diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 30df3b0..434badb 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -12,7 +12,7 @@ repos: # files: .pre-commit-config.yaml - repo: https://github.com/pre-commit/pre-commit-hooks - rev: v4.5.0 + rev: v4.6.0 hooks: - id: check-symlinks - id: trailing-whitespace @@ -40,7 +40,7 @@ repos: exclude: package-lock.json - repo: https://github.com/gitleaks/gitleaks - rev: v8.18.0 + rev: v8.18.2 hooks: - id: gitleaks args: diff --git a/README.md b/README.md index fe80b0b..92dc3f1 100644 --- a/README.md +++ b/README.md @@ -68,17 +68,19 @@ Action returns some basic information. For more details, follow [📤 Outputs](# ## 📥 Inputs -| Name | Required | Type | Default value | Description | -| :-------------: | :------: | :------: | :-----------: | :---------------------------------------------------------------------------------------------------------------------------------------------------------- | -| `version` | false | `string` | `latest` | SemVer version of `actionlint`, recommended to keep default: latest | -| `matcher` | false | `bool` | `true` | Use matcher for GitHub annotations | -| `files` | false | `string` | *not set* | To lint different workflow files (default searching directory is `.github/workflows`), use comma-separated glob patterns, e.g., `tests/*.yml, tests/*.yaml` | -| `flags` | false | `string` | *not set* | Extra flags to use with `actionlint` | -| `group-result` | false | `bool` | `true` | Use the GitHub log grouping feature for failure actionlint results. | -| `fail-on-error` | false | `bool` | `true` | Fail action on `actionlint` errors | -| `shellcheck` | false | `bool` | `true` | Use `shellcheck` with `actionlint` (and install if it does not exist) | -| `pyflakes` | false | `bool` | `true` | Use `pyflakes` with `actionlint` (and install if it does not exist) | -| `cache` | false | `bool` | `true` | Use GitHub cache for caching binaries for the next runs | +| Name | Required | Type | Default value | Description | +| :--------------: | :------: | :------: | :--------------: | :---------------------------------------------------------------------------------------------------------------------------------------------------------- | +| `version` | false | `string` | `latest` | SemVer version of `actionlint`, recommended to keep default: `latest` | +| `matcher` | false | `bool` | `true` | Use matcher for GitHub annotations. | +| `files` | false | `string` | _not set_ | To lint different workflow files (default searching directory is `.github/workflows`), use comma-separated glob patterns, e.g., `tests/*.yml, tests/*.yaml` | +| `flags` | false | `string` | _not set_ | Extra flags to use with `actionlint` | +| `group-result` | false | `bool` | `true` | Use the GitHub log grouping feature for failure actionlint results. | +| `fail-on-error` | false | `bool` | `true` | Fail action on `actionlint` errors. | +| `shellcheck` | false | `bool` | `true` | Use `shellcheck` with `actionlint` (and install if it does not exist) | +| `pyflakes` | false | `bool` | `true` | Use `pyflakes` with `actionlint` (and install if it does not exist) | +| `cache` | false | `bool` | `true` | Use GitHub cache for caching binaries for the next runs. | +| `github-token` | false | `string` | `github.token` | GitHub Token for API authentication. | +| `github-api-url-public` | false | `string` | `github.api_url` | Public GitHub REST API URL to connect to for dependencies download. For example, `https://api.github.com`. Required if you are running in the GHES. | ## 📤 Outputs diff --git a/action.yml b/action.yml index a2c597c..268c861 100644 --- a/action.yml +++ b/action.yml @@ -1,5 +1,6 @@ ---- +# yaml-language-server: $schema=https://json.schemastore.org/github-action.json # https://docs.github.com/en/actions/creating-actions/metadata-syntax-for-github-actions +--- name: actionlint description: ✅ Run actionlint for validating your GitHub Actions workflow files. author: Dariusz Porowski @@ -56,6 +57,15 @@ inputs: description: GitHub Token required: false default: ${{ github.token }} + deprecationMessage: Use `github-token` input instead + github-token: + description: GitHub Token + required: false + default: ${{ github.token }} + github-api-url-public: + description: Public GitHub REST API URL for dependencies download + required: false + default: ${{ github.api_url }} outputs: version-semver: description: SemVer version @@ -86,7 +96,8 @@ runs: uses: actions/github-script@v7 id: environment with: - github-token: ${{ inputs.token || env.GITHUB_TOKEN }} + # github-token: ${{ inputs.github-token || inputs.token || env.GITHUB_TOKEN }} + base-url: ${{ inputs.github-api-url-public }} script: | // input envs const { INPUT_TOOL_NAME, INPUT_TOOL_SEMVER, INPUT_REPO_OWNER, INPUT_REPO_NAME, RUNNER_TEMP } = process.env @@ -202,10 +213,12 @@ runs: shell: ${{ (runner.os == 'Windows' && 'pwsh') || 'bash' }} working-directory: ${{ inputs.working-directory }} - - uses: actions/github-script@v7 + - name: Download tool + uses: actions/github-script@v7 if: ${{ steps.tool-cache.outputs.cache-hit != 'true' }} with: - github-token: ${{ inputs.token || env.GITHUB_TOKEN }} + # github-token: ${{ inputs.github-token || inputs.token || env.GITHUB_TOKEN }} + base-url: ${{ inputs.github-api-url-public }} script: | // dependencies const tc = require('@actions/tool-cache') @@ -242,7 +255,8 @@ runs: if: ${{ inputs.pyflakes == 'true' || inputs.shellcheck == 'true' }} id: tool-dependencies with: - github-token: ${{ inputs.token || env.GITHUB_TOKEN }} + github-token: ${{ inputs.github-token || inputs.token || env.GITHUB_TOKEN }} + # base-url: ${{ inputs.github-api-url }} script: | // input envs const { INPUT_PYFLAKES, INPUT_SHELLCHECK } = process.env @@ -268,7 +282,7 @@ runs: core.debug(`${pyflakesBinary} exists: ${pyflakesExists}`) if (pyflakesExists === false) { - await exec.exec('python3', ['-m', 'pip', 'install', '--upgrade', 'pyflakes']) + await exec.exec('pipx', ['install', 'pyflakes']) } } @@ -303,10 +317,12 @@ runs: INPUT_PYFLAKES: ${{ inputs.pyflakes }} INPUT_SHELLCHECK: ${{ inputs.shellcheck }} - - uses: actions/github-script@v7 + - name: Run tool + uses: actions/github-script@v7 id: tool-runner with: - github-token: ${{ inputs.token || env.GITHUB_TOKEN }} + github-token: ${{ inputs.github-token || inputs.token || env.GITHUB_TOKEN }} + # base-url: ${{ inputs.github-api-url }} script: | // input envs const { INPUT_FILES, INPUT_FLAGS, INPUT_TOOL_NAME, INPUT_TOOL_DIR_PATH, INPUT_MATCHER, INPUT_MATCHER_PATH, INPUT_TOOL_EXECUTABLE, INPUT_JSON, INPUT_FAIL_ON_ERROR, INPUT_PYFLAKES, INPUT_SHELLCHECK, INPUT_GROUP_RESULT, DEBUG } = process.env