actionlint
travis-yml
actionlint | travis-yml | |
---|---|---|
5 | 1 | |
2,361 | 112 | |
- | 1.8% | |
9.5 | 6.5 | |
9 days ago | 7 days ago | |
Go | Ruby | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
actionlint
-
GitHub Actions could be so much better
Yep, actionlint is great! I've used it successfully both to lint my own workflows, and to lint third-party workflows for (basic) security issues.
Unfortunately, it can't lint actions themselves, only workflows that call actions[1]. This is a substantial deficiency, especially for users (like me) who write and maintain a decent number of actions.
[1]: https://github.com/rhysd/actionlint/issues/46
-
What are the not-so-obvious tools that you don't want to miss?
I recently discovered actionlint and immediately told everyone that would listen about it. And now you are too. Static analysis for github actions, it's been pretty useful.
- Linter for GHA syntax?
-
GitHub Actions Pitfalls
The first pitfall can be statically detected with actionlint
https://github.com/rhysd/actionlint
$ actionlint oops.yaml
travis-yml
-
GitHub Actions Pitfalls
More likely they hacked their YAML parser to treat on as a string.
At least that's what Travis CI folks did:
https://github.com/travis-ci/travis-yml#user-content-yaml
What are some alternatives?
changed-files - :octocat: Github action to retrieve all (added, copied, modified, deleted, renamed, type changed, unmerged, unknown) files and directories.
paths-filter - Conditionally run actions based on files modified by PR, feature branch or pushed commits
combine-prs-workflow - Combine/group together PRs (for example from Dependabot and similar services)
gh-valet - Valet helps facilitate the migration of Azure DevOps, CircleCI, GitLab CI, Jenkins, and Travis CI pipelines to GitHub Actions.
runner-images - GitHub Actions runner images
just - 🤖 Just a command runner
roadmap - GitHub public roadmap