From 3bf53b732f2ed605f1fe25d8ba2aef46df17a9fd Mon Sep 17 00:00:00 2001
From: Pileks <jure@metadao.fi>
Date: Thu, 11 Jun 2026 20:57:26 +0200
Subject: [PATCH] Add gated_mint to CI/CD workflows

- generate-verifiable-builds.yaml: build and commit verifiable-builds/gated_mint.so on pushes to develop/production
- deploy-programs.yaml: add gated_mint as a deployable program (Squads multisig as upgrade authority, same as all other programs)

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
---
 .github/workflows/deploy-programs.yaml        | 20 +++++++++++++++++++
 .../workflows/generate-verifiable-builds.yaml | 19 +++++++++++++++++-
 2 files changed, 38 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/deploy-programs.yaml b/.github/workflows/deploy-programs.yaml
index 782380a0..95166e35 100644
--- a/.github/workflows/deploy-programs.yaml
+++ b/.github/workflows/deploy-programs.yaml
@@ -18,6 +18,7 @@ on:
           - liquidation
           - mint_governor
           - performance_package_v2
+          - gated_mint
       priority-fee:
         description: "Priority fee in microlamports"
         required: true
@@ -212,6 +213,25 @@ jobs:
       use-squads: true
       features: "production"
       priority-fee: ${{ inputs.priority-fee }}
+    secrets:
+      MAINNET_SOLANA_DEPLOY_URL: ${{ secrets.MAINNET_SOLANA_DEPLOY_URL }}
+      MAINNET_DEPLOYER_KEYPAIR: ${{ secrets.MAINNET_DEPLOYER_KEYPAIR }}
+      MAINNET_MULTISIG: ${{ secrets.MAINNET_MULTISIG }}
+      MAINNET_MULTISIG_VAULT: ${{ secrets.MAINNET_MULTISIG_VAULT }}
+
+  gated-mint:
+    if: inputs.program == 'gated_mint'
+    uses: ./.github/workflows/reusable-build.yaml
+    with:
+      program: "gated_mint"
+      override-program-id: "GaTEjZy6eMdHg2BcL8dk3iE78jkJ9sPtyw1q2tMNi8PA"
+      network: "mainnet"
+      deploy: true
+      upload_idl: true
+      verify: true
+      use-squads: true
+      features: "production"
+      priority-fee: ${{ inputs.priority-fee }}
     secrets:
       MAINNET_SOLANA_DEPLOY_URL: ${{ secrets.MAINNET_SOLANA_DEPLOY_URL }}
       MAINNET_DEPLOYER_KEYPAIR: ${{ secrets.MAINNET_DEPLOYER_KEYPAIR }}
diff --git a/.github/workflows/generate-verifiable-builds.yaml b/.github/workflows/generate-verifiable-builds.yaml
index ddc88277..78680bf5 100644
--- a/.github/workflows/generate-verifiable-builds.yaml
+++ b/.github/workflows/generate-verifiable-builds.yaml
@@ -184,4 +184,21 @@ jobs:
         uses: EndBug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 # v9.1.4
         with:
           default_author: github_actions
-          message: 'Update launchpad_v8 verifiable build'
\ No newline at end of file
+          message: 'Update launchpad_v8 verifiable build'
+  generate-verifiable-gated-mint:
+    runs-on: ubuntu-22.04
+    steps:
+      - uses: actions/checkout@v4
+      - uses: metadaoproject/anchor-verifiable-build@6d8fc1999ea4b7ff701e8b166903b398741e1c50 # v0.4
+        with:
+          program: gated_mint
+          anchor-version: '0.29.0'
+          solana-cli-version: '1.17.31'
+          features: 'production'
+      - run: 'git pull --rebase'
+      - run: cp target/deploy/gated_mint.so ./verifiable-builds
+      - name: Commit verifiable build back to mainline
+        uses: EndBug/add-and-commit@a94899bca583c204427a224a7af87c02f9b325d5 # v9.1.4
+        with:
+          default_author: github_actions
+          message: 'Update gated_mint verifiable build'
\ No newline at end of file