actionlint
roadmap
actionlint | roadmap | |
---|---|---|
5 | 67 | |
2,361 | 7,709 | |
- | 0.6% | |
9.5 | 0.0 | |
9 days ago | 21 days ago | |
Go | ||
MIT License | Creative Commons Attribution 4.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
actionlint
-
GitHub Actions could be so much better
Yep, actionlint is great! I've used it successfully both to lint my own workflows, and to lint third-party workflows for (basic) security issues.
Unfortunately, it can't lint actions themselves, only workflows that call actions[1]. This is a substantial deficiency, especially for users (like me) who write and maintain a decent number of actions.
[1]: https://github.com/rhysd/actionlint/issues/46
-
What are the not-so-obvious tools that you don't want to miss?
I recently discovered actionlint and immediately told everyone that would listen about it. And now you are too. Static analysis for github actions, it's been pretty useful.
- Linter for GHA syntax?
-
GitHub Actions Pitfalls
The first pitfall can be statically detected with actionlint
https://github.com/rhysd/actionlint
$ actionlint oops.yaml
roadmap
- GitHub: Packages support for fine-grained PATs
- Microsoft cancels plans for Python packages on GitHub
-
Github will unfortunately not provide a helm repository in the future.
Same message as for PyPI compatible package registry: https://github.com/github/roadmap/issues/94
-
GitHub support for PHP Packages: “no longer planned”
Yeah I had to look around a bit but yep… https://github.com/github/roadmap/issues/94
It looks like a lot of things have been killed… which with my cynical hat on I think might have something to do with overlapping capabilities with Azure services.
- GitHub Packages no longer planning Python PyPI support
-
How do you debug CI/CD pipelines? Breakpoints?
Others have mentioned tmate to SSH into a running GitHub Actions workflow; there is a roadmap issue making that functionality built-in to Actions, planned for 2023/Q4.
-
GitHub Actions is Vulnerable to Supply Chain Attacks
Immutable actions are on GitHub's roadmap.
- How to manage large GitHub orgs?
-
Which role does Github Actions currently play in MLOps?
I think not yet, but seems to be in the roadmap
- Developing for M1/M2 without a Mac
What are some alternatives?
changed-files - :octocat: Github action to retrieve all (added, copied, modified, deleted, renamed, type changed, unmerged, unknown) files and directories.
plantuml - Generate diagrams from textual description
combine-prs-workflow - Combine/group together PRs (for example from Dependabot and similar services)
trufflehog - Find and verify secrets
gh-valet - Valet helps facilitate the migration of Azure DevOps, CircleCI, GitLab CI, Jenkins, and Travis CI pipelines to GitHub Actions.
act - Run your GitHub Actions locally 🚀
travis-yml - Travis CI build config processing
gitlab
paths-filter - Conditionally run actions based on files modified by PR, feature branch or pushed commits
dependabot-core - 🤖 Dependabot's core logic for creating update PR's.
just - 🤖 Just a command runner
xmonad - The core of xmonad, a small but functional ICCCM-compliant tiling window manager