2 KiB
2 KiB
shared-actions
Shared actions for Forgejo CI/CD pipelines.
Actions
| Action | Description |
|---|---|
| aikido-full-scan | Aikido full scan |
| aikido-pr-scan | Aikido PR scan |
| aws-configure | Authenticate with AWS via OIDC |
| cache | Cache files between workflow runs |
| checkout | Action for checking out a repository |
| download-artifact | Download Forgejo Actions artifacts by name or pattern |
| helm-deploy | Deploy a service to Kubernetes via Helm over SSH |
| i18n-sync | Fetch translations from i18n.schmalz.com and open a pull request |
| inject-content | Inject content into a file by appending or overwriting |
| maven-build | Action for building and validating Maven projects |
| pnpm-build | Action for building and validating with PNPM |
| publish-static-contents | Syncs frontend assets to S3 and invalidates a CloudFront distribution |
| rust-build | Set up Rust toolchain, run checks, and build via the project's build.sh |
| terraform-apply | Apply Terraform configuration files using the official Terraform CLI |
| terraform-validate | Validate Terraform configuration files using the official Terraform CLI |
| upload-artifact | Upload files as a Forgejo Actions artifact |
| vacuum-lint | Validate and lint OpenAPI specifications using Vacuum |
Security
Where third-party Forgejo/GitHub Actions are used internally, they are pinned to exact commit hashes rather than mutable tags to prevent supply chain attacks.
Usage
Reference actions from your project's workflow:
- uses: https://schmalz-git.git.onstackit.cloud/schmalz/shared-actions/<action-name>@<action-name>-v1
with:
# see each action's README for inputs
Each action has its own README with inputs, usage examples, and notes.