information, see https://github.com/grafana/plugin-actions/blob/main/build-plugin/README.md)
+# GitHub Action for building and releasing Grafana plugin
+# Produces signed plugin artifacts on version tags
 name: Release
 
 on:
   push:
     tags:
-      - 'v*' # Run workflow on version tags, e.g. v1.0.0.
+      - 'v*' # Run workflow on version tags, e.g. v1.0.0
 
-permissions: read-all
+permissions:
+  contents: write # Required for creating releases
 
 jobs:
   release:
-    permissions:
-      contents: write
     runs-on: ubuntu-latest
+    
     steps:
-      - uses: actions/checkout@v5
+      - name: Checkout code
+        uses: actions/checkout@v4
         with:
-          persist-credentials: false
-
-      - uses: grafana/plugin-actions/build-plugin@build-plugin/v1.0.2
-        # Uncomment to enable plugin signing
-        # (For more info on how to generate the access policy token see https://grafana.com/developers/plugin-tools/publish-a-plugin/sign-a-plugin#generate-an-access-policy-token)
-        #with:
-        # Make sure to save the token in your repository secrets
-        #policy_token: $
-        # Usage of GRAFANA_API_KEY is deprecated, prefer `policy_token` option above
-        #grafana_token: $
+          fetch-depth: 0
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          cache: 'npm'
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run tests
+        run: npm run test:ci
+
+      - name: Run linter
+        run: npm run lint
+
+      - name: Type check
+        run: npm run typecheck
+
+      - name: Build plugin
+        run: npm run build
+
+      - name: Sign plugin
+        if: ${{ secrets.GRAFANA_ACCESS_POLICY_TOKEN != '' }}
+        env:
+          GRAFANA_ACCESS_POLICY_TOKEN: ${{ secrets.GRAFANA_ACCESS_POLICY_TOKEN }}
+        run: npm run sign
+
+      - name: Create distribution package
+        run: npm run package
+
+      - name: Get plugin metadata
+        id: metadata
+        run: |
+          echo "version=$(node -p "require('./src/plugin.json').info.version")" >> $GITHUB_OUTPUT
+          echo "id=$(node -p "require('./src/plugin.json').id")" >> $GITHUB_OUTPUT
+          echo "name=$(node -p "require('./src/plugin.json').name")" >> $GITHUB_OUTPUT
+
+      - name: Create Release
+        uses: softprops/action-gh-release@v1
+        with:
+          name: Release ${{ github.ref_name }}
+          draft: false
+          prerelease: false
+          generate_release_notes: true
+          files: |
+            cybertec-pev-panel.zip
+            dist/MANIFEST.txt
+          body: |
+            ## ${{ steps.metadata.outputs.name }} ${{ github.ref_name }}
+            
+            ### Installation
+            
+            #### Via grafana-cli (after publication)
+            ```bash
+            grafana-cli plugins install ${{ steps.metadata.outputs.id }}
+            ```
+            
+            #### Manual Installation
+            1. Download `cybertec-pev-panel.zip`
+            2. Extract to your Grafana plugins directory
+            3. Restart Grafana
+            
+            ### Verification
+            The plugin is signed with Grafana's official signing tool. You can verify the signature by checking the `MANIFEST.txt` file included in the release.
+            
+            ### Changes
+            See the automatically generated release notes below for details.
+
+      - name: Upload artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: plugin-artifacts-${{ github.ref_name }}
+          path: |
+            cybertec-pev-panel.zip
+            dist/**/*
+          retention-days: 90